Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraimportant

Fedora 42: python3.13 Important Tarfile Infinite Loop Fix CVE-2025-8194

3.13.6 is the sixth maintenance release of 3.13, containing around 200 bugfixes, build improvements and documentation changes since 3.13.5. This update contains fix for https://www.cve.org/CVERecord?id=CVE-2025-8194. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-1a9ad70c05 2025-08-13 01:15:46.336971+00:00 -------------------------------------------------------------------------------- Name : python3.13 Product : Fedora 42 Version : 3.13.6 Release : 1.fc42 URL : https://www.python.org/ Summary : Version 3.13 of the Python interpreter Description : Python 3.13 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. -------------------------------------------------------------------------------- Update Information: 3.13.6 is the sixth maintenance release of 3.13, containing around 200 bugfixes, build improvements and documentation changes since 3.13.5. This update contains fix for https://www.cve.org/CVERecord?id=CVE-2025-8194 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 7 2025 Tom\u0161 Hrn\u010diar - 3.13.5-5 - Update to 3.13.6 * Mon Jul 28 2025 Miro Hron\u010dok - 3.13.5-4 - Fix CVE-2025-8194: Tarfile infinite loop during parsing with negative member offset * Fri Jul 25 2025 Fedora Release Engineering - 3.13.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Wed Jun 25 2025 Karolina Surma - 3.13.5-2 - Conditionally skip tests not working with the older expat version -------------------------------------------------------------------------------- References: [ 1 ] Bug #2384078 - CVE-2025-8194 python3.13: Cpython infinite loop when parsing a tarfile [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2384078 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-1a9ad70c05' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Patch for python3.13 in Fedora 42 resolves CVE-2025-8194 infinite loop vulnerability, improving system security and reliability.. python update,Fedora security,python3 advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 13, 2025 Important Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraimportant

Fedora 41 python3.12: FEDORA-2025-3436f3d2b4 critical exploit fix

Update to 3.12.11. gh-135034: [CVE 2024-12718] [CVE 2025-4138] [CVE 2025-4330] [CVE 2025-4435] [CVE 2025-4517] Fixes multiple issues that allowed tarfile extraction filters (filter="data" and filter="tar") to be bypassed using crafted symlinks and hard links.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-3436f3d2b4 2025-06-14 01:51:14.531294+00:00 -------------------------------------------------------------------------------- Name : python3.12 Product : Fedora 41 Version : 3.12.11 Release : 1.fc41 URL : https://www.python.org/ Summary : Version 3.12 of the Python interpreter Description : Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. -------------------------------------------------------------------------------- Update Information: Update to 3.12.11. gh-135034: [CVE 2024-12718] [CVE 2025-4138] [CVE 2025-4330] [CVE 2025-4435] [CVE 2025-4517] Fixes multiple issues that allowed tarfile extraction filters (filter="data" and filter="tar") to be bypassed using crafted symlinks and hard links. gh-133767: Fix use-after-free in the “unicode-escape” decoder with a non-“strict” error handler. gh-128840:Short-circuit the processing of long IPv6 addresses early in ipaddress to prevent excessive memory consumption and a minor denial-of-service. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 4 2025 Tomáš Hrnčiar - 3.12.11-1 - Update to 3.12.11 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-3436f3d2b4' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Fedora 41 rolls out python3.12.11 update addressing various tarfile extraction problems along with improved features.. python update, Fedora security, tarfile issues, Python 3.12, extraction security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 14, 2025 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderateupdate

