Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 86 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of serviceUbuntu

Ubuntu 26.04 LTS sssd Important Denial of Service Vuln 2026-6245

SSSD could be made to crash if it received specially crafted input.. ========================================================================== Ubuntu Security Notice USN-8355-1 June 01, 2026 sssd vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS Summary: SSSD could be made to crash if it received specially crafted input. Software Description: - sssd: System Security Services Daemon Details: It was discovered that SSSD did not properly handle raw bytes in the PAM passkey responder. A local attacker could possibly use this issue to cause the SSSD PAM responder to crash, resulting in a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS sssd 2.12.0-1ubuntu5.1 Ubuntu 25.10 sssd 2.10.1-2ubuntu5.2 Ubuntu 24.04 LTS sssd 2.9.4-1.1ubuntu6.5 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8355-1 CVE-2026-6245 Package Information: https://launchpad.net/ubuntu/+source/sssd/2.12.0-1ubuntu5.1 https://launchpad.net/ubuntu/+source/sssd/2.10.1-2ubuntu5.2 https://launchpad.net/ubuntu/+source/sssd/2.9.4-1.1ubuntu6.5 . A critical advisory for Ubuntu users regarding an important sssd issue leading to potential denial of service.. Ubuntu Advisory SSSD Security Denial Service. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 01, 2026 Important Ubuntu
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySuSEprivilege escalation

