Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves two vulnerabilities can now be installed.. # Security update for avahi Announcement ID: SUSE-SU-2026:22338-1 Release Date: 2026-06-22T14:40:15Z Rating: moderate References: * bsc#1257235 * bsc#1261546 Cross-References: * CVE-2026-24401 * CVE-2026-34933 CVSS scores: * CVE-2026-24401 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-34933 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34933 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for avahi fixes the following issues: * CVE-2026-34933: reachable assertion in `transport_flags_from_domain` can crash the `avahi-daemon` (bsc#1261546). * CVE-2026-24401: unsolicited mDNS responses containing a recursive CNAME record can crash the `avahi-daemon` (bsc#1257235). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-1026=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-1026=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * avahi-autoipd-0.8-160000.5.1 * libhowl0-debuginfo-0.8-160000.5.1 * libavahi-common3-0.8-160000.5.1 * libavahi-glib-devel-0.8-160000.5.1 * libavahi-client3-debuginfo-0.8-160000.5.1 * libdns_sd-0.8-160000.5.1 * libavahi-glib1-0.8-160000.5.1 * libavahi-core7-0.8-160000.5.1 *libdns_sd-debuginfo-0.8-160000.5.1 * libavahi-ui-gtk3-0-debuginfo-0.8-160000.5.1 * avahi-utils-gtk-0.8-160000.5.1 * libavahi-ui-gtk3-0-0.8-160000.5.1 * avahi-autoipd-debuginfo-0.8-160000.5.1 * typelib-1_0-Avahi-0_6-0.8-160000.5.1 * avahi-debuginfo-0.8-160000.5.1 * libavahi-core7-debuginfo-0.8-160000.5.1 * libavahi-gobject-devel-0.8-160000.5.1 * libavahi-devel-0.8-160000.5.1 * avahi-0.8-160000.5.1 * libavahi-client3-0.8-160000.5.1 * libavahi-common3-debuginfo-0.8-160000.5.1 * libavahi-libevent1-debuginfo-0.8-160000.5.1 * python313-avahi-0.8-160000.5.1 * avahi-utils-debuginfo-0.8-160000.5.1 * libavahi-gobject0-debuginfo-0.8-160000.5.1 * libhowl0-0.8-160000.5.1 * avahi-utils-gtk-debuginfo-0.8-160000.5.1 * avahi-debugsource-0.8-160000.5.1 * avahi-compat-mDNSResponder-devel-0.8-160000.5.1 * libavahi-gobject0-0.8-160000.5.1 * avahi-glib2-debugsource-0.8-160000.5.1 * python3-avahi-gtk-0.8-160000.5.1 * libavahi-glib1-debuginfo-0.8-160000.5.1 * libavahi-libevent1-0.8-160000.5.1 * avahi-utils-0.8-160000.5.1 * SUSE Linux Enterprise Server 16.0 (noarch) * avahi-lang-0.8-160000.5.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * avahi-autoipd-0.8-160000.5.1 * libhowl0-debuginfo-0.8-160000.5.1 * libavahi-common3-0.8-160000.5.1 * libavahi-glib-devel-0.8-160000.5.1 * libavahi-client3-debuginfo-0.8-160000.5.1 * libdns_sd-0.8-160000.5.1 * libavahi-glib1-0.8-160000.5.1 * libavahi-core7-0.8-160000.5.1 * libdns_sd-debuginfo-0.8-160000.5.1 * libavahi-ui-gtk3-0-debuginfo-0.8-160000.5.1 * avahi-utils-gtk-0.8-160000.5.1 * libavahi-ui-gtk3-0-0.8-160000.5.1 * typelib-1_0-Avahi-0_6-0.8-160000.5.1 * avahi-autoipd-debuginfo-0.8-160000.5.1 * avahi-debuginfo-0.8-160000.5.1 * libavahi-core7-debuginfo-0.8-160000.5.1 * libavahi-devel-0.8-160000.5.1 * avahi-0.8-160000.5.1 * libavahi-gobject-devel-0.8-160000.5.1 *libavahi-client3-0.8-160000.5.1 * python313-avahi-0.8-160000.5.1 * libavahi-common3-debuginfo-0.8-160000.5.1 * libavahi-libevent1-debuginfo-0.8-160000.5.1 * avahi-utils-debuginfo-0.8-160000.5.1 * libavahi-gobject0-debuginfo-0.8-160000.5.1 * libhowl0-0.8-160000.5.1 * avahi-utils-gtk-debuginfo-0.8-160000.5.1 * avahi-debugsource-0.8-160000.5.1 * avahi-compat-mDNSResponder-devel-0.8-160000.5.1 * libavahi-gobject0-0.8-160000.5.1 * avahi-glib2-debugsource-0.8-160000.5.1 * python3-avahi-gtk-0.8-160000.5.1 * libavahi-glib1-debuginfo-0.8-160000.5.1 * libavahi-libevent1-0.8-160000.5.1 * avahi-utils-0.8-160000.5.