Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 1 articles for you...
100
security advisorySuSEremote accessSUSE: Kernel Important Patch Addressing 5 Issues 2025:03184-1
* bsc#1242579 * bsc#1244235 * bsc#1245775 * bsc#1245791 * bsc#1246030 . # Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP4) Announcement ID: SUSE-SU-2025:03184-1 Release Date: 2025-09-11T23:33:50Z Rating: important References: * bsc#1242579 * bsc#1244235 * bsc#1245775 * bsc#1245791 * bsc#1246030 Cross-References: * CVE-2025-21999 * CVE-2025-37890 * CVE-2025-38000 * CVE-2025-38001 * CVE-2025-38212 CVSS scores: * CVE-2025-21999 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21999 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21999 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-37890 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38000 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38000 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38001 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38001 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38212 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38212 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves five vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_164 fixes several issues. The following security issues were fixed: * CVE-2025-21999: proc: fix UAF in proc_get_inode() (bsc#1242579). * CVE-2025-38001: net_sched: hfsc:Address reentrant enqueue adding class to eltree twice (bsc#1244235). * CVE-2025-38000: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (bsc#1245775). * CVE-2025-37890: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (bsc#1245791). * CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU (bsc#1246030). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-3184=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2025-3184=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_40-debugsource-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-debuginfo-5-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_40-debugsource-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-debuginfo-5-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-21999.html * https://www.suse.com/security/cve/CVE-2025-37890.html * https://www.suse.com/security/cve/CVE-2025-38000.html * https://www.suse.com/security/cve/CVE-2025-38001.html * https://www.suse.com/security/cve/CVE-2025-38212.html * https://bugzilla.suse.com/show_bug.cgi?id=1242579 * https://bugzilla.suse.com/show_bug.cgi?id=1244235 * https://bugzilla.suse.com/show_bug.cgi?id=1245775 * https://bugzilla.suse.com/show_bug.cgi?id=1245791 * https://bugzilla.suse.com/show_bug.cgi?id=1246030 . Essential revision for SUSE Linux Kernel targeting several security flaws. Safeguard your system with this crucial update immediately.. LinuxKernel Patch,SUSE Security Update,System Vulnerabilities,SUSE Linux Server,Kernel Version. . Severity: Important. LinuxSecurity.com Team
Sep 12, 2025
•Important
SuSE
217
security advisorymoderate threatsystem improvementOracle Linux 8 ELSA-2023-5731 Moderate: Java 1.8 Multiple Threats
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-5731 https://linux.oracle.com/errata/ELSA-2023-5731.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable LinuxNetwork: x86_64: java-1.8.0-openjdk-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-accessibility-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-javadoc-1.8.0.392.b08-4.0.1.el8.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.392.b08-4.0.1.el8.noarch.rpm java-1.8.0-openjdk-src-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-demo-fastdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-demo-slowdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-devel-fastdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-devel-slowdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-fastdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-headless-fastdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-headless-slowdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-slowdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-src-fastdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm java-1.8.0-openjdk-src-slowdebug-1.8.0.392.b08-4.0.1.el8.x86_64.rpm aarch64: java-1.8.0-openjdk-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-accessibility-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-demo-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-devel-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-headless-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-javadoc-1.8.0.392.b08-4.0.1.el8.