Alerts This Week
Warning Icon 1 664
Alerts This Week
Warning Icon 1 664

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 3 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorybuffer overflowimportant

Mageia 9 tcpflow Important OOB Write Fix MGASA-2026-0113 CVE-2026-25061

MGASA-2026-0113 - Updated tcpflow packages fix security vulnerability. MGASA-2026-0113 - Updated tcpflow packages fix security vulnerability Publication date: 07 May 2026 URL: https://advisories.mageia.org/MGASA-2026-0113.html Type: security Affected Mageia releases: 9 CVE: CVE-2026-25061 Description: tcpflow has TIM Element OOB Write in wifipcap. (CVE-2026-25061) References: - https://bugs.mageia.org/show_bug.cgi?id=35327 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./message/CWJ2HTXROZUA6IP467KMWZFIYTXEGVZK/ - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25061 SRPMS: - 9/core/tcpflow-1.6.1-3.1.mga9 . Mageia 9 tcpflow package update resolves CVE-2026-25061 out-of-bounds write issue, enhancing security.. Mageia tcpflow update 2026 CVE-2026-25061 bug fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 07, 2026 Important Mageia
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 44 tcpflow Critical OOB Write Advisory 2026-3efb70d4da

The update fixes CVS-2026-25061. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-3efb70d4da 2026-04-25 01:21:36.171036+00:00 -------------------------------------------------------------------------------- Name : tcpflow Product : Fedora 44 Version : 1.6.2 Release : 0.1.8d47b53.fc44 URL : https://github.com/simsong/tcpflow Summary : Network traffic recorder Description : tcpflow is a program that captures data transmitted as part of TCP connections (flows), and stores the data in a way that is convenient for protocol analysis or debugging. A program like 'tcpdump' shows a summary of packets seen on the wire, but usually doesn't store the data that's actually being transmitted. In contrast, tcpflow reconstructs the actual data streams and stores each flow in a separate file for later analysis. -------------------------------------------------------------------------------- Update Information: The update fixes CVS-2026-25061 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 26 2026 Terje Rsten - 1.6.2-0.1.8d47b53 - Update to 1.6.2 / 8d47b53 to fix CVE-2026-25061 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435430 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2435430 [ 2 ] Bug #2435431 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2435431 [ 3 ] Bug #2435432 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2435432 [ 4 ] Bug #2435433 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2435433 -------------------------------------------------------------------------------- This update can be installed with the"dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-3efb70d4da' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Important update for tcpflow on Fedora 44 fixing OOB write issues for enhanced network security.. tcpflow update, Fedora 44 security, OOB write fix, network traffic recorder. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 25, 2026 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 42 tcpflow Critical TIM Element Out Of Bounds Write CVE-2026-25061

The update fixes CVS-2026-25061. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-2f6fa1b6a1 2026-04-04 01:02:26.879262+00:00 -------------------------------------------------------------------------------- Name : tcpflow Product : Fedora 42 Version : 1.6.2 Release : 0.1.8d47b53.fc42 URL : https://github.com/simsong/tcpflow Summary : Network traffic recorder Description : tcpflow is a program that captures data transmitted as part of TCP connections (flows), and stores the data in a way that is convenient for protocol analysis or debugging. A program like 'tcpdump' shows a summary of packets seen on the wire, but usually doesn't store the data that's actually being transmitted. In contrast, tcpflow reconstructs the actual data streams and stores each flow in a separate file for later analysis. -------------------------------------------------------------------------------- Update Information: The update fixes CVS-2026-25061 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 26 2026 Terje Rsten - 1.6.2-0.1.8d47b53 - Update to 1.6.2 / 8d47b53 to fix CVE-2026-25061 * Sat Jan 17 2026 Fedora Release Engineering - 1.6.1-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering - 1.6.1-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435430 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2435430 [ 2 ] Bug #2435431 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2435431 [ 3 ] Bug #2435432 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2435432 [ 4 ] Bug #2435433- CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2435433 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-2f6fa1b6a1' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Critical tcpflow update for Fedora 42 resolves the out-of-bounds write issue (CVE-2026-25061) with recommended actions.. tcpflow Fedora update critical remote access outofbound. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 04, 2026 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorabuffer overflow

Fedora 43 tcpflow Experiences Low Out Of Band Write CVE-2026-25061 Advisory

The update fixes CVS-2026-25061. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-4398680e1a 2026-04-04 00:48:12.438655+00:00 -------------------------------------------------------------------------------- Name : tcpflow Product : Fedora 43 Version : 1.6.2 Release : 0.1.8d47b53.fc43 URL : https://github.com/simsong/tcpflow Summary : Network traffic recorder Description : tcpflow is a program that captures data transmitted as part of TCP connections (flows), and stores the data in a way that is convenient for protocol analysis or debugging. A program like 'tcpdump' shows a summary of packets seen on the wire, but usually doesn't store the data that's actually being transmitted. In contrast, tcpflow reconstructs the actual data streams and stores each flow in a separate file for later analysis. -------------------------------------------------------------------------------- Update Information: The update fixes CVS-2026-25061 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 26 2026 Terje Rsten - 1.6.2-0.1.8d47b53 - Update to 1.6.2 / 8d47b53 to fix CVE-2026-25061 * Sat Jan 17 2026 Fedora Release Engineering - 1.6.1-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435430 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2435430 [ 2 ] Bug #2435431 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2435431 [ 3 ] Bug #2435432 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2435432 [ 4 ] Bug #2435433 - CVE-2026-25061 tcpflow: tcpflow TIM Element OOB Write [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2435433 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-4398680e1a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Update improves security of tcpflow on Fedora 43 by addressing a critical out of bounds write vulnerability.. tcpflow security Fedora update OOB write vulnerability. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Apr 04, 2026 Low Fedora
Banner 4 1028x280 1708121825 1771600306
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticaldebian

Debian 11 tcpflow Critical DoS Out-of-Bounds Fix DLA-4478-1 CVE-2026-25061

A bug has been found in the tcpflow package: a wrong length check in the 802.11 management frame parser allows a crafted frame with a large TIM length to cause an out-of-bounds write, resulting in a DoS and potentially in code execution. For Debian 11 bullseye, this problem has been fixed in version. Debian LTS Advisory DLA-4478-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Paride Legovini February 10, 2026 https://wiki.debian.org/LTS Package : tcpflow Version : 1.5.2+repack1-1+deb11u1 CVE ID : CVE-2026-25061 Debian Bug : #1126695 A bug has been found in the tcpflow package: a wrong length check in the 802.11 management frame parser allows a crafted frame with a large TIM length to cause an out-of-bounds write, resulting in a DoS and potentially in code execution. For Debian 11 bullseye, this problem has been fixed in version 1.5.2+repack1-1+deb11u1. We recommend that you upgrade your tcpflow packages. For the detailed security status of tcpflow please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/tcpflow Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Out-of-bounds write in tcpflow affects Debian 11. Upgrade recommended to protect against DoS and code execution.. Debian LTS,tcpflow security,DoS vulnerability,out-of-bounds write,security updates. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 10, 2026 Critical Debian LTS
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity issueDebian

Debian: DLA-2468-1 Critical: Tcpflow Overflow Access Issue

An issue has been found in tcpflow, a TCP flow recorder. Due to an overflow vulnerability in function handle_80211, an . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2468-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Thorsten Alteholz November 29, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : tcpflow Version : 1.4.4+repack1-3+deb8u1 CVE ID : CVE-2018-14938 An issue has been found in tcpflow, a TCP flow recorder. Due to an overflow vulnerability in function handle_80211, an out-of-bounds read with access to sensitive memory or a denial of service might happen. For Debian 9 stretch, this problem has been fixed in version 1.4.4+repack1-3+deb8u1. We recommend that you upgrade your tcpflow packages. For the detailed security status of tcpflow please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/tcpflow Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian LTS Advisory DLA-2469-2 resolves a vulnerability in rsync, enhancing secure data synchronization across systems.. Debian LTS, tcpflow update, overflow issue, denial of service, security advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 28, 2020 Critical Debian LTS
Banner 4 1028x280 1708121825 1771600306
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorydenial of servicesecurity fix

Mageia: 2019-0264 Moderate: Tcpflow Buffer Over-Read Denial Of Service

Updated tcpflow package fixes security vulnerability: A stack-based buffer over-read exists in setbit() at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an address_histogram call or a . MGASA-2019-0264 - Updated tcpflow packages fix security vulnerability Publication date: 12 Sep 2019 URL: https://advisories.mageia.org/MGASA-2019-0264.html Type: security Affected Mageia releases: 6 CVE: CVE-2018-18409 Updated tcpflow package fixes security vulnerability: A stack-based buffer over-read exists in setbit() at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an address_histogram call or a get_histogram call (CVE-2018-18409). References: - https://bugs.mageia.org/show_bug.cgi?id=24578 - https://www.cve.org/CVERecord?id=CVE-2018-18409 SRPMS: - 6/core/tcpflow-1.5.2-1.mga6 . Revised tcpflow components mitigate a stack-oriented buffer over-read flaw which can result in service interruption.. tcpflow security update, Mageia security advisory, buffer over-read fix. . LinuxSecurity.com Team

Calendar 2 Sep 12, 2019 Mageia
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryinformation exposureubuntu

Ubuntu 18.04 LTS: USN-3955-1 Critical: Tcpflow Remote Crash

tcpflow could be made to crash or expose sensitive information over the network if it opened a specially crafted file or received specially crafted network traffic.. =========================================================================Ubuntu Security Notice USN-3955-1 April 24, 2019 tcpflow vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.10 - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: tcpflow could be made to crash or expose sensitive information over the network if it opened a specially crafted file or received specially crafted network traffic. Software Description: - tcpflow: TCP flow recorder Details: It was discovered that tcpflow incorrectly handled certain malformed network packets. A remote attacker could send these packets to a target system, causing tcpflow to crash or possibly disclose sensitive information. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10: tcpflow 1.4.5+repack1-4ubuntu0.18.10.1 tcpflow-nox 1.4.5+repack1-4ubuntu0.18.10.1 Ubuntu 18.04 LTS: tcpflow 1.4.5+repack1-4ubuntu0.18.04.1 tcpflow-nox 1.4.5+repack1-4ubuntu0.18.04.1 Ubuntu 16.04 LTS: tcpflow 1.4.5+repack1-1ubuntu0.1 tcpflow-nox 1.4.5+repack1-1ubuntu0.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-3955-1 CVE-2018-14938, CVE-2018-18409 Package Information: https://launchpad.net/ubuntu/+source/tcpflow/1.4.5+repack1-4ubuntu0.18.10.1 https://launchpad.net/ubuntu/+source/tcpflow/1.4.5+repack1-4ubuntu0.18.04.1 https://launchpad.net/ubuntu/+source/tcpflow/1.4.5+repack1-1ubuntu0.1 . Enhance your platform's defense against tcpflowsecurity flaws impacting Ubuntu, guaranteeing that confidential information stays protected from potential leaks.. tcpflow vulnerabilities, Ubuntu security, network crash, sensitive information, system update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 25, 2019 Critical Ubuntu
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here