Alerts This Week
Warning Icon 1 566
Alerts This Week
Warning Icon 1 566

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryupdateaccess control

SUSE: 2025:0580-2 critical: google-osconfig-agent file access issue

* bsc#1236560 Cross-References: * CVE-2024-45339 . # Security update for google-osconfig-agent Announcement ID: SUSE-SU-2025:0580-1 Release Date: 2025-02-18T14:52:44Z Rating: important References: * bsc#1236560 Cross-References: * CVE-2024-45339 CVSS scores: * CVE-2024-45339 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-45339 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-45339 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N Affected Products: * Public Cloud Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for google-osconfig-agent fixes the following issues: * CVE-2024-45339: github.com/golang/glog: a privileged process' log file path can be easily predicted and used to overwrite other sensitive files in a system. (bsc#1236560) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 12 zypper in -t patchSUSE-SLE-Module-Public-Cloud-12-2025-580=1 ## Package List: * Public Cloud Module 12 (aarch64 ppc64le s390x x86_64) * google-osconfig-agent-20250115.01-1.35.1 ## References: * https://www.suse.com/security/cve/CVE-2024-45339.html * https://bugzilla.suse.com/show_bug.cgi?id=1236560 . Keep informed about SUSE's recent security update for google-osconfig-agent that tackles critical vulnerabilities.. SUSE security advisory, google-osconfig-agent update, important vulnerability fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 18, 2025 Important SuSE
99
Ls Advisories Slackware Esm H240
Price Tag 1security advisorymoderateslackware

Slackware 10.0: SSA:2004-278-01 Moderate: Getmail Local Exploit Risk

New getmail packages are available for Slackware 9.1, 10.0 and -current to fix a security issue. If getmail is used as root to deliver to user owned files or directories, it can be made to overwrite system files. More details about this issue may be found in the Common . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] getmail (SSA:2004-278-01) New getmail packages are available for Slackware 9.1, 10.0 and -current to fix a security issue. If getmail is used as root to deliver to user owned files or directories, it can be made to overwrite system files. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: https://www.cve.org/CVERecord?id=CAN-2004-880 https://www.cve.org/CVERecord?id=CAN-2004-881 Here are the details from the Slackware 10.0 ChangeLog: +--------------------------+ patches/packages/getmail-4.2.0-noarch-1.tgz: Upgraded to getmaii-4.2.0. Earlier versions contained a local security flaw when used in an insecure fashion (surprise, running something as root that writes to user-controlled files or directories could allow the old symlink attack to clobber system files! :-) From the getmail CHANGELOG: This vulnerability is not exploitable if the administrator does not deliver mail to the maildirs/mbox files of untrusted local users, or if getmail is configured to use an external unprivileged MDA. This vulnerability is not remotely exploitable. Most users would not use getmail in such as way as to be vulnerable to this flaw, but if your site does this package closes the hole. I'd also recommend not using getmail like this. Either run it as the user that owns the target mailbox, or deliver through an external MDA. (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Updated package for Slackware 9.1: ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/getmail-3.2.5-noarch-1.tgz Updated package forSlackware 10.0: ftp://ftp.slackware.com/pub/slackware/slackware-10.0/patches/packages/getmail-4.2.0-noarch-1.tgz Updated package for Slackware -current: MD5 signatures: +-------------+ Slackware 9.1 package: d31d3b88d33488fc55061ea154e31457 getmail-3.2.5-noarch-1.tgz Slackware 10.0 package: 47b5454e061919f2d2128a16fca3a037 getmail-4.2.0-noarch-1.tgz Slackware -current package: 65f55bffa3f5fb5158f5f5efb590671a getmail-4.2.0-noarch-1.tgz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg getmail-4.2.0-noarch-1.tgz +-----+ . Recent getmail updates for Slackware tackle important vulnerabilities such as unauthorized file modifications – vital for ensuring system integrity.. Slackware, Getmail Update, Security Package, Attack Prevention. . LinuxSecurity.com Team

Calendar 2 Oct 04, 2004 Slackware
Banner 3 1028x280 1708121785 1771599793
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorycriticalSuSE

SuSE: 6.3-6.4 Critical: Tnef Remote Access Risk Advisory

Root compromise possible by overwriting critical system files.. -----BEGIN PGP SIGNED MESSAGE----- ______________________________________________________________________________ SuSE Security Announcement Package: tnef < 0-124 Date: Mon Jul 10 19:19:16 CEST 2000 Affected SuSE versions: 6.3-6.4 Vulnerability Type: remote compromise SuSE default package: no Other affected systems: all unix systems using this package ______________________________________________________________________________ A security hole was discovered in the package mentioned above. Please update it as soon as possible or disable the service if you are using this software on your SuSE Linux installation(s). Other Linux distributions or operating systems might be affected as well, please contact your vendor for information about this issue. Please note that we provide this information on an "as-is" basis only. There is no warranty whatsoever and no liability for any direct, indirect or incidental damage arising from this information or the installation of the update package. _____________________________________________________________________________ 1. Problem Description Tnef extracts eMails compressed with MS-Outlook. The compressed file includes the path name to which the decompressed data should be written. 2. Impact By specifing a path name like /etc/passwd and sending a compressed mail to root an adversary could gain remote root access to a system by overwriting the local password database. The same could happen if a mail virus scanner, like AMaVIS, process' a malicious mail. 3. Solution Update the package from our FTP server. It's also possible to use the '-x' option of tnef to specify the outputfile. ______________________________________________________________________________ Please verify these md5 checksums of the updates before installing: AXP: cc4983da1084c911998ddcc589050ec2 /6.3/ap1/tnef-0-124.alpha.rpm ae9b2d0e3231ee9ce35ee2fe0bd7788d /6.3/zq1/tnef-0-124.src.rpm 451485d86daa2b45ae897dc88bf8a61b /6.4/ap1/tnef-0-124.alpha.rpm 4bd689ba7abb7235b84570a90b3875d8 /6.4/zq1/tnef-0-124.src.rpm i386: 5909688f8568eb1f14591c1428235777 /6.3/ap1/tnef-0-124.i386.rpm 5c02ff06d98030541afb10c178a206f3 /6.3/zq1/tnef-0-124.src.rpm 58fa8e976df90aa09c30bf8fd5f6b2b5 1a99d0cd8315ae3a1990781b7977c4c6 /6.4/zq1/tnef-0-124.src.rpm PPC: 3be0b423e678923f27c42f8c59c09ab4 5f7f8c3c025c2f114aa115532e250723 b37d6374a7b0147dbd6bf9889ec68367 695fcd009a345638f049200dc0d6279d ______________________________________________________________________________ You can find updates on our ftp-Server: for Intel processors for Alpha processors or try the following web pages for a list of mirrors: SUSE – Open-Source-Lösungen für Enterprise Server und Cloud | SUSE Our webpage for patches: SUSE – Open-Source-Lösungen für Enterprise Server und Cloud | SUSE Our webpage for security announcements: SUSE – Open-Source-Lösungen für Enterprise Server und Cloud | SUSE If you want to report vulnerabilities, please contact This email address is being protected from spambots. You need JavaScript enabled to