SUSE: sssd Important Privilege Escalation Fix CVE-2025-11561 2026:20019-1

An update that solves one vulnerability and has one fix can now be installed.. # Security update for sssd Announcement ID: SUSE-SU-2026:20019-1 Release Date: 2026-01-02T16:58:16Z Rating: important References: * bsc#1244325 * bsc#1251827 Cross-References: * CVE-2025-11561 CVSS scores: * CVE-2025-11561 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-11561 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-11561 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP Applications 16.0 An update that solves one vulnerability and has one fix can now be installed. ## Description: This update for sssd fixes the following issues: * CVE-2025-11561: Fixed default Kerberos configuration allowing privilege escalation on AD-joined Linux systems (bsc#1244325) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-119=1 * SUSE Linux Enterprise Server for SAP Applications 16.0 zypper in -t patch SUSE-SLES-16.0-119=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * libipa_hbac-devel-2.9.5-160000.3.1 * libsss_idmap-devel-2.9.5-160000.3.1 * libipa_hbac0-debuginfo-2.9.5-160000.3.1 * sssd-ipa-debuginfo-2.9.5-160000.3.1 * sssd-ad-2.9.5-160000.3.1 * libsss_certmap0-2.9.5-160000.3.1 * libipa_hbac0-2.9.5-160000.3.1 * sssd-krb5-common-2.9.5-160000.3.1 * sssd-ldap-2.9.5-160000.3.1 * sssd-tools-debuginfo-2.9.5-160000.3.1 * libsss_nss_idmap0-debuginfo-2.9.5-160000.3.1 * libsss_certmap0-debuginfo-2.9.5-160000.3.1 * python3-sssd-config-2.9.5-160000.3.1 * sssd-krb5-2.9.5-160000.3.1 *sssd-proxy-2.9.5-160000.3.1 * sssd-ipa-2.9.5-160000.3.1 * sssd-kcm-debuginfo-2.9.5-160000.3.1 * sssd-krb5-common-debuginfo-2.9.5-160000.3.1 * python3-ipa_hbac-debuginfo-2.9.5-160000.3.1 * sssd-debugsource-2.9.5-160000.3.1 * python3-sss_nss_idmap-debuginfo-2.9.5-160000.3.1 * sssd-winbind-idmap-2.9.5-160000.3.1 * libnfsidmap-sss-debuginfo-2.9.5-160000.3.1 * sssd-ad-debuginfo-2.9.5-160000.3.1 * libsss_idmap0-2.9.5-160000.3.1 * libsss_nss_idmap0-2.9.5-160000.3.1 * sssd-ldap-debuginfo-2.9.5-160000.3.1 * sssd-debuginfo-2.9.5-160000.3.1 * python3-sss-murmur-2.9.5-160000.3.1 * sssd-winbind-idmap-debuginfo-2.9.5-160000.3.1 * libnfsidmap-sss-2.9.5-160000.3.1 * libsss_nss_idmap-devel-2.9.5-160000.3.1 * libsss_idmap0-debuginfo-2.9.5-160000.3.1 * python3-sss_nss_idmap-2.9.5-160000.3.1 * libsss_certmap-devel-2.9.5-160000.3.1 * sssd-2.9.5-160000.3.1 * python3-sss-murmur-debuginfo-2.9.5-160000.3.1 * sssd-dbus-2.9.5-160000.3.1 * sssd-proxy-debuginfo-2.9.5-160000.3.1 * sssd-krb5-debuginfo-2.9.5-160000.3.1 * sssd-kcm-2.9.5-160000.3.1 * sssd-dbus-debuginfo-2.9.5-160000.3.1 * python3-ipa_hbac-2.9.5-160000.3.1 * sssd-tools-2.9.5-160000.3.1 * python3-sssd-config-debuginfo-2.9.5-160000.3.1 * SUSE Linux Enterprise Server for SAP Applications 16.0 (ppc64le x86_64) * libipa_hbac-devel-2.9.5-160000.3.1 * libsss_idmap-devel-2.9.5-160000.3.1 * libipa_hbac0-debuginfo-2.9.5-160000.3.1 * sssd-ipa-debuginfo-2.9.5-160000.3.1 * sssd-ad-2.9.5-160000.3.1 * libsss_certmap0-2.9.5-160000.3.1 * libipa_hbac0-2.9.5-160000.3.1 * sssd-krb5-common-2.9.5-160000.3.1 * sssd-ldap-2.9.5-160000.3.1 * sssd-tools-debuginfo-2.9.5-160000.3.1 * libsss_nss_idmap0-debuginfo-2.9.5-160000.3.1 * libsss_certmap0-debuginfo-2.9.5-160000.3.1 * python3-sssd-config-2.9.5-160000.3.1 * sssd-krb5-2.9.5-160000.3.1 * sssd-proxy-2.9.5-160000.3.1 * sssd-ipa-2.9.5-160000.3.1 *sssd-kcm-debuginfo-2.9.5-160000.3.1 * sssd-krb5-common-debuginfo-2.9.5-160000.3.1 * python3-ipa_hbac-debuginfo-2.9.5-160000.3.1 * sssd-debugsource-2.9.5-160000.3.1 * python3-sss_nss_idmap-debuginfo-2.9.5-160000.3.1 * sssd-winbind-idmap-2.9.5-160000.3.1 * libnfsidmap-sss-debuginfo-2.9.5-160000.3.1 * sssd-ad-debuginfo-2.9.5-160000.3.1 * libsss_idmap0-2.9.5-160000.3.1 * libsss_nss_idmap0-2.9.5-160000.3.1 * sssd-ldap-debuginfo-2.9.5-160000.3.1 * sssd-debuginfo-2.9.5-160000.3.1 * python3-sss-murmur-2.9.5-160000.3.1 * sssd-winbind-idmap-debuginfo-2.9.5-160000.3.1 * libnfsidmap-sss-2.9.5-160000.3.1 * libsss_nss_idmap-devel-2.9.5-160000.3.1 * libsss_idmap0-debuginfo-2.9.5-160000.3.1 * python3-sss_nss_idmap-2.9.5-160000.3.1 * libsss_certmap-devel-2.9.5-160000.3.1 * sssd-2.9.5-160000.3.1 * python3-sss-murmur-debuginfo-2.9.5-160000.3.1 * sssd-dbus-2.9.5-160000.3.1 * sssd-proxy-debuginfo-2.9.5-160000.3.1 * sssd-krb5-debuginfo-2.9.5-160000.3.1 * sssd-kcm-2.9.5-160000.3.1 * sssd-dbus-debuginfo-2.9.5-160000.3.1 * python3-ipa_hbac-2.9.5-160000.3.1 * sssd-tools-2.9.5-160000.3.1 * python3-sssd-config-debuginfo-2.9.5-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-11561.html * https://bugzilla.suse.com/show_bug.cgi?id=1244325 * https://bugzilla.suse.com/show_bug.cgi?id=1251827 . Discover a security update for SUSE addressing an important privilege escalation issue in sssd software. Update now!. SUSE security advisory, sssd update, privilege escalation fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 09, 2026 Important SuSE
Banner 3 1028x280 1708121785 1771599793
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySuSEprivilege escalation