Red Hat 7.6 RHSA-2021:0881-01 Moderate: Python Infinite Loop Fix

An update for python is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: python security update Advisory ID: RHSA-2021:0881-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:0881 Issue date: 2021-03-16 CVE Names: CVE-2019-20907 ==================================================================== 1. Summary: An update for python is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux ComputeNode EUS (v. 7.6) - x86_64 Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server EUS (v. 7.6) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional EUS (v. 7.6) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7) - aarch64, ppc64le, s390x Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7) - aarch64, ppc64le, s390x 3. Description: Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: infinite loop in the tarfile module via crafted TARarchive (CVE-2019-20907) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1856481 - CVE-2019-20907 python: infinite loop in the tarfile module via crafted TAR archive 6. Package List: Red Hat Enterprise Linux ComputeNode EUS (v. 7.6): Source: python-2.7.5-84.el7_6.src.rpm x86_64: python-2.7.5-84.el7_6.x86_64.rpm python-debuginfo-2.7.5-84.el7_6.i686.rpm python-debuginfo-2.7.5-84.el7_6.x86_64.rpm python-devel-2.7.5-84.el7_6.x86_64.rpm python-libs-2.7.5-84.el7_6.i686.rpm python-libs-2.7.5-84.el7_6.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6): x86_64: python-debug-2.7.5-84.el7_6.x86_64.rpm python-debuginfo-2.7.5-84.el7_6.x86_64.rpm python-test-2.7.5-84.el7_6.x86_64.rpm python-tools-2.7.5-84.el7_6.x86_64.rpm tkinter-2.7.5-84.el7_6.x86_64.rpm Red Hat Enterprise Linux Server EUS (v.7.6): Source: python-2.7.5-84.el7_6.src.rpm ppc64: python-2.7.5-84.el7_6.ppc64.rpm python-debuginfo-2.7.5-84.el7_6.ppc.rpm python-debuginfo-2.7.5-84.el7_6.ppc64.rpm python-devel-2.7.5-84.el7_6.ppc64.rpm python-libs-2.7.5-84.el7_6.ppc.rpm python-libs-2.7.5-84.el7_6.ppc64.rpm ppc64le: python-2.7.5-84.el7_6.ppc64le.rpm python-debuginfo-2.7.5-84.el7_6.ppc64le.rpm python-devel-2.7.5-84.el7_6.ppc64le.rpm python-libs-2.7.5-84.el7_6.ppc64le.rpm s390x: python-2.7.5-84.el7_6.s390x.rpm python-debuginfo-2.7.5-84.el7_6.s390.rpm python-debuginfo-2.7.5-84.el7_6.s390x.rpm python-devel-2.7.5-84.el7_6.s390x.rpm python-libs-2.7.5-84.el7_6.s390.rpm python-libs-2.7.5-84.el7_6.s390x.rpm x86_64: python-2.7.5-84.el7_6.x86_64.rpm python-debuginfo-2.7.5-84.el7_6.i686.rpm python-debuginfo-2.7.5-84.el7_6.x86_64.rpm python-devel-2.7.5-84.el7_6.x86_64.rpm python-libs-2.7.5-84.el7_6.i686.rpm python-libs-2.7.5-84.el7_6.x86_64.rpm Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7): Source: python-2.7.5-84.el7_6.src.rpm aarch64: python-2.7.5-84.el7_6.aarch64.rpm python-debuginfo-2.7.5-84.el7_6.aarch64.rpm python-devel-2.7.5-84.el7_6.aarch64.rpm python-libs-2.7.5-84.el7_6.aarch64.rpm ppc64le: python-2.7.5-84.el7_6.ppc64le.rpm python-debuginfo-2.7.5-84.el7_6.ppc64le.rpm python-devel-2.7.5-84.el7_6.ppc64le.rpm python-libs-2.7.5-84.el7_6.ppc64le.rpm