Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryupdateremote code execution

SUSE: 2019:3311-1 Important: Git Remote Code Execution Risk

An update that solves 9 vulnerabilities and has one errata is now available. . SUSE Security Update: Security update for git ______________________________________________________________________________ Announcement ID: SUSE-SU-2019:3311-1 Rating: important References: #1082023 #1158785 #1158787 #1158788 #1158789 #1158790 #1158791 #1158792 #1158793 #1158795 Cross-References: CVE-2019-1348 CVE-2019-1349 CVE-2019-1350 CVE-2019-1351 CVE-2019-1352 CVE-2019-1353 CVE-2019-1354 CVE-2019-1387 CVE-2019-19604 Affected Products: SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 7 SUSE Linux Enterprise Software Development Kit 12-SP5 SUSE Linux Enterprise Software Development Kit 12-SP4 SUSE Linux Enterprise Server for SAP 12-SP3 SUSE Linux Enterprise Server for SAP 12-SP2 SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Server 12-SP4 SUSE Linux Enterprise Server 12-SP3-LTSS SUSE Linux Enterprise Server 12-SP3-BCL SUSE Linux Enterprise Server 12-SP2-LTSS SUSE Linux Enterprise Server 12-SP2-BCL SUSE Linux Enterprise Server 12-SP1-LTSS SUSE Enterprise Storage 5 SUSE CaaS Platform 3.0 HPE Helion Openstack 8 ______________________________________________________________________________ An update that solves 9 vulnerabilities and has one errata is now available. Description: This update for git fixes the following issues: Security issues fixed: - CVE-2019-1349: Fixed issue on Windows, when submodules are cloned recursively, under certain circumstances Git could be fooled into using the same Git directory twice (bsc#1158787). - CVE-2019-19604:Fixed a recursive clone followed by a submodule update could execute code contained within the repository without the user explicitly having asked for that (bsc#1158795). - CVE-2019-1387: Fixed recursive clones that are currently affected by a vulnerability that is caused by too-lax validation of submodule names, allowing very targeted attacks via remote code execution in recursive clones (bsc#1158793). - CVE-2019-1354: Fixed issue on Windows that refuses to write tracked files with filenames that contain backslashes (bsc#1158792). - CVE-2019-1353: Fixed issue when run in the Windows Subsystem for Linux while accessing a working directory on a regular Windows drive, none of the NTFS protections were active (bsc#1158791). - CVE-2019-1352: Fixed issue on Windows was unaware of NTFS Alternate Data Streams (bsc#1158790). - CVE-2019-1351: Fixed issue on Windows mistakes drive letters outside of the US-English alphabet as relative paths (bsc#1158789). - CVE-2019-1350: Fixed incorrect quoting of command-line arguments allowed remote code execution during a recursive clone in conjunction with SSH URLs (bsc#1158788). - CVE-2019-1348: Fixed the --export-marks option of fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths (bsc#1158785). - Fixed an issue where git send-email fails to authenticate with SMTP server (bsc#1082023) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 8: zypper in -t patch SUSE-OpenStack-Cloud-8-2019-3311=1 - SUSE OpenStack Cloud 7: zypper in -t patch SUSE-OpenStack-Cloud-7-2019-3311=1 - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2019-3311=1 - SUSE LinuxEnterprise Software Development Kit 12-SP4: zypper in -t patch SUSE-SLE-SDK-12-SP4-2019-3311=1 - SUSE Linux Enterprise Server for SAP 12-SP3: zypper in -t patch SUSE-SLE-SAP-12-SP3-2019-3311=1 - SUSE Linux Enterprise Server for SAP 12-SP2: zypper in -t patch SUSE-SLE-SAP-12-SP2-2019-3311=1 - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2019-3311=1 - SUSE Linux Enterprise Server 12-SP4: zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-3311=1 - SUSE Linux Enterprise Server 12-SP3-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2019-3311=1 - SUSE Linux Enterprise Server 12-SP3-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP3-BCL-2019-3311=1 - SUSE Linux Enterprise Server 12-SP2-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2019-3311=1 - SUSE Linux Enterprise Server 12-SP2-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP2-BCL-2019-3311=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2019-3311=1 - SUSE Enterprise Storage 5: zypper in -t patch SUSE-Storage-5-2019-3311=1 - SUSE CaaS Platform 3.0: To install this update, use the SUSE CaaS Platform Velum dashboard. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. - HPE Helion Openstack 8: zypper in -t patch HPE-Helion-OpenStack-8-2019-3311=1 Package List: - SUSE OpenStack Cloud 8 (x86_64): git-2.12.3-27.22.1 git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE OpenStack Cloud 7 (s390x x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE OpenStack Cloud 7 (noarch): git-doc-2.12.3-27.22.1 - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64): git-2.12.3-27.22.1 git-arch-2.12.3-27.22.1 git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-cvs-2.12.3-27.22.1 git-daemon-2.12.3-27.22.1 git-daemon-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 git-email-2.12.3-27.22.1 git-gui-2.12.3-27.22.1 git-svn-2.12.3-27.22.1 git-svn-debuginfo-2.12.3-27.22.1 git-web-2.12.3-27.22.1 gitk-2.12.3-27.22.1 - SUSE Linux Enterprise Software Development Kit 12-SP5 (noarch): git-doc-2.12.3-27.22.1 - SUSE Linux Enterprise Software Development Kit 12-SP4 (aarch64 ppc64le s390x x86_64): git-2.12.3-27.22.1 git-arch-2.12.3-27.22.1 git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-cvs-2.12.3-27.22.1 git-daemon-2.12.3-27.22.1 git-daemon-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 git-email-2.12.3-27.22.1 git-gui-2.12.3-27.22.1 git-svn-2.12.3-27.22.1 git-svn-debuginfo-2.12.3-27.22.1 git-web-2.12.3-27.22.1 gitk-2.12.3-27.22.1 - SUSE Linux Enterprise Software Development Kit 12-SP4 (noarch): git-doc-2.12.3-27.22.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (ppc64le x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE Linux Enterprise Server for SAP 12-SP2 (ppc64le x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE Linux Enterprise Server for SAP 12-SP2 (noarch): git-doc-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP5 (aarch64 ppc64le s390x x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP4 (aarch64 ppc64le s390x x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (aarch64 ppc64le s390x x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP3-BCL (x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP2-LTSS (ppc64le s390x x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP2-LTSS (noarch): git-doc-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP2-BCL (x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP2-BCL (noarch): git-doc-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (ppc64le s390x x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (noarch): git-doc-2.12.3-27.22.1 - SUSE Enterprise Storage 5 (x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - SUSE CaaS Platform 3.0 (x86_64): git-core-2.12.3-27.22.1 git-core-debuginfo-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 - HPE Helion Openstack 8 (x86_64): git-2.12.3-27.22.1 git-debugsource-2.12.3-27.22.1 References: https://www.suse.com/security/cve/CVE-2019-1348.html https://www.suse.com/security/cve/CVE-2019-1349.html https://www.suse.com/security/cve/CVE-2019-1350.html https://www.suse.com/security/cve/CVE-2019-1351.html https://www.suse.com/security/cve/CVE-2019-1352.html https://www.suse.com/security/cve/CVE-2019-1353.html https://www.suse.com/security/cve/CVE-2019-1354.html https://www.suse.com/security/cve/CVE-2019-1387.html https://www.suse.com/security/cve/CVE-2019-19604.html https://bugzilla.suse.com/1082023 https://bugzilla.suse.com/1158785 https://bugzilla.suse.com/1158787 https://bugzilla.suse.com/1158788 https://bugzilla.suse.com/1158789 https://bugzilla.suse.com/1158790 https://bugzilla.suse.com/1158791 https://bugzilla.suse.com/1158792 https://bugzilla.suse.com/1158793 https://bugzilla.suse.com/1158795 _______________________________________________ sle-security-updates mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. http://lists.suse.com/mailman/listinfo/sle-security-updates . SUSE Security Patch addresses several vulnerabilities in git, delivering crucial fixes across multiple SUSE platforms. Keep your systems secure!. SUSE Update, Git Security, Remote Code Issues, SUSE Patches. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 16, 2019 Important SuSE
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryarbitrary executiongit