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.392.b08-4.0.1.el8.noarch.rpm java-1.8.0-openjdk-src-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-demo-fastdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-demo-slowdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-devel-fastdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-devel-slowdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-fastdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-headless-fastdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-headless-slowdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-slowdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-src-fastdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm java-1.8.0-openjdk-src-slowdebug-1.8.0.392.b08-4.0.1.el8.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol8/SRPMS-updates//java-1.8.0-openjdk-1.8.0.392.b08-4.0.1.el8.src.rpm Related CVEs: CVE-2022-40433 CVE-2023-22067 CVE-2023-22081 Description of changes: [1:1.8.0.392.b08-4.0.1] - Update to shenandoah-jdk8u392-b08 (GA) - OpenJDK: segmentation fault in ciMethodBlocks (CVE-2022-40433) - OpenJDK: IOR deserialization issue in CORBA (8303384) (CVE-2023-22067) - OpenJDK: certificate path validation issue during client authentication (8309966) (CVE-2023-22081) - A maximum signature file size property, jdk.jar.maxSignatureFileSize, was introduced in the 8u382 release of OpenJDK by JDK-8300596, with a default of 8 MB. This default proved to be too small for some JAR files. This release, 8u392, increases it to 16 MB. (RHEL-13593) _______________________________________________ El-errata mailing list
Nov 03, 2023
Oracle
89
security advisoryFedorasecurity fixFedora 37: FEDORA-2023-4426b7005f Moderate Kernel Update and Enhancements
The 6.3.7 stable kernel update contains a number of important fixes across the tree.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-4426b7005f 2023-06-13 01:15:40.965383 --------------------------------------------------------------------------------Name : kernel Product : Fedora 37 Version : 6.3.7 Release : 100.fc37 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package --------------------------------------------------------------------------------Update Information: The 6.3.7 stable kernel update contains a number of important fixes across the tree. --------------------------------------------------------------------------------ChangeLog: * Fri Jun 9 2023 Justin M. Forbes [6.3.7-100] - Add a CVE to BugsFixed (Justin M. Forbes) * Fri Jun 9 2023 Justin M. Forbes [6.3.7-0] - redhat/configs: Enable CONFIG_SC_GPUCC_8280XP for fedora (Andrew Halaney) - redhat/configs: Enable CONFIG_QCOM_IPCC for fedora (Andrew Halaney) - Linux v6.3.7 --------------------------------------------------------------------------------References: [ 1 ] Bug #2213139 - CVE-2023-31084 kernel: blocking operation in dvb_frontend_get_event and wait_event_interruptible https://bugzilla.redhat.com/show_bug.cgi?id=2213139 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-4426b7005f' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jun 13, 2023
Fedora
89
security advisoryupdatecriticalFedora 34: 2022-d918ad60e5 Critical Kernel Update for Security Fixes
The 5.15.14 stable kernel update contains a number of important fixes across the tree.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-d918ad60e5 2022-01-15 01:21:41.485698 --------------------------------------------------------------------------------Name : kernel Product : Fedora 34 Version : 5.15.14 Release : 100.fc34 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package --------------------------------------------------------------------------------Update Information: The 5.15.14 stable kernel update contains a number of important fixes across the tree. --------------------------------------------------------------------------------ChangeLog: * Tue Jan 11 2022 Justin M. Forbes [5.15.14-0] - Fix up changelog (Justin M. Forbes) --------------------------------------------------------------------------------References: [ 1 ] Bug #2035652 - CVE-2021-4197 kernel: cgroup: Use open-time creds and namespace for migration perm checks https://bugzilla.redhat.com/show_bug.cgi?id=2035652 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-d918ad60e5' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jan 14, 2022
•Critical
Fedora
89
security advisorykernel updatecriticalFedora 23: 2015-43145298f4 Critical: Kernel Update Access Issue
