Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 844 articles for you...
100

SUSE Avahi Addresses Moderate DoS Vulnerabilities with Fix 2026-22338-1

An update that solves two vulnerabilities can now be installed.. # Security update for avahi Announcement ID: SUSE-SU-2026:22338-1 Release Date: 2026-06-22T14:40:15Z Rating: moderate References: * bsc#1257235 * bsc#1261546 Cross-References: * CVE-2026-24401 * CVE-2026-34933 CVSS scores: * CVE-2026-24401 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-34933 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34933 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for avahi fixes the following issues: * CVE-2026-34933: reachable assertion in `transport_flags_from_domain` can crash the `avahi-daemon` (bsc#1261546). * CVE-2026-24401: unsolicited mDNS responses containing a recursive CNAME record can crash the `avahi-daemon` (bsc#1257235). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-1026=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-1026=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * avahi-autoipd-0.8-160000.5.1 * libhowl0-debuginfo-0.8-160000.5.1 * libavahi-common3-0.8-160000.5.1 * libavahi-glib-devel-0.8-160000.5.1 * libavahi-client3-debuginfo-0.8-160000.5.1 * libdns_sd-0.8-160000.5.1 * libavahi-glib1-0.8-160000.5.1 * libavahi-core7-0.8-160000.5.1 *libdns_sd-debuginfo-0.8-160000.5.1 * libavahi-ui-gtk3-0-debuginfo-0.8-160000.5.1 * avahi-utils-gtk-0.8-160000.5.1 * libavahi-ui-gtk3-0-0.8-160000.5.1 * avahi-autoipd-debuginfo-0.8-160000.5.1 * typelib-1_0-Avahi-0_6-0.8-160000.5.1 * avahi-debuginfo-0.8-160000.5.1 * libavahi-core7-debuginfo-0.8-160000.5.1 * libavahi-gobject-devel-0.8-160000.5.1 * libavahi-devel-0.8-160000.5.1 * avahi-0.8-160000.5.1 * libavahi-client3-0.8-160000.5.1 * libavahi-common3-debuginfo-0.8-160000.5.1 * libavahi-libevent1-debuginfo-0.8-160000.5.1 * python313-avahi-0.8-160000.5.1 * avahi-utils-debuginfo-0.8-160000.5.1 * libavahi-gobject0-debuginfo-0.8-160000.5.1 * libhowl0-0.8-160000.5.1 * avahi-utils-gtk-debuginfo-0.8-160000.5.1 * avahi-debugsource-0.8-160000.5.1 * avahi-compat-mDNSResponder-devel-0.8-160000.5.1 * libavahi-gobject0-0.8-160000.5.1 * avahi-glib2-debugsource-0.8-160000.5.1 * python3-avahi-gtk-0.8-160000.5.1 * libavahi-glib1-debuginfo-0.8-160000.5.1 * libavahi-libevent1-0.8-160000.5.1 * avahi-utils-0.8-160000.5.1 * SUSE Linux Enterprise Server 16.0 (noarch) * avahi-lang-0.8-160000.5.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * avahi-autoipd-0.8-160000.5.1 * libhowl0-debuginfo-0.8-160000.5.1 * libavahi-common3-0.8-160000.5.1 * libavahi-glib-devel-0.8-160000.5.1 * libavahi-client3-debuginfo-0.8-160000.5.1 * libdns_sd-0.8-160000.5.1 * libavahi-glib1-0.8-160000.5.1 * libavahi-core7-0.8-160000.5.1 * libdns_sd-debuginfo-0.8-160000.5.1 * libavahi-ui-gtk3-0-debuginfo-0.8-160000.5.1 * avahi-utils-gtk-0.8-160000.5.1 * libavahi-ui-gtk3-0-0.8-160000.5.1 * typelib-1_0-Avahi-0_6-0.8-160000.5.1 * avahi-autoipd-debuginfo-0.8-160000.5.1 * avahi-debuginfo-0.8-160000.5.1 * libavahi-core7-debuginfo-0.8-160000.5.1 * libavahi-devel-0.8-160000.5.1 * avahi-0.8-160000.5.1 * libavahi-gobject-devel-0.8-160000.5.1 *libavahi-client3-0.8-160000.5.1 * python313-avahi-0.8-160000.5.1 * libavahi-common3-debuginfo-0.8-160000.5.1 * libavahi-libevent1-debuginfo-0.8-160000.5.1 * avahi-utils-debuginfo-0.8-160000.5.1 * libavahi-gobject0-debuginfo-0.8-160000.5.1 * libhowl0-0.8-160000.5.1 * avahi-utils-gtk-debuginfo-0.8-160000.5.1 * avahi-debugsource-0.8-160000.5.1 * avahi-compat-mDNSResponder-devel-0.8-160000.5.1 * libavahi-gobject0-0.8-160000.5.1 * avahi-glib2-debugsource-0.8-160000.5.1 * python3-avahi-gtk-0.8-160000.5.1 * libavahi-glib1-debuginfo-0.8-160000.5.1 * libavahi-libevent1-0.8-160000.5.1 * avahi-utils-0.8-160000.5.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * avahi-lang-0.8-160000.5.1 ## References: * https://www.suse.com/security/cve/CVE-2026-24401.html * https://www.suse.com/security/cve/CVE-2026-34933.html * https://bugzilla.suse.com/show_bug.cgi?id=1257235 * https://bugzilla.suse.com/show_bug.cgi?id=1261546 . Two vulnerabilities affecting the avahi application on SUSE are fixed in this security update, addressing significant threats.. SUSE Security Update, Avahi Issues, System Crash Resolution, Threat Management. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jul 01, 2026 moderate SuSE
172