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * avahi-lang-0.8-160000.5.1 ## References: * https://www.suse.com/security/cve/CVE-2026-24401.html * https://www.suse.com/security/cve/CVE-2026-34933.html * https://bugzilla.suse.com/show_bug.cgi?id=1257235 * https://bugzilla.suse.com/show_bug.cgi?id=1261546 . Two vulnerabilities affecting the avahi application on SUSE are fixed in this security update, addressing significant threats.. SUSE Security Update, Avahi Issues, System Crash Resolution, Threat Management. . Severity: moderate. LinuxSecurity.com Team
SSSD could be made to crash if it received specially crafted input.. ========================================================================== Ubuntu Security Notice USN-8355-1 June 01, 2026 sssd vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS Summary: SSSD could be made to crash if it received specially crafted input. Software Description: - sssd: System Security Services Daemon Details: It was discovered that SSSD did not properly handle raw bytes in the PAM passkey responder. A local attacker could possibly use this issue to cause the SSSD PAM responder to crash, resulting in a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS sssd 2.12.0-1ubuntu5.1 Ubuntu 25.10 sssd 2.10.1-2ubuntu5.2 Ubuntu 24.04 LTS sssd 2.9.4-1.1ubuntu6.5 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8355-1 CVE-2026-6245 Package Information: https://launchpad.net/ubuntu/+source/sssd/2.12.0-1ubuntu5.1 https://launchpad.net/ubuntu/+source/sssd/2.10.1-2ubuntu5.2 https://launchpad.net/ubuntu/+source/sssd/2.9.4-1.1ubuntu6.5 . A high-level advisory for Ubuntu on SSSD's security issue leading to potential crashes. Update now to avoid service interruptions.. Ubuntu system update, SSSD security issue, denial of service risk. . Severity: Important. LinuxSecurity.com Team
Several security issues were fixed in Coin3D.. ========================================================================== Ubuntu Security Notice USN-8241-1 May 07, 2026 coin3 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Several security issues were fixed in Coin3D. Software Description: - coin3: high-level 3D graphics kit implementing the Open Inventor API Details: It was discovered that Expat, vendored in Coin3D incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS libcoin80-runtime 3.1.4~abc9f50+dfsg3-2ubuntu0.1~esm1 Available with Ubuntu Pro libcoin80v5 3.1.4~abc9f50+dfsg3-2ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS libcoin80-runtime 3.1.4~abc9f50+dfsg1-1ubuntu0.1~esm2 Available with Ubuntu Pro libcoin80v5 3.1.4~abc9f50+dfsg1-1ubuntu0.1~esm2 Available with Ubuntu Pro Ubuntu 14.04 LTS libcoin80 3.1.4~abc9f50-4ubuntu2+esm2 Available with Ubuntu Pro libcoin80-runtime 3.1.4~abc9f50-4ubuntu2+esm2 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8241-1 CVE-2022-25235, CVE-2022-25236 . Several security issues in Coin3D on Ubuntu fixed. Update to avoid system crash or code execution risks.. Coin3D Security, Ubuntu Update, Expat Vulnerability, System Crash, Arbitrary Code Execution. . Severity:Critical. LinuxSecurity.com Team
