Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 1 articles for you...
89
security advisorykernel updateFedoraFedora 38: 2024-71f0f16533 Moderate: Kernel Security Updates
The 6.7.6 stable kernel update contains a number of important fixes across the tree.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-71f0f16533 2024-02-28 01:40:29.293829 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 38 Version : 6.7.6 Release : 100.fc38 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package -------------------------------------------------------------------------------- Update Information: The 6.7.6 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 23 2024 Justin M. Forbes [6.7.6-0] - Add CVE fix for 6.7.6 (Justin M. Forbes) - Linux v6.7.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2265269 - CVE-2023-52437 kernel: Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" https://bugzilla.redhat.com/show_bug.cgi?id=2265269 [ 2 ] Bug #2265517 - CVE-2024-26585 kernel: tls: race between tx work scheduling and socket close https://bugzilla.redhat.com/show_bug.cgi?id=2265517 [ 3 ] Bug #2265518 - CVE-2024-26582 kernel: tls: use-after-free with partial reads and async decrypt https://bugzilla.redhat.com/show_bug.cgi?id=2265518 [ 4 ] Bug #2265519 - CVE-2024-26584 kernel: tls: handle backlogging of crypto requests https://bugzilla.redhat.com/show_bug.cgi?id=2265519 [ 5 ] Bug #2265520 - CVE-2024-26583 kernel: tls: race between async notify and socket close https://bugzilla.redhat.com/show_bug.cgi?id=2265520 [ 6 ] Bug #2265646 - CVE-2024-26593 kernel: i2c: i801: Fix block process call transactions https://bugzilla.redhat.com/show_bug.cgi?id=2265646 [ 7 ] Bug #2265833 - CVE-2024-26603 kernel: x86/fpu: Stoprelying on userspace for info to fault in xsave buffer https://bugzilla.redhat.com/show_bug.cgi?id=2265833 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-71f0f16533' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Feb 28, 2024
•Important
Fedora
89
security advisoryfedoraupdateFedora 35 Kernel 6.0.11 Security Advisory: Fixes and Improvements
The 6.0.11 stable kernel update contains a number of important fixes across the tree.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-b36cd53dca 2022-12-05 01:32:32.254801 --------------------------------------------------------------------------------Name : kernel Product : Fedora 35 Version : 6.0.11 Release : 100.fc35 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package --------------------------------------------------------------------------------Update Information: The 6.0.11 stable kernel update contains a number of important fixes across the tree. --------------------------------------------------------------------------------ChangeLog: * Fri Dec 2 2022 Justin M. Forbes [6.0.11-0] - drm/i915: fix TLB invalidation for Gen12 video and compute engines (Andrzej Hajda) - l2tp: Serialize access to sk_user_data with sk_callback_lock (Jakub Sitnicki) - Adjust path to compressed vmlinux kernel image for s390x (Justin M. Forbes) [2149273] - Linux v6.0.11 --------------------------------------------------------------------------------References: [ 1 ] Bug #2134528 - CVE-2022-4129 kernel: l2tp: missing lock when clearing sk_user_data can lead to NULL pointer dereference https://bugzilla.redhat.com/show_bug.cgi?id=2134528 [ 2 ] Bug #2147572 - CVE-2022-4139 kernel: i915: Incorrect GPU TLB flush can lead to random memory access https://bugzilla.redhat.com/show_bug.cgi?id=2147572 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-b36cd53dca' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the FedoraProject can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Dec 05, 2022
•Important
Fedora
89
security advisoryFedorasecurity fixFedora 35 FEDORA-2022-185b91b741 Severe: ET Session Reconnect Enhancements
Several security and stability improvements. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-185b91b741 2022-05-16 02:04:05.714549 --------------------------------------------------------------------------------Name : et Product : Fedora 35 Version : 6.2.1 Release : 2.fc35 URL : https://eternalterminal.dev/ Summary : Remote shell that survives IP roaming and disconnect Description : Eternal Terminal (ET) is a remote shell that automatically reconnects without interrupting the session. --------------------------------------------------------------------------------Update Information: Several security and stability improvements --------------------------------------------------------------------------------ChangeLog: * Sat May 7 2022 Michel Alexandre Salim 6.2.1-2 - Fix %cmake invocation to make it work on Rawhide * Sat May 7 2022 Michel Alexandre Salim 6.2.1-1 - Update to 6.2.1 * Sat May 7 2022 Michel Alexandre Salim 6.1.11-1 - Update to 6.1.11; Unbundle Catch2 (Benjamin A. Beasley ) --------------------------------------------------------------------------------References: [ 1 ] Bug #2029239 - [abrt] et: el::base::utils::abort(): et killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=2029239 [ 2 ] Bug #2039118 - et-6.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2039118 [ 3 ] Bug #2045358 - et: FTBFS in Fedora rawhide/f36 https://bugzilla.redhat.com/show_bug.cgi?id=2045358 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-185b91b741' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by theFedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