The 4.2.3 stable kernel update contains a number of important fixes across the tree. kernel-4.2.3-300.fc23 - Linux v4.2.3 - Netdev fix race in resq_queue_unlink. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-43145298f4 2015-10-09 06:13:44.648910 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 23 Version : 4.2.3 Release : 300.fc23 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package -------------------------------------------------------------------------------- Update Information: The 4.2.3 stable kernel update contains a number of important fixes across the tree. kernel-4.2.3-300.fc23 - Linux v4.2.3 - Netdev fix race in resq_queue_unlink -------------------------------------------------------------------------------- References: [ 1 ] Bug #1209367 - CVE-2015-2925 Kernel: vfs: Do not allow escaping from bind mounts https://bugzilla.redhat.com/show_bug.cgi?id=1209367 [ 2 ] Bug #1268270 - CVE-2015-7613 kernel: Unauthorized access to IPC objects with SysV shm https://bugzilla.redhat.com/show_bug.cgi?id=1268270 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update kernel' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Oct 09, 2015
•Critical
Fedora
89
security advisoryFedoracritical fixFedora 22 gnome-abrt Security Advisory: Critical System Issue Resolved
Security fixes for: * CVE-2015-3315 * CVE-2015-3142 * CVE-2015-1869 * CVE-2015-1870. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-9886 2015-06-13 00:14:24 -------------------------------------------------------------------------------- Name : gnome-abrt Product : Fedora 22 Version : 1.2.0 Release : 1.fc22 URL : https://fedoraproject.org/wiki/Infrastructure/Fedorahosted-retirement Summary : A utility for viewing problems that have occurred with the system Description : A GNOME application allows users to browse through detected problems and provides them with convenient way for managing these problems. -------------------------------------------------------------------------------- Update Information: Security fixes for: * CVE-2015-3315 * CVE-2015-3142 * CVE-2015-1869 * CVE-2015-1870 * CVE-2015-3151 * CVE-2015-3150 * CVE-2015-3159 abrt: - Move the default dump location from /var/tmp/abrt to /var/spool/abrt - Use root for owner of all dump directories - Stop reading hs_error.log from /tmp - Don not save the system logs by default - Don not save dmesg if kernel.dmesg_restrict=1 libreport: - Harden the code against directory traversal, symbolic and hard link attacks - Fix a bug causing that the first value of AlwaysExcludedElements was ignored - Fix missing icon for the "Stop" button icon name - Improve development documentation - Translations updates gnome-abrt: - Enabled the Details also for the System problems - Do not crash in the testing of availabitlity of XServer - Fix 'Open problem's data directory' - Quit Application on Ctrl+Q - Translation updates satyr: - New kernel taint flags - More secure core stacktraces from core hook -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 9 2015 Jakub Filak 1.2.0-1 - Enabled the Details also for the System problems - Do not crash in the testing of availabitlity ofXServer - Remove a debug print introduced with port to Python3 - Fix 'Open problem's data directory' - Quit Application on Ctrl+Q - Translation updates - Resolves: #1211759 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1216975 - CVE-2015-3159 abrt: missing process environment sanitizaton in abrt-action-install-debuginfo-to-abrt-cache [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1216975 [ 2 ] Bug #1214609 - CVE-2015-3150 abrt: abrt-dbus does not guard against crafted problem directory path arguments [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1214609 [ 3 ] Bug #1214452 - CVE-2015-3151 abrt: directory traversals in several D-Bus methods implemented by abrt-dbus [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1214452 [ 4 ] Bug #1212871 - CVE-2015-1870 abrt: default abrt event scripts lead to information disclosure [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1212871 [ 5 ] Bug #1212865 - CVE-2015-1869 abrt: default event scripts follow symbolic links [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1212865 [ 6 ] Bug #1212821 - CVE-2015-3142 abrt: abrt-hook-ccpp writes core dumps to existing files owned by others [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1212821 [ 7 ] Bug #1218239 - CVE-2015-3315 abrt: Various race-conditions and symlink issues found in abrt [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1218239 [ 8 ] Bug #1128400 - ABRT does not honor dmesg_restrict https://bugzilla.redhat.com/show_bug.cgi?id=1128400 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gnome-abrt' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project canbe found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Jun 21, 2015