s390x: python-2.7.5-84.el7_6.s390x.rpm python-debuginfo-2.7.5-84.el7_6.s390.rpm python-debuginfo-2.7.5-84.el7_6.s390x.rpm python-devel-2.7.5-84.el7_6.s390x.rpm python-libs-2.7.5-84.el7_6.s390.rpm python-libs-2.7.5-84.el7_6.s390x.rpm Red Hat Enterprise Linux Server Optional EUS (v.7.6): ppc64: python-debug-2.7.5-84.el7_6.ppc64.rpm python-debuginfo-2.7.5-84.el7_6.ppc64.rpm python-test-2.7.5-84.el7_6.ppc64.rpm python-tools-2.7.5-84.el7_6.ppc64.rpm tkinter-2.7.5-84.el7_6.ppc64.rpm ppc64le: python-debug-2.7.5-84.el7_6.ppc64le.rpm python-debuginfo-2.7.5-84.el7_6.ppc64le.rpm python-test-2.7.5-84.el7_6.ppc64le.rpm python-tools-2.7.5-84.el7_6.ppc64le.rpm tkinter-2.7.5-84.el7_6.ppc64le.rpm s390x: python-debug-2.7.5-84.el7_6.s390x.rpm python-debuginfo-2.7.5-84.el7_6.s390x.rpm python-test-2.7.5-84.el7_6.s390x.rpm python-tools-2.7.5-84.el7_6.s390x.rpm tkinter-2.7.5-84.el7_6.s390x.rpm x86_64: python-debug-2.7.5-84.el7_6.x86_64.rpm python-debuginfo-2.7.5-84.el7_6.x86_64.rpm python-test-2.7.5-84.el7_6.x86_64.rpm python-tools-2.7.5-84.el7_6.x86_64.rpm tkinter-2.7.5-84.el7_6.x86_64.rpm Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7): aarch64: python-debug-2.7.5-84.el7_6.aarch64.rpm python-debuginfo-2.7.5-84.el7_6.aarch64.rpm python-test-2.7.5-84.el7_6.aarch64.rpm python-tools-2.7.5-84.el7_6.aarch64.rpm tkinter-2.7.5-84.el7_6.aarch64.rpm ppc64le: python-debug-2.7.5-84.el7_6.ppc64le.rpm python-debuginfo-2.7.5-84.el7_6.ppc64le.rpm python-test-2.7.5-84.el7_6.ppc64le.rpm python-tools-2.7.5-84.el7_6.ppc64le.rpm tkinter-2.7.5-84.el7_6.ppc64le.rpm s390x: python-debug-2.7.5-84.el7_6.s390x.rpm python-debuginfo-2.7.5-84.el7_6.s390x.rpm python-test-2.7.5-84.el7_6.s390x.rpm python-tools-2.7.5-84.el7_6.s390x.rpm tkinter-2.7.5-84.el7_6.s390x.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2019-20907 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYFDHaNzjgjWX9erEAQgH5A//SOfzVVB7IXMFu+Ean3Zw5FkPEyDzB/6M tBSgyu0RQS6Z4chfvt7Av7+N/wAIwyzR5yi8FxCRDqF+kXyGt8Q1PR9AoSF7y9nf dYNXM8qYiggVCeCjBW8+PY8MQ2EkHmBcLaZ8Ly5PTT21DTTwfYhQehPwshSkvlfB k4HMulXO+TSvbId2X8hVkfqBF8JIOYMH7xo4p1b9MHecE6bc5zclaf4Js09cWiVf zoybiTyms9PjlXobZlZ3ZzvPRksVvmdw/d+BHZGr+q0HCG6Ba+5kbla69x4I0nPF 0IlqnFmITQrUszUamD+zqXGqlFH5yCdhm8uVIvw0hVc4WmNS6MhXs/34pKHxb2kJ 7dd1cwaTamNxRp9tNlJ7LdkOiPu7aZHB5c3WSXOA9rbrSL0nZythMNG6J/z05hZi MjIHTNsEhj1+vKx1JWTjkAYeMhis610/Px46zFIvZtDMg8HxIhFy5gsGHxtvpAb7 TiR3cEkwXylXyWYaBH/k6rRlAahxMTymFdIW5MRflY4J8W+R5knm99ScpqUg6LIO 1GpaIzfITWP95Oo5ilmyTM2miDXxNkY7ZKMluA3kU5fhbONXbjMkuib9E6Ofag/q GPgRw7FNhRUjxoP/B5eQoZfe1KId10OgbUQKX1vQvsxhw5eUlj5t7OUvNm55jqKJ mFxonmHNe/o=3Oxv -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://listman.redhat.com/mailman/listinfo/rhsa-announce . A new version of Python has been launched, addressing a significant security concern tied to an infinite loop found within the tarfile module.. Red Hat Python Update, Linux Security Advisory, Python Infinite Loop, Moderate Risk Update. . LinuxSecurity.com Team

Calendar 2 Mar 16, 2021 Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here