Ubuntu 26.04 LTS SSSD Important Denial of Service Issue 2026-6245

SSSD could be made to crash if it received specially crafted input.. ========================================================================== Ubuntu Security Notice USN-8355-1 June 01, 2026 sssd vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS Summary: SSSD could be made to crash if it received specially crafted input. Software Description: - sssd: System Security Services Daemon Details: It was discovered that SSSD did not properly handle raw bytes in the PAM passkey responder. A local attacker could possibly use this issue to cause the SSSD PAM responder to crash, resulting in a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS sssd 2.12.0-1ubuntu5.1 Ubuntu 25.10 sssd 2.10.1-2ubuntu5.2 Ubuntu 24.04 LTS sssd 2.9.4-1.1ubuntu6.5 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8355-1 CVE-2026-6245 Package Information: https://launchpad.net/ubuntu/+source/sssd/2.12.0-1ubuntu5.1 https://launchpad.net/ubuntu/+source/sssd/2.10.1-2ubuntu5.2 https://launchpad.net/ubuntu/+source/sssd/2.9.4-1.1ubuntu6.5 . A high-level advisory for Ubuntu on SSSD's security issue leading to potential crashes. Update now to avoid service interruptions.. Ubuntu system update, SSSD security issue, denial of service risk. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 01, 2026 Important Ubuntu
172

Ubuntu 18.04 8241-1 Coin3D Critical Expat Code Execution Risk

Several security issues were fixed in Coin3D.. ========================================================================== Ubuntu Security Notice USN-8241-1 May 07, 2026 coin3 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Several security issues were fixed in Coin3D. Software Description: - coin3: high-level 3D graphics kit implementing the Open Inventor API Details: It was discovered that Expat, vendored in Coin3D incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS libcoin80-runtime 3.1.4~abc9f50+dfsg3-2ubuntu0.1~esm1 Available with Ubuntu Pro libcoin80v5 3.1.4~abc9f50+dfsg3-2ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS libcoin80-runtime 3.1.4~abc9f50+dfsg1-1ubuntu0.1~esm2 Available with Ubuntu Pro libcoin80v5 3.1.4~abc9f50+dfsg1-1ubuntu0.1~esm2 Available with Ubuntu Pro Ubuntu 14.04 LTS libcoin80 3.1.4~abc9f50-4ubuntu2+esm2 Available with Ubuntu Pro libcoin80-runtime 3.1.4~abc9f50-4ubuntu2+esm2 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8241-1 CVE-2022-25235, CVE-2022-25236 . Several security issues in Coin3D on Ubuntu fixed. Update to avoid system crash or code execution risks.. Coin3D Security, Ubuntu Update, Expat Vulnerability, System Crash, Arbitrary Code Execution. . Severity:Critical. LinuxSecurity.com Team