Mageia: 2019-0393 Moderate: Git Arbitrary Command Execution

The updated packages fix security vulnerabilities: The --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths. (CVE-2019-1348) . MGASA-2019-0393 - Updated git packages fix security vulnerabilities Publication date: 15 Dec 2019 URL: https://advisories.mageia.org/MGASA-2019-0393.html Type: security Affected Mageia releases: 7 CVE: CVE-2019-1348, CVE-2019-1349, CVE-2019-1387, CVE-2019-19604 The updated packages fix security vulnerabilities: The --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths. (CVE-2019-1348) When submodules are cloned recursively, under certain circumstances Git could be fooled into using the same Git directory twice. We now require the directory to be empty. (CVE-2019-1349) Recursive clones are currently affected by a vulnerability that is caused by too-lax validation of submodule names, allowing very targeted attacks via remote code execution in recursive clones. (CVE-2019-1387) Arbitrary command execution is possible in Git before before 2.21.1, because a "git submodule update" operation can run commands found in the .gitmodules file of a malicious repository. (CVE-2019-19604) References: - https://bugs.mageia.org/show_bug.cgi?id=25867 - https://www.openwall.com/lists/oss-security/2019/12/13/1 - https://www.cve.org/CVERecord?id=CVE-2019-1348 - https://www.cve.org/CVERecord?id=CVE-2019-1349 - https://www.cve.org/CVERecord?id=CVE-2019-1387 - https://www.cve.org/CVERecord?id=CVE-2019-19604 SRPMS: - 7/core/git-2.21.1-1.mga7 . Zend Framework 2020-0456: Vital security patch resolving severe vulnerabilities. Upgrade immediately to protect your infrastructure.. Git Security Update, Mageia Security, CVE Fixes, Git Vulnerabilities. . LinuxSecurity.com Team

Calendar 2 Dec 15, 2019 Mageia
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here