Several security issues were fixed in ITK.. ========================================================================== Ubuntu Security Notice USN-8235-1 May 07, 2026 insighttoolkit vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 LTS Summary: Several security issues were fixed in ITK. Software Description: - insighttoolkit: Toolkit for N-dimensional scientific image processing, segmentation, and registration Details: It was discovered that Expat, vendored in ITK incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. (CVE-2022-25235, CVE-2022-25236) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS libinsighttoolkit3.20 3.20.1+git20120521-6ubuntu0.1~esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8235-1 CVE-2022-25235, CVE-2022-25236 . Several vulnerabilities have been fixed in ITK for Ubuntu 16.04 LTS, preventing crashes and code execution.. ITK Ubuntu 16.04 security update, insighttoolkit vulnerability, Ubuntu security notice. . Severity: Important. LinuxSecurity.com Team
An update that solves five vulnerabilities can now be installed.. # Security update for the Linux Kernel RT (Live Patch 15 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21477-1 Release Date: 2026-05-05T13:07:21Z Rating: important References: * bsc#1252048 * bsc#1258005 * bsc#1258655 * bsc#1259126 * bsc#1263689 Cross-References: * CVE-2025-39977 * CVE-2025-71066 * CVE-2026-23004 * CVE-2026-23204 * CVE-2026-31431 CVSS scores: * CVE-2025-39977 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-39977 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-71066 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23004 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23004 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23004 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23004 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23204 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23204 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23204 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23204 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31431 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31431 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-39.1 fixes various security issues The following security issues were fixed: * CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252048). * CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting inets_qdisc_change (bsc#1258005). * CVE-2026-23004: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() (bsc#1258655). * CVE-2026-23204: net/sched: cls_u32: use skb_header_pointer_careful() (bsc#1259126). * CVE-2026-31431: crypto: algif_aead - Revert to operating out-of-place (bsc#1263689). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-383=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-39-rt-4-1.1 * kernel-livepatch-6_4_0-39-rt-debuginfo-4-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_15-debugsource-4-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-39977.html * https://www.suse.com/security/cve/CVE-2025-71066.html * https://www.suse.com/security/cve/CVE-2026-23004.html * https://www.suse.com/security/cve/CVE-2026-23204.html * https://www.suse.com/security/cve/CVE-2026-31431.html * https://bugzilla.suse.com/show_bug.cgi?id=1252048 * https://bugzilla.suse.com/show_bug.cgi?id=1258005 * https://bugzilla.suse.com/show_bug.cgi?id=1258655 * https://bugzilla.suse.com/show_bug.cgi?id=1259126 * https://bugzilla.suse.com/show_bug.cgi?id=1263689 . An important security update addresses multiple issues in SUSE Linux Enterprise Micro 6.0. Immediate installation recommended.. SUSE Linux Micro security patch important kernel vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Multiple vulnerabilities where identified in polkit, a toolkit for defining and handling the policy that allows unprivileged processes to speak to privileged processes. CVE-2021-4115 Kevin Backhouse of GitHub Security Lab (GHSL) found that there is a. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4553-1