view it. ______________________________________________________________________________ SuSE has got two free security mailing list services to which any interested party may subscribe: suse- This email address is being protected from spambots. You need JavaScript enabled to view it. - moderated and for general/linux/SuSE security discussions. All SuSE security announcements are sent to this list. suse-security- This email address is being protected from spambots. You need JavaScript enabled to view it. - SuSE's announce-only mailing list. Only SuSE's security annoucements are sent to this list. To subscribe to the list, send a message to: To remove your address from the list, send a message to: Send mail to the following for info and FAQ for this list: _____________________________________________________________________________ This information is provided freely to everyone interested and may be redistributed provided that it is not altered in any way. Type Bits/KeyID Date User ID pub 2048/3D25D3D9 1999/03/06 SuSE Security Team - ------BEGIN PGP PUBLIC KEY BLOCK----- Version: 2.6.3i mQENAzbhLQQAAAEIAKAkXHe0lWRBXLpn38hMHy03F0I4Sszmoc8aaKJrhfhyMlOA BqvklPLE2f9UrI4Xc860gH79ZREwAgPt0pi6+SleNFLNcNFAuuHMLQOOsaMFatbz JR9i4m/lf6q929YROu5zB48rBAlcfTm+IBbijaEdnqpwGib45wE/Cfy6FAttBHQh 1Kp+r/jPbf1mYAvljUfHKuvbg8t2EIQz/5yGp+n5trn9pElfQO2cRBq8LFpf1l+U P7EKjFmlOq+Gs/fF98/dP3DfniSd78LQPq5vp8RL8nr/o2i7jkAQ33m4f1wOBWd+ cZovrKXYlXiR+Bf7m2hpZo+/sAzhd7LmAD0l09kABRG0JVN1U0UgU2VjdXJpdHkg VGVhbSA8c2VjdXJpdHlAc3VzZS5kZT6JARUDBRA24S1H5Fiyh7HKPEUBAVcOB/9b yHYji1/+4Xc2GhvXK0FSJN0MGgeXgW47yxDL7gmR4mNgjlIOUHZj0PEpVjWepOJ7 tQS3L9oP6cpj1Fj/XxuLbkp5VCQ61hpt54coQAvYrnT9rtWEGN+xmwejT1WmYmDJ xG+EGBXKr+XP69oIUl1E2JO3rXeklulgjqRKos4cdXKgyjWZ7CP9V9daRXDtje63 Om8gwSdU/nCvhdRIWp/Vwbf7Ia8iZr9OJ5YuQl0DBG4qmGDDrvImgPAFkYFzwlqo choXFQ9y0YVCV41DnR+GYhwl2qBd81T8aXhihEGPIgaw3g8gd8B5o6mPVgl+nJqI BkEYGBusiag2pS6qwznZiQEVAwUQNuEtBHey5gA9JdPZAQFtOAf+KVh939b0J94u v/kpg4xs1LthlhquhbHcKNoVTNspugiC3qMPyvSX4XcBr2PC0cVkS4Z9PY9iCfT+ x9WM96g39dAF+le2CCx7XISk9XXJ4ApEy5g4AuK7NYgAJd39PPbERgWnxjxir9g0 Ix30dS30bW39D+3NPU5Ho9TD/B7UDFvYT5AWHl3MGwo3a1RhTs6sfgL7yQ3U+mvq MkTExZb5mfN1FeaYKMopoI4VpzNVeGxQWIz67VjJHVyUlF20ekOz4kWVgsxkc8G2 saqZd6yv2EwqYTi8BDAduweP33KrQc4KDDommQNDOXxaKOeCoESIdM4p7Esdjq1o L0oixF12Cg==pIeS - ------END PGP PUBLIC KEY BLOCK----- -----BEGIN PGP SIGNATURE----- Version: 2.6.3i Charset: noconv iQEVAwUBOWsmVney5gA9JdPZAQFloQf+K/1qIYjMa9SdnSDS7m7Qv9HwnKW96fIB cTtyakhpqZmYvCls34OT2Es+D7OV+LueCCkU0TQy5DiZKTo/PCogQ7q9meG+b1zY YyKB+k7lLhPsrijazDwqOmzh0p6thEgCNT7VoiiOKmHI9p1oCyFKVDZsrheoxB3t Ii3RC7gQV4gzkUPUSXDqT20XBIIlfKrShcCvfl0jt18m32HrNmmfCiUWwKXo9u0m PYuI6pdnLVicfO1G25aZJbhF3PG1qg27WaDRkRvhpiKmKFbX9M1IZJdgp3+P8bau GvblVnDF1mfEjis+Alv7K3gta/+08mnQG8RtD+2fa3b5IC/13aFedg==MPVp -----ENDPGP SIGNATURE----- . Critical cmd.exe vulnerability presents threat of illegal access to system admin controls through file manipulation, requiring immediate remediation actions.. remote access, system update, tnef risk, critical advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 11, 2000 Critical SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here