SUSE Linux Micro: Crucial Patch for Privilege Escalation CVE-2025-11561

An update that solves one vulnerability and has one fix can now be installed.. # Security update for sssd Announcement ID: SUSE-SU-2026:20014-1 Release Date: 2026-01-02T16:58:31Z Rating: important References: * bsc#1244325 * bsc#1251827 Cross-References: * CVE-2025-11561 CVSS scores: * CVE-2025-11561 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-11561 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-11561 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.2 An update that solves one vulnerability and has one fix can now be installed. ## Description: This update for sssd fixes the following issues: * CVE-2025-11561: Fixed default Kerberos configuration allowing privilege escalation on AD-joined Linux systems (bsc#1244325) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-119=1 ## Package List: * SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64) * sssd-ad-2.9.5-160000.3.1 * libsss_certmap0-2.9.5-160000.3.1 * sssd-krb5-common-2.9.5-160000.3.1 * sssd-ldap-2.9.5-160000.3.1 * sssd-tools-debuginfo-2.9.5-160000.3.1 * python3-sssd-config-2.9.5-160000.3.1 * libsss_certmap0-debuginfo-2.9.5-160000.3.1 * sssd-krb5-2.9.5-160000.3.1 * sssd-krb5-common-debuginfo-2.9.5-160000.3.1 * sssd-debugsource-2.9.5-160000.3.1 * sssd-ad-debuginfo-2.9.5-160000.3.1 * libsss_idmap0-2.9.5-160000.3.1 * sssd-ldap-debuginfo-2.9.5-160000.3.1 * sssd-debuginfo-2.9.5-160000.3.1 * libsss_idmap0-debuginfo-2.9.5-160000.3.1 * sssd-2.9.5-160000.3.1 * sssd-dbus-2.9.5-160000.3.1 * sssd-krb5-debuginfo-2.9.5-160000.3.1 * sssd-dbus-debuginfo-2.9.5-160000.3.1 *sssd-tools-2.9.5-160000.3.1 * python3-sssd-config-debuginfo-2.9.5-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-11561.html * https://bugzilla.suse.com/show_bug.cgi?id=1244325 * https://bugzilla.suse.com/show_bug.cgi?id=1251827 . A security update for SUSE addresses a critical issue in sssd, resolving privilege escalation vulnerabilities.. sssd security update, SUSE Linux Micro threat, privilege escalation fix, sssd vulnerability management. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 09, 2026 Important SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySuSEprivilege escalation

SUSE: Critical Privilege Escalation CVE-2025-11561 Advisory 2025:21084-1

* bsc#1244325 * bsc#1251827 Cross-References: * CVE-2025-11561 . # Security update for sssd Announcement ID: SUSE-SU-2025:21084-1 Release Date: 2025-11-27T11:12:20Z Rating: important References: * bsc#1244325 * bsc#1251827 Cross-References: * CVE-2025-11561 CVSS scores: * CVE-2025-11561 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-11561 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-11561 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability and has one fix can now be installed. ## Description: This update for sssd fixes the following issues: * CVE-2025-11561: Fixed default Kerberos configuration allowing privilege escalation on AD-joined Linux systems (bsc#1251827) Other fixes: \- Install file in krb5.conf.d to include sssd krb5 config snippets (bsc#1244325) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-527=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * sssd-ad-debuginfo-2.8.2-7.1 * libsss_nss_idmap0-debuginfo-2.8.2-7.1 * libsss_idmap0-2.8.2-7.1 * sssd-krb5-debuginfo-2.8.2-7.1 * libsss_nss_idmap0-2.8.2-7.1 * python3-sssd-config-2.8.2-7.1 * sssd-ldap-debuginfo-2.8.2-7.1 * python3-sssd-config-debuginfo-2.8.2-7.1 * sssd-ad-2.8.2-7.1 * sssd-krb5-common-debuginfo-2.8.2-7.1 * sssd-dbus-debuginfo-2.8.2-7.1 * sssd-krb5-common-2.8.2-7.1 * libsss_certmap0-2.8.2-7.1 * libsss_idmap0-debuginfo-2.8.2-7.1 * sssd-krb5-2.8.2-7.1 * sssd-dbus-2.8.2-7.1 * libsss_certmap0-debuginfo-2.8.2-7.1 * sssd-debuginfo-2.8.2-7.1 * sssd-2.8.2-7.1 * sssd-debugsource-2.8.2-7.1 * sssd-ldap-2.8.2-7.1 * sssd-tools-2.8.2-7.1 * sssd-tools-debuginfo-2.8.2-7.1 ## References: * https://www.suse.com/security/cve/CVE-2025-11561.html * https://bugzilla.suse.com/show_bug.cgi?id=1244325 * https://bugzilla.suse.com/show_bug.cgi?id=1251827 . SUSE's critical sssd update addresses privilege escalation and important fixes for system security. Essential for AD-connected systems.. sssd security update, SUSE Linux Micro patch, privileged access control, security advisory details. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 09, 2025 Important SuSE
Banner 3 1028x280 1708121785 1771599793
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisoryupdatethreat

Oracle Linux 7 Advisory ELSA-2025-19847 Important SSSD Security Update

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-19847 http://linux.oracle.com/errata/ELSA-2025-19847.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable LinuxNetwork: x86_64: libipa_hbac-1.16.5-10.0.5.el7_9.16.i686.rpm libipa_hbac-1.16.5-10.0.5.el7_9.16.x86_64.rpm libipa_hbac-devel-1.16.5-10.0.5.el7_9.16.i686.rpm libipa_hbac-devel-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_autofs-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_certmap-1.16.5-10.0.5.el7_9.16.i686.rpm libsss_certmap-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_certmap-devel-1.16.5-10.0.5.el7_9.16.i686.rpm libsss_certmap-devel-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_idmap-1.16.5-10.0.5.el7_9.16.i686.rpm libsss_idmap-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_idmap-devel-1.16.5-10.0.5.el7_9.16.i686.rpm libsss_idmap-devel-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_nss_idmap-1.16.5-10.0.5.el7_9.16.i686.rpm libsss_nss_idmap-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_nss_idmap-devel-1.16.5-10.0.5.el7_9.16.i686.rpm libsss_nss_idmap-devel-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_simpleifp-1.16.5-10.0.5.el7_9.16.i686.rpm libsss_simpleifp-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_simpleifp-devel-1.16.5-10.0.5.el7_9.16.i686.rpm libsss_simpleifp-devel-1.16.5-10.0.5.el7_9.16.x86_64.rpm libsss_sudo-1.16.5-10.0.5.el7_9.16.x86_64.rpm python-libipa_hbac-1.16.5-10.0.5.el7_9.16.x86_64.rpm python-libsss_nss_idmap-1.16.5-10.0.5.el7_9.16.x86_64.rpm python-sss-1.16.5-10.0.5.el7_9.16.x86_64.rpm python-sss-murmur-1.16.5-10.0.5.el7_9.16.x86_64.rpm python-sssdconfig-1.16.5-10.0.5.el7_9.16.noarch.rpm sssd-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-ad-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-client-1.16.5-10.0.5.el7_9.16.i686.rpm sssd-client-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-common-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-common-pac-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-dbus-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-ipa-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-kcm-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-krb5-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-krb5-common-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-ldap-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-libwbclient-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-libwbclient-devel-1.16.5-10.0.5.el7_9.16.i686.rpm sssd-libwbclient-devel-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-polkit-rules-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-proxy-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-tools-1.16.5-10.0.5.el7_9.16.x86_64.rpm sssd-winbind-idmap-1.16.5-10.0.5.el7_9.16.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/sssd-1.16.5-10.0.5.el7_9.16.src.rpm Related CVEs: CVE-2025-11561 Description of changes: [1.16.5-10.0.5.16] - krb5: disable Kerberos localauth an2ln plugin for AD/IPA [Orabug: 38621159] _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Updates for Oracle Linux 7 address the important security issue in SSSD. Ensure system security with the latest patches.. Oracle Linux, SSSD, security patches, Linux updates, threat management. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 09, 2025 Important Oracle
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisoryprivilege escalationremote access