An update that solves one vulnerability can now be installed.. # Security update for avahi Announcement ID: SUSE-SU-2026:1441-1 Release Date: 2026-04-17T14:18:38Z Rating: moderate References: * bsc#1257235 Cross-References: * CVE-2026-24401 CVSS scores: * CVE-2026-24401 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP7 * Desktop Applications Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for avahi fixes the following issue: * CVE-2026-24401: avahi-daemon can be crashed via a segmentation fault by sending an unsolicited mDNS response containing a recursive CNAME record (bsc#1257235). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-1441=1 openSUSE-SLE-15.6-2026-1441=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1441=1 * Desktop Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-1441=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1441=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libavahi-glib-devel-0.8-150600.15.15.1 * avahi-qt5-debugsource-0.8-150600.15.15.1 * libavahi-common3-debuginfo-0.8-150600.15.15.1 *libavahi-glib1-debuginfo-0.8-150600.15.15.1 * python3-avahi-gtk-0.8-150600.15.15.1 * avahi-0.8-150600.15.15.1 * libdns_sd-0.8-150600.15.15.1 * avahi-utils-debuginfo-0.8-150600.15.15.1 * libavahi-qt5-1-0.8-150600.15.15.1 * libavahi-libevent1-debuginfo-0.8-150600.15.15.1 * avahi-utils-gtk-0.8-150600.15.15.1 * avahi-debugsource-0.8-150600.15.15.1 * libavahi-gobject0-0.8-150600.15.15.1 * avahi-compat-howl-devel-0.8-150600.15.15.1 * libhowl0-0.8-150600.15.15.1 * avahi-autoipd-0.8-150600.15.15.1 * python3-avahi-0.8-150600.15.15.1 * libavahi-libevent1-0.8-150600.15.15.1 * libavahi-qt5-1-debuginfo-0.8-150600.15.15.1 * libavahi-qt5-devel-0.8-150600.15.15.1 * libavahi-ui-gtk3-0-0.8-150600.15.15.1 * libavahi-common3-0.8-150600.15.15.1 * typelib-1_0-Avahi-0_6-0.8-150600.15.15.1 * libavahi-client3-0.8-150600.15.15.1 * avahi-utils-gtk-debuginfo-0.8-150600.15.15.1 * avahi-utils-0.8-150600.15.15.1 * libavahi-ui-gtk3-0-debuginfo-0.8-150600.15.15.1 * avahi-autoipd-debuginfo-0.8-150600.15.15.1 * libdns_sd-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-0.8-150600.15.15.1 * libavahi-gobject0-debuginfo-0.8-150600.15.15.1 * avahi-compat-mDNSResponder-devel-0.8-150600.15.15.1 * libavahi-core7-0.8-150600.15.15.1 * avahi-glib2-debugsource-0.8-150600.15.15.1 * libavahi-core7-debuginfo-0.8-150600.15.15.1 * libavahi-client3-debuginfo-0.8-150600.15.15.1 * libavahi-devel-0.8-150600.15.15.1 * libavahi-gobject-devel-0.8-150600.15.15.1 * libhowl0-debuginfo-0.8-150600.15.15.1 * avahi-debuginfo-0.8-150600.15.15.1 * openSUSE Leap 15.6 (x86_64) * libavahi-glib1-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-32bit-0.8-150600.15.15.1 * avahi-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-32bit-0.8-150600.15.15.1 * libdns_sd-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-32bit-0.8-150600.15.15.1 * libdns_sd-32bit-0.8-150600.15.15.1 * openSUSE Leap 15.6 (noarch) * avahi-lang-0.8-150600.15.15.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libavahi-glib1-64bit-0.8-150600.15.15.1 * avahi-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-64bit-0.8-150600.15.15.1 * libdns_sd-64bit-0.8-150600.15.15.1 * libdns_sd-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-64bit-0.8-150600.15.15.