•Critical
Fedora
89
security advisorycriticalsoftware updateUbuntu 18.04: 2021-5543 Important Update for Help Viewer Available
https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-3893 2009-04-22 19:42:31 -------------------------------------------------------------------------------- Name : yelp Product : Fedora 10 Version : 2.24.0 Release : 8.fc10 URL : Summary : A system documentation reader from the Gnome project Description : Yelp is the Gnome 2 help/documentation browser. It is designed to help you browse all the documentation on your system in one central tool. -------------------------------------------------------------------------------- Update Information: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 21 2009 Christopher Aillon - 2.24.0-8 - Rebuild against newer gecko * Fri Mar 27 2009 Christopher Aillon - 2.24.0-7 - Rebuild against newer gecko * Fri Mar 6 2009 Jan Horak - 2.24.0-6 - Rebuild against newer gecko * Wed Feb 4 2009 Christopher Aillon - 2.24.0-5 - Rebuild against newer gecko * Wed Dec 17 2008 Christopher Aillon - 2.24.0-4 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #496252 - CVE-2009-1302 Firefox 3 Layout engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=496252 [ 2 ] Bug #496253 - CVE-2009-1303 Firefox 2 and 3 Layout engine crash https://bugzilla.redhat.com/show_bug.cgi?id=496253 [ 3 ] Bug #496255 - CVE-2009-1304 Firefox 3 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=496255 [ 4 ] Bug #496256 - CVE-2009-1305 Firefox 2 and 3 JavaScript engine crash https://bugzilla.redhat.com/show_bug.cgi?id=496256 [ 5 ] Bug #486704 - CVE-2009-0652 firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names(spoof URLs and conduct phishing attacks) https://bugzilla.redhat.com/show_bug.cgi?id=486704 [ 6 ] Bug #496262 - CVE-2009-1306 Firefox jar: scheme ignores the content-disposition: header on the inner URI https://bugzilla.redhat.com/show_bug.cgi?id=496262 [ 7 ] Bug #496263 - CVE-2009-1307 Firefox Same-origin violations when Adobe Flash loaded via view-source: protocol https://bugzilla.redhat.com/show_bug.cgi?id=496263 [ 8 ] Bug #496266 - CVE-2009-1308 Firefox XSS hazard using third-party stylesheets and XBL bindings https://bugzilla.redhat.com/show_bug.cgi?id=496266 [ 9 ] Bug #496267 - CVE-2009-1309 Firefox Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString https://bugzilla.redhat.com/show_bug.cgi?id=496267 [ 10 ] Bug #496270 - CVE-2009-1310 Firefox Malicious search plugins can inject code into arbitrary sites https://bugzilla.redhat.com/show_bug.cgi?id=496270 [ 11 ] Bug #496271 - CVE-2009-1311 Firefox POST data sent to wrong site when saving web page with embedded frame https://bugzilla.redhat.com/show_bug.cgi?id=496271 [ 12 ] Bug #496274 - CVE-2009-1312 Firefox allows Refresh header to redirect to javascript: URIs https://bugzilla.redhat.com/show_bug.cgi?id=496274 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update yelp' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list
Apr 24, 2009
•Important
Fedora
89
security advisorypackage updateFedora CoreFedora Core 4 Termcap-5.4-6 Moderate Update Notification
Updated package.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2005-845 2005-09-06 ---------------------------------------------------------------------Product : Fedora Core 4 Name : termcap Version : 5.4 Release : 6 Summary : The terminal feature database used by certain applications. Description : The termcap package provides the /etc/termcap file. /etc/termcap is a database that defines the capabilities of various terminals and terminal emulators. Certain programs use the /etc/termcap file to access various features of terminals (the bell, colors, and graphics, etc.). ---------------------------------------------------------------------* Mon Sep 5 2005 Petr Raszyk 1:5.4-6 - rebuild * Thu Aug 25 2005 Petr Raszyk 1:5.4-5 - resynchronize termcap terminfo for xterm (#166702) ---------------------------------------------------------------------This update can be downloaded from: 4f871ae6401b8f32c74177408a54a73c SRPMS/termcap-5.4-6.src.rpm b52e31d47e7a086901b34f99e484b6df x86_64/termcap-5.4-6.noarch.rpm b52e31d47e7a086901b34f99e484b6df i386/termcap-5.4-6.noarch.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. ----------------------------------------------------------------------- fedora-announce-list mailing list
Sep 06, 2005
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!