Calendar%202 May 07, 2026 Critical Ubuntu
172

Ubuntu 16.04 LTS USN-8235-1 ITK Important Code Exec Issues

Several security issues were fixed in ITK.. ========================================================================== Ubuntu Security Notice USN-8235-1 May 07, 2026 insighttoolkit vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 LTS Summary: Several security issues were fixed in ITK. Software Description: - insighttoolkit: Toolkit for N-dimensional scientific image processing, segmentation, and registration Details: It was discovered that Expat, vendored in ITK incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. (CVE-2022-25235, CVE-2022-25236) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS libinsighttoolkit3.20 3.20.1+git20120521-6ubuntu0.1~esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8235-1 CVE-2022-25235, CVE-2022-25236 . Several vulnerabilities have been fixed in ITK for Ubuntu 16.04 LTS, preventing crashes and code execution.. ITK Ubuntu 16.04 security update, insighttoolkit vulnerability, Ubuntu security notice. . Severity: Important. LinuxSecurity.com Team

Calendar%202 May 07, 2026 Important Ubuntu
100

CentOS Server 9.0 Core Security Update Essential Fix CentOS-SU-2026-48237-1

An update that solves five vulnerabilities can now be installed.. # Security update for the Linux Kernel RT (Live Patch 15 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21477-1 Release Date: 2026-05-05T13:07:21Z Rating: important References: * bsc#1252048 * bsc#1258005 * bsc#1258655 * bsc#1259126 * bsc#1263689 Cross-References: * CVE-2025-39977 * CVE-2025-71066 * CVE-2026-23004 * CVE-2026-23204 * CVE-2026-31431 CVSS scores: * CVE-2025-39977 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-39977 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-71066 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23004 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23004 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23004 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23004 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23204 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23204 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23204 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23204 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31431 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31431 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-39.1 fixes various security issues The following security issues were fixed: * CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252048). * CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting inets_qdisc_change (bsc#1258005). * CVE-2026-23004: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() (bsc#1258655). * CVE-2026-23204: net/sched: cls_u32: use skb_header_pointer_careful() (bsc#1259126). * CVE-2026-31431: crypto: algif_aead - Revert to operating out-of-place (bsc#1263689). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-383=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-39-rt-4-1.1 * kernel-livepatch-6_4_0-39-rt-debuginfo-4-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_15-debugsource-4-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-39977.html * https://www.suse.com/security/cve/CVE-2025-71066.html * https://www.suse.com/security/cve/CVE-2026-23004.html * https://www.suse.com/security/cve/CVE-2026-23204.html * https://www.suse.com/security/cve/CVE-2026-31431.html * https://bugzilla.suse.com/show_bug.cgi?id=1252048 * https://bugzilla.suse.com/show_bug.cgi?id=1258005 * https://bugzilla.suse.com/show_bug.cgi?id=1258655 * https://bugzilla.suse.com/show_bug.cgi?id=1259126 * https://bugzilla.suse.com/show_bug.cgi?id=1263689 . An important security update addresses multiple issues in SUSE Linux Enterprise Micro 6.0. Immediate installation recommended.. SUSE Linux Micro security patch important kernel vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Calendar%202 May 06, 2026 Important SuSE
197

Debian 11 Bullseye PolicyKit-1 Denial of Service Notice DLA-4553-1

Multiple vulnerabilities where identified in polkit, a toolkit for defining and handling the policy that allows unprivileged processes to speak to privileged processes. CVE-2021-4115 Kevin Backhouse of GitHub Security Lab (GHSL) found that there is a. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4553-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Andreas Henriksson April 29, 2026 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : policykit-1 Version : 0.105-31+deb11u2 CVE ID : CVE-2021-4115 CVE-2026-4897 Debian Bug : 1005784 1132234 Multiple vulnerabilities where identified in polkit, a toolkit for defining and handling the policy that allows unprivileged processes to speak to privileged processes. CVE-2021-4115 Kevin Backhouse of GitHub Security Lab (GHSL) found that there is a file descriptor leak in polkit, which can enable an unprivileged user to cause polkit to crash, due to file descriptor exhaustion. This could lead to currently ongoing authentication attempts to fail to authenticate resulting in a Denial of Service (DoS). CVE-2026-4897 Pavel Kohout, Aisle Research found that a local user provide a specially crafted, excessively long input to the `polkit-agent-helper-1` setuid binary via standard input (stdin). This unbounded input can lead to an out-of-memory (OOM) condition, resulting in a Denial of Service (DoS) for the system. For Debian 11 bullseye, these problems have been fixed in version 0.105-31+deb11u2. We recommend that you upgrade your policykit-1 packages. For the detailed security status of policykit-1 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/policykit-1 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions canbe found at: https://wiki.debian.org/LTS . Multiple vulnerabilities in policykit-1 fixed in Debian LTS DLA-4553-1 advisory, affording DoS risk mitigations. Upgrade recommended.. PolicyKit-1, Debian 11 Bullseye, Security Advisory, DoS Risk, Vulnerability Fix. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Apr 29, 2026 Important Debian LTS
202

