Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorycriticalRed Hat Enterprise Linux

Red Hat Enterprise Linux 9 RHSA-2023:4708-01 Critical Security Flaw

An update for subscription-manager is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: subscription-manager security update Advisory ID: RHSA-2023:4708-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:4708 Issue date: 2023-08-22 CVE Names: CVE-2023-3899 ===================================================================== 1. Summary: An update for subscription-manager is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS (v. 9) - aarch64, ppc64le, s390x, x86_64 3. Description: The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the Red Hat entitlement platform. Security Fix(es): * subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration (CVE-2023-3899) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2225407 - CVE-2023-3899 subscription-manager: inadequate authorization ofcom.redhat.RHSM1 D-Bus interface allows local users to modify configuration 6. Package List: Red Hat Enterprise Linux BaseOS (v.9): Source: subscription-manager-1.29.33.1-2.el9_2.src.rpm aarch64: libdnf-plugin-subscription-manager-1.29.33.1-2.el9_2.aarch64.rpm libdnf-plugin-subscription-manager-debuginfo-1.29.33.1-2.el9_2.aarch64.rpm python3-cloud-what-1.29.33.1-2.el9_2.aarch64.rpm python3-subscription-manager-rhsm-1.29.33.1-2.el9_2.aarch64.rpm python3-subscription-manager-rhsm-debuginfo-1.29.33.1-2.el9_2.aarch64.rpm subscription-manager-1.29.33.1-2.el9_2.aarch64.rpm subscription-manager-debuginfo-1.29.33.1-2.el9_2.aarch64.rpm subscription-manager-debugsource-1.29.33.1-2.el9_2.aarch64.rpm subscription-manager-plugin-ostree-1.29.33.1-2.el9_2.aarch64.rpm ppc64le: libdnf-plugin-subscription-manager-1.29.33.1-2.el9_2.ppc64le.rpm libdnf-plugin-subscription-manager-debuginfo-1.29.33.1-2.el9_2.ppc64le.rpm python3-cloud-what-1.29.33.1-2.el9_2.ppc64le.rpm python3-subscription-manager-rhsm-1.29.33.1-2.el9_2.ppc64le.rpm python3-subscription-manager-rhsm-debuginfo-1.29.33.1-2.el9_2.ppc64le.rpm subscription-manager-1.29.33.1-2.el9_2.ppc64le.rpm subscription-manager-debuginfo-1.29.33.1-2.el9_2.ppc64le.rpm subscription-manager-debugsource-1.29.33.1-2.el9_2.ppc64le.rpm subscription-manager-plugin-ostree-1.29.33.1-2.el9_2.ppc64le.rpm s390x: libdnf-plugin-subscription-manager-1.29.33.1-2.el9_2.s390x.rpm libdnf-plugin-subscription-manager-debuginfo-1.29.33.1-2.el9_2.s390x.rpm python3-cloud-what-1.29.33.1-2.el9_2.s390x.rpm python3-subscription-manager-rhsm-1.29.33.1-2.el9_2.s390x.rpm python3-subscription-manager-rhsm-debuginfo-1.29.33.1-2.el9_2.s390x.rpm subscription-manager-1.29.33.1-2.el9_2.s390x.rpm subscription-manager-debuginfo-1.29.33.1-2.el9_2.s390x.rpm subscription-manager-debugsource-1.29.33.1-2.el9_2.s390x.rpm subscription-manager-plugin-ostree-1.29.33.1-2.el9_2.s390x.rpm x86_64: libdnf-plugin-subscription-manager-1.29.33.1-2.el9_2.x86_64.rpm libdnf-plugin-subscription-manager-debuginfo-1.29.33.1-2.el9_2.x86_64.rpm python3-cloud-what-1.29.33.1-2.el9_2.x86_64.rpm python3-subscription-manager-rhsm-1.29.33.1-2.el9_2.x86_64.rpm python3-subscription-manager-rhsm-debuginfo-1.29.33.1-2.el9_2.x86_64.rpm subscription-manager-1.29.33.1-2.el9_2.x86_64.rpm subscription-manager-debuginfo-1.29.33.1-2.el9_2.x86_64.rpm subscription-manager-debugsource-1.29.33.1-2.el9_2.x86_64.rpm subscription-manager-plugin-ostree-1.29.33.1-2.el9_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2023-3899 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJk5RhLAAoJENzjgjWX9erEZTIP/j8ltvT0uSgigA8rnjnbHeT8 FcGbZfH26PDKk3mkJeBzRKj5i8YZE94m/B9QhfqWofLwLXbVVrkUfVm9Q+GY1Gt/ aFSOao8igDJGM4PPVyUVvETy+s31gooBj7oyanoxGkgfHIoarLDXWQIIMqmkP5xm KKuOwIp+OQpzpx9MozrExzOdbHwuqcHljpBy2grzpJkLpcKkPt3Wz2y1x4aM+VyT CCTsQkcDnCOjShOw8qa5Ypwxj5uEt56osASdQXCHlcXMcyqK8FNNMcf6/7l0y5LN HonAHteo/wqMsmjKDPcWB1lKrlTNTDPD47JNMEp7ixRJyMgXCQmEgx3wb5e8jh4W FkB//kZNL5HFvjZt9dBFdJaMMCNAmWg/JtBeuiuxUFR8ucBGeWZJNIZEupJXDM8E A4fg1GZR4v/FbmoPyOlqRmNgTfsgN+m84mNpLbtKDu4FOe9MGgZHbHjgY/ZqFc+P QVUOxKeU8jYU6IGcp9egL1oSqW2bT4FDZFiTzeLnTWMErE1vBq/S1OF7QZiTdH8g 3qk9a7emDkQ6Ph/XD64mSe6xhXqPgCNmMu8CEndyIV22eyaJM048ImlW9cWejDpF JlcsIGXmq6NX9U3es1n+F6vlIS/rkwzMms8JpYzPj/ynGCjDSYGn8G3HpmVDbw/p oDqEHfzTg/JJf/FWeckN =qzFd -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Critical subscription-manager patch released for Red Hat Enterprise Linux 9 to mitigate security authorization issues.. Red Hat, Subscription Manager, Security Update, Enterprise Linux. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 22, 2023 Important Red Hat
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraDoS

Fedora 36: 2022-b9ef7c3c3c Moderate: subscription-manager-cockpit DoS Issue

We provided new build of RPM `subscription-manager-cockpit` containing RHSM cockpit plugin. This new build should fix security issue described in following BZ: https://bugzilla.redhat.com/show_bug.cgi?id=2110853. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-b9ef7c3c3c 2022-09-04 22:43:39.751132 --------------------------------------------------------------------------------Name : subscription-manager-cockpit Product : Fedora 36 Version : 4 Release : 1.fc36 URL : https://www.candlepinproject.org/ Summary : Subscription Manager Cockpit UI Description : Subscription Manager Cockpit UI --------------------------------------------------------------------------------Update Information: We provided new build of RPM `subscription-manager-cockpit` containing RHSM cockpit plugin. This new build should fix security issue described in following BZ: https://bugzilla.redhat.com/show_bug.cgi?id=2110853 --------------------------------------------------------------------------------ChangeLog: * Wed Jul 27 2022 Jiri Hnidek 4-1 * Tue Jul 26 2022 Jiri Hnidek 3-1 - Translated using Weblate (Korean) (This email address is being protected from spambots. You need JavaScript enabled to view it.) - test: drop unused reference-image file (This email address is being protected from spambots. You need JavaScript enabled to view it.) - Drop the static npm-shrinkwrap.json (This email address is being protected from spambots. You need JavaScript enabled to view it.) - Bump cockpit test API to 273 + run-tests scheduler fix (This email address is being protected from spambots. You need JavaScript enabled to view it.) - spec: suggest insights-client on RHEL (This email address is being protected from spambots. You need JavaScript enabled to view it.) - tito: remove autogenerated spec file before tagging (This email address is being protected from spambots. You need JavaScript enabled to view it.) * Fri Jun 24 2022 Jiri Hnidek 2-1 - New package built with tito - New pattern of versioning. Starting version is 2 --------------------------------------------------------------------------------References: [ 1 ] Bug #2110853 - CVE-2022-31129 subscription-manager-cockpit: moment: inefficient parsing algorithm resulting in DoS [fedora-36] https://bugzilla.redhat.com/show_bug.cgi?id=2110853 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-b9ef7c3c3c' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Latest version of subscription-manager-cockpit for Fedora 36 addresses a DoS vulnerability. Update now to enhance system security.. Fedora Security, Package Update, DoS Fix. . LinuxSecurity.com Team

Calendar 2 Sep 04, 2022 Fedora
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here