Oracle Linux 10: ELSA-2025-21020 sssd Important Privilege Escalation

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-21020 http://linux.oracle.com/errata/ELSA-2025-21020.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable LinuxNetwork: x86_64: libipa_hbac-2.11.1-2.0.1.el10_1.1.x86_64.rpm libsss_autofs-2.11.1-2.0.1.el10_1.1.x86_64.rpm libsss_certmap-2.11.1-2.0.1.el10_1.1.x86_64.rpm libsss_idmap-2.11.1-2.0.1.el10_1.1.x86_64.rpm libsss_nss_idmap-2.11.1-2.0.1.el10_1.1.x86_64.rpm libsss_nss_idmap-devel-2.11.1-2.0.1.el10_1.1.x86_64.rpm libsss_sudo-2.11.1-2.0.1.el10_1.1.x86_64.rpm python3-libipa_hbac-2.11.1-2.0.1.el10_1.1.x86_64.rpm python3-libsss_nss_idmap-2.11.1-2.0.1.el10_1.1.x86_64.rpm python3-sss-2.11.1-2.0.1.el10_1.1.x86_64.rpm python3-sss-murmur-2.11.1-2.0.1.el10_1.1.x86_64.rpm python3-sssdconfig-2.11.1-2.0.1.el10_1.1.noarch.rpm sssd-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-ad-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-client-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-common-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-common-pac-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-dbus-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-idp-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-ipa-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-kcm-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-krb5-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-krb5-common-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-ldap-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-nfs-idmap-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-passkey-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-proxy-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-tools-2.11.1-2.0.1.el10_1.1.x86_64.rpm sssd-winbind-idmap-2.11.1-2.0.1.el10_1.1.x86_64.rpm aarch64: libipa_hbac-2.11.1-2.0.1.el10_1.1.aarch64.rpm libsss_autofs-2.11.1-2.0.1.el10_1.1.aarch64.rpm libsss_certmap-2.11.1-2.0.1.el10_1.1.aarch64.rpm libsss_idmap-2.11.1-2.0.1.el10_1.1.aarch64.rpm libsss_nss_idmap-2.11.1-2.0.1.el10_1.1.aarch64.rpm libsss_nss_idmap-devel-2.11.1-2.0.1.el10_1.1.aarch64.rpm libsss_sudo-2.11.1-2.0.1.el10_1.1.aarch64.rpm python3-libipa_hbac-2.11.1-2.0.1.el10_1.1.aarch64.rpm python3-libsss_nss_idmap-2.11.1-2.0.1.el10_1.1.aarch64.rpm python3-sss-2.11.1-2.0.1.el10_1.1.aarch64.rpm python3-sss-murmur-2.11.1-2.0.1.el10_1.1.aarch64.rpm python3-sssdconfig-2.11.1-2.0.1.el10_1.1.noarch.rpm sssd-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-ad-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-client-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-common-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-common-pac-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-dbus-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-idp-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-ipa-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-kcm-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-krb5-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-krb5-common-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-ldap-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-nfs-idmap-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-passkey-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-proxy-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-tools-2.11.1-2.0.1.el10_1.1.aarch64.rpm sssd-winbind-idmap-2.11.1-2.0.1.el10_1.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/sssd-2.11.1-2.0.1.el10_1.1.src.rpm Related CVEs: CVE-2025-11561 Description of changes: [2.11.1-2.0.1.1] - Restore default debug level for sss_cache [Orabug: 32810448] [2.11.1-2.1] - Resovles: RHEL-120288 - CVE-2025-11561 sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems [rhel-10.1.z] _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux 10's security advisory addresses important updates for sssd, resolving a privilege escalation issue.. Oracle Linux, sssd, privilege escalation, security advisory, updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 05, 2025 Important Oracle
Banner 3 1028x280 1708121785 1771599793
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisoryprivilege escalationimportant