openSUSE Leap 15.6 avahi Moderate DoS Issue SUSE-SU-2026-1441-1

An update that solves one vulnerability can now be installed.. # Security update for avahi Announcement ID: SUSE-SU-2026:1441-1 Release Date: 2026-04-17T14:18:38Z Rating: moderate References: * bsc#1257235 Cross-References: * CVE-2026-24401 CVSS scores: * CVE-2026-24401 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP7 * Desktop Applications Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for avahi fixes the following issue: * CVE-2026-24401: avahi-daemon can be crashed via a segmentation fault by sending an unsolicited mDNS response containing a recursive CNAME record (bsc#1257235). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-1441=1 openSUSE-SLE-15.6-2026-1441=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1441=1 * Desktop Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-1441=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1441=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libavahi-glib-devel-0.8-150600.15.15.1 * avahi-qt5-debugsource-0.8-150600.15.15.1 * libavahi-common3-debuginfo-0.8-150600.15.15.1 *libavahi-glib1-debuginfo-0.8-150600.15.15.1 * python3-avahi-gtk-0.8-150600.15.15.1 * avahi-0.8-150600.15.15.1 * libdns_sd-0.8-150600.15.15.1 * avahi-utils-debuginfo-0.8-150600.15.15.1 * libavahi-qt5-1-0.8-150600.15.15.1 * libavahi-libevent1-debuginfo-0.8-150600.15.15.1 * avahi-utils-gtk-0.8-150600.15.15.1 * avahi-debugsource-0.8-150600.15.15.1 * libavahi-gobject0-0.8-150600.15.15.1 * avahi-compat-howl-devel-0.8-150600.15.15.1 * libhowl0-0.8-150600.15.15.1 * avahi-autoipd-0.8-150600.15.15.1 * python3-avahi-0.8-150600.15.15.1 * libavahi-libevent1-0.8-150600.15.15.1 * libavahi-qt5-1-debuginfo-0.8-150600.15.15.1 * libavahi-qt5-devel-0.8-150600.15.15.1 * libavahi-ui-gtk3-0-0.8-150600.15.15.1 * libavahi-common3-0.8-150600.15.15.1 * typelib-1_0-Avahi-0_6-0.8-150600.15.15.1 * libavahi-client3-0.8-150600.15.15.1 * avahi-utils-gtk-debuginfo-0.8-150600.15.15.1 * avahi-utils-0.8-150600.15.15.1 * libavahi-ui-gtk3-0-debuginfo-0.8-150600.15.15.1 * avahi-autoipd-debuginfo-0.8-150600.15.15.1 * libdns_sd-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-0.8-150600.15.15.1 * libavahi-gobject0-debuginfo-0.8-150600.15.15.1 * avahi-compat-mDNSResponder-devel-0.8-150600.15.15.1 * libavahi-core7-0.8-150600.15.15.1 * avahi-glib2-debugsource-0.8-150600.15.15.1 * libavahi-core7-debuginfo-0.8-150600.15.15.1 * libavahi-client3-debuginfo-0.8-150600.15.15.1 * libavahi-devel-0.8-150600.15.15.1 * libavahi-gobject-devel-0.8-150600.15.15.1 * libhowl0-debuginfo-0.8-150600.15.15.1 * avahi-debuginfo-0.8-150600.15.15.1 * openSUSE Leap 15.6 (x86_64) * libavahi-glib1-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-32bit-0.8-150600.15.15.1 * avahi-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-32bit-0.8-150600.15.15.1 * libdns_sd-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-32bit-0.8-150600.15.15.1 * libdns_sd-32bit-0.8-150600.15.15.1 * openSUSE Leap 15.6 (noarch) * avahi-lang-0.8-150600.15.15.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libavahi-glib1-64bit-0.8-150600.15.15.1 * avahi-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-64bit-0.8-150600.15.15.1 * libdns_sd-64bit-0.8-150600.15.15.1 * libdns_sd-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-64bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-64bit-0.8-150600.15.15.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libavahi-glib-devel-0.8-150600.15.15.1 * libavahi-common3-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-debuginfo-0.8-150600.15.15.1 * avahi-0.8-150600.15.15.1 * libdns_sd-0.8-150600.15.15.1 * avahi-utils-debuginfo-0.8-150600.15.15.1 * libavahi-libevent1-debuginfo-0.8-150600.15.15.1 * libavahi-gobject0-0.8-150600.15.15.1 * avahi-debugsource-0.8-150600.15.15.1 * avahi-compat-howl-devel-0.8-150600.15.15.1 * libhowl0-0.8-150600.15.15.1 * libavahi-libevent1-0.8-150600.15.15.1 * libavahi-ui-gtk3-0-0.8-150600.15.15.1 * libavahi-common3-0.8-150600.15.15.1 * typelib-1_0-Avahi-0_6-0.8-150600.15.15.1 * libavahi-client3-0.8-150600.15.15.1 * avahi-utils-0.8-150600.15.15.1 * libavahi-ui-gtk3-0-debuginfo-0.8-150600.15.15.1 * libdns_sd-debuginfo-0.8-150600.15.15.1 * libavahi-glib1-0.8-150600.15.15.1 * libavahi-gobject0-debuginfo-0.8-150600.15.15.1 * avahi-compat-mDNSResponder-devel-0.8-150600.15.15.1 * libavahi-core7-0.8-150600.15.15.1 * avahi-glib2-debugsource-0.8-150600.15.15.1 * libavahi-core7-debuginfo-0.8-150600.15.15.1 * libavahi-client3-debuginfo-0.8-150600.15.15.1 * libavahi-devel-0.8-150600.15.15.1 * libhowl0-debuginfo-0.8-150600.15.15.1 * avahi-debuginfo-0.8-150600.15.15.1 * Basesystem Module 15-SP7 (noarch) * avahi-lang-0.8-150600.15.15.1 * Basesystem Module 15-SP7 (x86_64) * libavahi-common3-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-client3-32bit-0.8-150600.15.15.1 * avahi-32bit-debuginfo-0.8-150600.15.15.1 * libavahi-common3-32bit-0.8-150600.15.15.1 * Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * avahi-glib2-debugsource-0.8-150600.15.15.1 * avahi-autoipd-0.8-150600.15.15.1 * libavahi-gobject-devel-0.8-150600.15.15.1 * avahi-utils-gtk-debuginfo-0.8-150600.15.15.1 * avahi-debuginfo-0.8-150600.15.15.1 * avahi-autoipd-debuginfo-0.8-150600.15.15.1 * avahi-utils-gtk-0.8-150600.15.15.1 * avahi-debugsource-0.8-150600.15.15.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * avahi-debugsource-0.8-150600.15.15.1 * python3-avahi-0.8-150600.15.15.1 * avahi-debuginfo-0.8-150600.15.15.1 ## References: * https://www.suse.com/security/cve/CVE-2026-24401.html * https://bugzilla.suse.com/show_bug.cgi?id=1257235 . OpenSUSE releases a moderate security advisory for avahi addressing potential denial of service from mDNS responses.. SUSE avahi security update openSUSE Leap patch 2026-1441-1. . LinuxSecurity.com Team