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libavahi-glib-devel-0.8-150600.15.15.1 * libavahi-common3-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-debuginfo-0.8-150600.15.15.1 * avahi-0.8-150600.15.15.1 * libdns_sd-0.8-150600.15.15.1 * avahi-utils-debuginfo-0.8-150600.15.15.1 * libavahi-libevent1-debuginfo-0.8-150600.15.15.1 * libavahi-gobject0-0.8-150600.15.15.1 * avahi-debugsource-0.8-150600.15.15.1 * avahi-compat-howl-devel-0.8-150600.15.15.1 * libhowl0-0.8-150600.15.15.1 * libavahi-libevent1-0.8-150600.15.15.1 * libavahi-ui-gtk3-0-0.8-150600.15.15.1 * libavahi-common3-0.8-150600.15.15.1 * typelib-1_0-Avahi-0_6-0.8-150600.15.15.1 * libavahi-client3-0.8-150600.15.15.1 * avahi-utils-0.8-150600.15.15.1 * libavahi-ui-gtk3-0-debuginfo-0.8-150600.15.15.1 * libdns_sd-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-0.8-150600.15.15.1 * libavahi-gobject0-debuginfo-0.8-150600.15.15.1 * avahi-compat-mDNSResponder-devel-0.8-150600.15.15.1 * libavahi-core7-0.8-150600.15.15.1 * avahi-glib2-debugsource-0.8-150600.15.15.1 * libavahi-core7-debuginfo-0.8-150600.15.15.1 * libavahi-client3-debuginfo-0.8-150600.15.15.1 * libavahi-devel-0.8-150600.15.15.1 * libhowl0-debuginfo-0.8-150600.15.15.1 * avahi-debuginfo-0.8-150600.15.15.1 * Basesystem Module 15-SP7 (noarch) * avahi-lang-0.8-150600.15.15.1 * Basesystem Module 15-SP7 (x86_64) * libavahi-common3-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-32bit-0.8-150600.15.15.1 * avahi-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-32bit-0.8-150600.15.15.1 * Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * avahi-glib2-debugsource-0.8-150600.15.15.1 * avahi-autoipd-0.8-150600.15.15.1 * libavahi-gobject-devel-0.8-150600.15.15.1 * avahi-utils-gtk-debuginfo-0.8-150600.15.15.1 * avahi-debuginfo-0.8-150600.15.15.1 * avahi-autoipd-debuginfo-0.8-150600.15.15.1 * avahi-utils-gtk-0.8-150600.15.15.1 * avahi-debugsource-0.8-150600.15.15.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * avahi-debugsource-0.8-150600.15.15.1 * python3-avahi-0.8-150600.15.15.1 * avahi-debuginfo-0.8-150600.15.15.1 ## References: * https://www.suse.com/security/cve/CVE-2026-24401.html * https://bugzilla.suse.com/show_bug.cgi?id=1257235 . OpenSUSE releases a moderate security advisory for avahi addressing potential denial of service from mDNS responses.. SUSE avahi security update openSUSE Leap patch 2026-1441-1. . LinuxSecurity.com Team
The system could be made to crash under certain conditions.. ========================================================================== Ubuntu Security Notice USN-8142-1 April 01, 2026 linux vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 LTS Summary: The system could be made to crash under certain conditions. Software Description: - linux: Linux kernel Details: A security issue was discovered in the Linux kernel. An attacker could possibly use this to compromise the system. This update corrects flaws in the following subsystems: - Network traffic control; Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS linux-image-3.13.0-212-generic 3.13.0-212.263 Available with Ubuntu Pro linux-image-3.13.0-212-lowlatency 3.13.0-212.263 Available with Ubuntu Pro linux-image-generic 3.13.0.212.222 Available with Ubuntu Pro linux-image-generic-lts-trusty 3.13.0.212.222 Available with Ubuntu Pro linux-image-lowlatency 3.13.0.212.222 Available with Ubuntu Pro linux-image-server 3.13.0.212.222 Available with Ubuntu Pro linux-image-virtual 3.13.0.212.222 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE,linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-8142-1 CVE-2026-23074 . A security issue in Ubuntu 14.04 LTS allows system crash under certain conditions. Update recommended for security.. Ubuntu kernel security, Linux security patch, System crash vulnerability. . Severity: Critical. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.