Oracle Linux 9 ELSA-2025-20954 sssd Important Privilege Escalation Fix

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-20954 http://linux.oracle.com/errata/ELSA-2025-20954.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: libipa_hbac-2.9.7-4.0.1.el9_7.1.i686.rpm libipa_hbac-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_autofs-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_certmap-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_certmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_idmap-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_nss_idmap-devel-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_nss_idmap-devel-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_simpleifp-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_simpleifp-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_sudo-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-libipa_hbac-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-sss-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-sss-murmur-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-sssdconfig-2.9.7-4.0.1.el9_7.1.noarch.rpm sssd-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-ad-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-client-2.9.7-4.0.1.el9_7.1.i686.rpm sssd-client-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-common-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-common-pac-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-dbus-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-idp-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-ipa-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-kcm-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-krb5-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-krb5-common-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-ldap-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-nfs-idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-passkey-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-polkit-rules-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-proxy-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-tools-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-winbind-idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm aarch64: libipa_hbac-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_autofs-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_certmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_nss_idmap-devel-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_simpleifp-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_sudo-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-libipa_hbac-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-sss-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-sss-murmur-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-sssdconfig-2.9.7-4.0.1.el9_7.1.noarch.rpm sssd-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-ad-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-client-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-common-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-common-pac-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-dbus-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-idp-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-ipa-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-kcm-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-krb5-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-krb5-common-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-ldap-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-nfs-idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-passkey-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-polkit-rules-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-proxy-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-tools-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-winbind-idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/sssd-2.9.7-4.0.1.el9_7.1.src.rpm Related CVEs: CVE-2025-11561 Description of changes: [2.9.7-4.0.1.1] - Restore default debug level for sss_cache [Orabug: 32810448] * Fri Oct 17 2025 Tomas Halman

Calendar 2 Nov 27, 2025 Important Oracle
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryupdateSuSE

SUSE Advisory 2025:21066-1 for sssd: Critical Privilege Escalation Fix

* bsc#1244325 * bsc#1251827 Cross-References: * CVE-2025-11561 . # Security update for sssd Announcement ID: SUSE-SU-2025:21066-1 Release Date: 2025-11-26T14:27:32Z Rating: important References: * bsc#1244325 * bsc#1251827 Cross-References: * CVE-2025-11561 CVSS scores: * CVE-2025-11561 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-11561 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-11561 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability and has one fix can now be installed. ## Description: This update for sssd fixes the following issues: * CVE-2025-11561: Fixed default Kerberos configuration allowing privilege escalation on AD-joined Linux systems (bsc#1251827) Other fixes: \- Install file in krb5.conf.d to include sssd krb5 config snippets (bsc#1244325) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-344=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * libsss_nss_idmap0-2.9.5-slfo.1.1_4.1 * libsss_certmap0-2.9.5-slfo.1.1_4.1 * sssd-krb5-2.9.5-slfo.1.1_4.1 * sssd-ldap-2.9.5-slfo.1.1_4.1 * sssd-ad-debuginfo-2.9.5-slfo.1.1_4.1 * sssd-ad-2.9.5-slfo.1.1_4.1 * sssd-debugsource-2.9.5-slfo.1.1_4.1 * sssd-2.9.5-slfo.1.1_4.1 * libsss_idmap0-2.9.5-slfo.1.1_4.1 * sssd-dbus-2.9.5-slfo.1.1_4.1 * sssd-krb5-common-2.9.5-slfo.1.1_4.1 * python3-sssd-config-debuginfo-2.9.5-slfo.1.1_4.1 * libsss_certmap0-debuginfo-2.9.5-slfo.1.1_4.1 * sssd-debuginfo-2.9.5-slfo.1.1_4.1 * sssd-krb5-common-debuginfo-2.9.5-slfo.1.1_4.1 * libsss_nss_idmap0-debuginfo-2.9.5-slfo.1.1_4.1 *sssd-tools-2.9.5-slfo.1.1_4.1 * sssd-ldap-debuginfo-2.9.5-slfo.1.1_4.1 * python3-sssd-config-2.9.5-slfo.1.1_4.1 * sssd-tools-debuginfo-2.9.5-slfo.1.1_4.1 * sssd-krb5-debuginfo-2.9.5-slfo.1.1_4.1 * sssd-dbus-debuginfo-2.9.5-slfo.1.1_4.1 * libsss_idmap0-debuginfo-2.9.5-slfo.1.1_4.1 ## References: * https://www.suse.com/security/cve/CVE-2025-11561.html * https://bugzilla.suse.com/show_bug.cgi?id=1244325 * https://bugzilla.suse.com/show_bug.cgi?id=1251827 . Important security update for SUSE sssd addressing a privilege escalation issue linked to CVE-2025-11561. Install now!. SUSE sssd update, privilege escalation, security patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 27, 2025 Important SuSE
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here