Calendar%202 Apr 17, 2026 OpenSUSE
172

Ubuntu 14.04 LTS USN-8142-1 Critical Linux Kernel Network Crash

The system could be made to crash under certain conditions.. ========================================================================== Ubuntu Security Notice USN-8142-1 April 01, 2026 linux vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 LTS Summary: The system could be made to crash under certain conditions. Software Description: - linux: Linux kernel Details: A security issue was discovered in the Linux kernel. An attacker could possibly use this to compromise the system. This update corrects flaws in the following subsystems: - Network traffic control; Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS linux-image-3.13.0-212-generic 3.13.0-212.263 Available with Ubuntu Pro linux-image-3.13.0-212-lowlatency 3.13.0-212.263 Available with Ubuntu Pro linux-image-generic 3.13.0.212.222 Available with Ubuntu Pro linux-image-generic-lts-trusty 3.13.0.212.222 Available with Ubuntu Pro linux-image-lowlatency 3.13.0.212.222 Available with Ubuntu Pro linux-image-server 3.13.0.212.222 Available with Ubuntu Pro linux-image-virtual 3.13.0.212.222 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE,linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-8142-1 CVE-2026-23074 . A security issue in Ubuntu 14.04 LTS allows system crash under certain conditions. Update recommended for security.. Ubuntu kernel security, Linux security patch, System crash vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Apr 01, 2026 Critical Ubuntu
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200