May 15, 2022
Fedora
89
security advisoryFedoraupdate notificationFedora 34 FEDORA-2022-80b92b2a04 Critical: ET Security Improvements
Several security and stability improvements. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-80b92b2a04 2022-05-16 01:43:34.427136 --------------------------------------------------------------------------------Name : et Product : Fedora 34 Version : 6.2.1 Release : 2.fc34 URL : https://eternalterminal.dev/ Summary : Remote shell that survives IP roaming and disconnect Description : Eternal Terminal (ET) is a remote shell that automatically reconnects without interrupting the session. --------------------------------------------------------------------------------Update Information: Several security and stability improvements --------------------------------------------------------------------------------ChangeLog: * Sat May 7 2022 Michel Alexandre Salim 6.2.1-2 - Fix %cmake invocation to make it work on Rawhide * Sat May 7 2022 Michel Alexandre Salim 6.2.1-1 - Update to 6.2.1 * Sat May 7 2022 Michel Alexandre Salim 6.1.11-1 - Update to 6.1.11; Unbundle Catch2 (Benjamin A. Beasley ) --------------------------------------------------------------------------------References: [ 1 ] Bug #2029239 - [abrt] et: el::base::utils::abort(): et killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=2029239 [ 2 ] Bug #2039118 - et-6.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2039118 [ 3 ] Bug #2045358 - et: FTBFS in Fedora rawhide/f36 https://bugzilla.redhat.com/show_bug.cgi?id=2045358 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-80b92b2a04' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by theFedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
May 15, 2022
•Critical
Fedora
89
security advisoryupdateFedoraFedora 33 Advisory 2021-01f851ab8d: Moderate SeaMonkey Enhancements
Update to 2.53.8 Some improvements for performance and stability. Following the upstream and Firefox behaviour, no more use system colors (some backgrounds etc.) by default. You can change it in Appearance--> Colors as usual.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-01f851ab8d 2021-07-15 01:05:48.241157 --------------------------------------------------------------------------------Name : seamonkey Product : Fedora 33 Version : 2.53.8 Release : 1.fc33 URL : https://www.seamonkey-project.org/ Summary : Web browser, e-mail, news, IRC client, HTML editor Description : SeaMonkey is an all-in-one Internet application suite (previously made popular by Netscape and Mozilla). It includes an Internet browser, advanced e-mail, newsgroup and feed client, a calendar, IRC client, HTML editor and a tool to inspect the DOM for web pages. It is derived from the application formerly known as Mozilla Application Suite. --------------------------------------------------------------------------------Update Information: Update to 2.53.8 Some improvements for performance and stability. Following the upstream and Firefox behaviour, no more use system colors (some backgrounds etc.) by default. You can change it in Appearance--> Colors as usual. --------------------------------------------------------------------------------ChangeLog: * Mon Jun 28 2021 Dmitry Butskoy 2.53.8-1 - update to 2.53.8 - fix irc link behaviour and websearch (mozbz#1712498, mozbz#1713458, mozbz#1713467) - fix handling of mail attachments (mozbz#1661070) - no more set browser.display.use_system_colors by default * Sun Jun 13 2021 Robert-Andre Mauchin - 2.53.7-5 - Rebuilt for aom v3.1.1 - Add patch to build against nss 3.66 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2021-01f851ab8d' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jul 14, 2021
Fedora
89
security advisoryFedoraperformance fixFedora 32: FEDORA-2021-6c7cfe2532 Moderate: Suricata Update and Fixes
Various performance, accuracy and stability issues have been fixed.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-6c7cfe2532 2021-03-12 00:06:28.167598 --------------------------------------------------------------------------------Name : suricata Product : Fedora 32 Version : 5.0.6 Release : 1.fc32 URL : / Summary : Intrusion Detection System Description : The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP Matching, and GeoIP identification. --------------------------------------------------------------------------------Update Information: Various performance, accuracy and stability issues have been fixed. --------------------------------------------------------------------------------ChangeLog: * Tue Mar 2 2021 Steve Grubb 5.0.6-1 - New security and bugfix release --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-6c7cfe2532' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Mar 11, 2021
•Important
Fedora
89
security advisoryintrusion detectionFedoraFedora 33: Suricata 5.0.6 Performance Fixes and Improvements
Various performance, accuracy and stability issues have been fixed.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-9747ed7427 2021-03-11 23:36:42.886871 --------------------------------------------------------------------------------Name : suricata Product : Fedora 33 Version : 5.0.6 Release : 1.fc33 URL : / Summary : Intrusion Detection System Description : The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP Matching, and GeoIP identification. --------------------------------------------------------------------------------Update Information: Various performance, accuracy and stability issues have been fixed. --------------------------------------------------------------------------------ChangeLog: * Tue Mar 2 2021 Steve Grubb 5.0.6-1 - New security and bugfix release --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-9747ed7427' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Mar 11, 2021
•Important
Fedora
100
security advisorysoftware updatesecurity fixSUSE: 2020:0383-1 Important: MozillaFirefox Security Issues Fixed
An update that fixes 5 vulnerabilities is now available. . SUSE Security Update: Security update for MozillaFirefox ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:0383-1 Rating: important References: #1163368 Cross-References: CVE-2020-6796 CVE-2020-6797 CVE-2020-6798 CVE-2020-6799 CVE-2020-6800 Affected Products: SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Desktop Applications 15-SP1 SUSE Linux Enterprise Module for Desktop Applications 15 ______________________________________________________________________________ An update that fixes 5 vulnerabilities is now available. Description: This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 68.5.0 ESR * Fixed: Various stability and security fixes - Mozilla Firefox ESR68.5 MFSA 2020-06 (bsc#1163368) * CVE-2020-6796 (bmo#1610426) Missing bounds check on shared memory read in the parent process * CVE-2020-6797 (bmo#1596668) Extensions granted downloads.open permission could open arbitrary applications on Mac OSX * CVE-2020-6798 (bmo#1602944) Incorrect parsing of template tag could result in JavaScript injection * CVE-2020-6799 (bmo#1606596) Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader * CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543, bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785) Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can runthe command listed for your product: - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1: zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2020-383=1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15: zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-2020-383=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP1: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP1-2020-383=1 - SUSE Linux Enterprise Module for Desktop Applications 15: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-2020-383=1 Package List: - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (aarch64 ppc64le s390x x86_64): MozillaFirefox-branding-upstream-68.5.0-3.72.1 MozillaFirefox-debuginfo-68.5.0-3.72.1 MozillaFirefox-debugsource-68.5.0-3.72.1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (x86_64): MozillaFirefox-buildsymbols-68.5.0-3.72.1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (s390x): MozillaFirefox-devel-68.5.0-3.72.1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (aarch64 ppc64le s390x x86_64): MozillaFirefox-branding-upstream-68.5.0-3.72.1 MozillaFirefox-debuginfo-68.5.0-3.72.1 MozillaFirefox-debugsource-68.5.0-3.72.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (aarch64 ppc64le s390x x86_64): MozillaFirefox-68.5.0-3.72.1 MozillaFirefox-debuginfo-68.5.0-3.72.1 MozillaFirefox-debugsource-68.5.0-3.72.1 MozillaFirefox-translations-common-68.5.0-3.72.1 MozillaFirefox-translations-other-68.5.0-3.72.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (aarch64 ppc64le x86_64): MozillaFirefox-devel-68.5.0-3.72.1 - SUSE Linux Enterprise Module for Desktop Applications 15 (aarch64 ppc64le s390x x86_64): MozillaFirefox-68.5.0-3.72.1 MozillaFirefox-debuginfo-68.5.0-3.72.1 MozillaFirefox-debugsource-68.5.0-3.72.1 MozillaFirefox-devel-68.5.0-3.72.1 MozillaFirefox-translations-common-68.5.0-3.72.1 MozillaFirefox-translations-other-68.5.0-3.72.1 References: https://www.suse.com/security/cve/CVE-2020-6796.html https://www.suse.com/security/cve/CVE-2020-6797.html https://www.suse.com/security/cve/CVE-2020-6798.html https://www.suse.com/security/cve/CVE-2020-6799.html https://www.suse.com/security/cve/CVE-2020-6800.html https://bugzilla.suse.com/1163368 _______________________________________________ sle-security-updates mailing list
Feb 17, 2020
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!