Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorycriticalsecurity fix

Mageia 7 Security Advisory: MGASA-2021-0045 Critical Resource Agents Issue

Multiple vulnerabilities related to unsafe tempfile usage (bsc#1146690, bsc#1146691, bsc#1146692, bsc#1146766, bsc#1146776, bsc#1146784, bsc#1146785, bsc#1146787). Issues where the ocfmon user was created with a default password (bsc#1021689, . MGASA-2021-0045 - Updated resource-agents packages fix security vulnerabilities Publication date: 19 Jan 2021 URL: https://advisories.mageia.org/MGASA-2021-0045.html Type: security Affected Mageia releases: 7 Multiple vulnerabilities related to unsafe tempfile usage (bsc#1146690, bsc#1146691, bsc#1146692, bsc#1146766, bsc#1146776, bsc#1146784, bsc#1146785, bsc#1146787). Issues where the ocfmon user was created with a default password (bsc#1021689, bsc#1146687). The resource-agents package has been updated to version 4.7.0, fixing these issues and several other bugs. References: - https://bugs.mageia.org/show_bug.cgi?id=26538 - SRPMS: - 7/core/resource-agents-4.7.0-1.mga7 . Mageia 2021-0050 enhances resource-management agents, tackling vulnerabilities related to insecure temporary file handling and preset credentials.. Resource Agents Security,Mageia Security Fix,Software Security Update,Critical Security Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 19, 2021 Critical Mageia
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySUSEtempfile issue

SUSE: 2020:1090-1 Important: Resource Agents Security Update

An update that contains security fixes can now be installed. . SUSE Security Update: Security update for resource-agents ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:1090-1 Rating: important References: #1021689 #1146687 #1146690 #1146691 #1146692 #1146766 #1146776 #1146784 #1146785 #1146787 Affected Products: SUSE Linux Enterprise High Availability 15 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for resource-agents fixes the following issues: - Fixed multiple vulnerabilities related to unsafe tempfile usage. (bsc#1146690, bsc#1146691, bsc#1146692, bsc#1146766, bsc#1146776, bsc#1146784, bsc#1146785, bsc#1146787) - Fixed issues where the ocfmon user was created with a default password (bsc#1021689, bsc#1146687). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise High Availability 15: zypper in -t patch SUSE-SLE-Product-HA-15-2020-1090=1 Package List: - SUSE Linux Enterprise High Availability 15 (aarch64 ppc64le s390x x86_64): ldirectord-4.3.0184.6ee15eb2-3.37.1 resource-agents-4.3.0184.6ee15eb2-3.37.1 resource-agents-debuginfo-4.3.0184.6ee15eb2-3.37.1 resource-agents-debugsource-4.3.0184.6ee15eb2-3.37.1 - SUSE Linux Enterprise High Availability 15 (noarch): monitoring-plugins-metadata-4.3.0184.6ee15eb2-3.37.1 References: https://bugzilla.suse.com/1021689 https://bugzilla.suse.com/1146687 https://bugzilla.suse.com/1146690 https://bugzilla.suse.com/1146691 https://bugzilla.suse.com/1146692 https://bugzilla.suse.com/1146766 https://bugzilla.suse.com/1146776 https://bugzilla.suse.com/1146784 https://bugzilla.suse.com/1146785 https://bugzilla.suse.com/1146787 _______________________________________________ sle-security-updates mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. http://lists.suse.com/mailman/listinfo/sle-security-updates . An update to resource-agents has been released, tackling critical concerns such as improper tempfile handling and the establishment of a default password.. SUSE Security Update, Resource Agents, Important Fixes. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 23, 2020 Important SuSE
Banner 3 1028x280 1708121785 1771599793
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisoryghostscripttempfile issue

SciLinux: SLSA-2018-3650-1 Critical Access Check Issues in Ghostscript

ghostscript: .tempfile file permission issues (699657) (CVE-2018-15908) * ghostscript: shading_param incomplete type checking (699660) (CVE-2018-15909) * ghostscript: missing type check in type checker (699659) (CVE-2018-16511) * ghostscript: incorrect access checking in temp file handling to disclose contents of files (699658) (CVE-2018-16539) SL7 x86_64 ghostscript-9.07-31.el7_6.1. [More...]. Synopsis: Important: ghostscript security update Advisory ID: SLSA-2018:3650-1 Issue Date: 2018-11-27 CVE Numbers: CVE-2018-15908 CVE-2018-16511 CVE-2018-15909 CVE-2018-16539 -- Security Fix(es): * ghostscript: .tempfile file permission issues (699657) (CVE-2018-15908) * ghostscript: shading_param incomplete type checking (699660) (CVE-2018-15909) * ghostscript: missing type check in type checker (699659) (CVE-2018-16511) * ghostscript: incorrect access checking in temp file handling to disclose contents of files (699658) (CVE-2018-16539) -- SL7 x86_64 ghostscript-9.07-31.el7_6.1.i686.rpm ghostscript-9.07-31.el7_6.1.x86_64.rpm ghostscript-cups-9.07-31.el7_6.1.x86_64.rpm ghostscript-debuginfo-9.07-31.el7_6.1.i686.rpm ghostscript-debuginfo-9.07-31.el7_6.1.x86_64.rpm ghostscript-devel-9.07-31.el7_6.1.i686.rpm ghostscript-devel-9.07-31.el7_6.1.x86_64.rpm ghostscript-gtk-9.07-31.el7_6.1.x86_64.rpm ghostscript-9.07-31.el7_6.1.src.rpm noarch ghostscript-doc-9.07-31.el7_6.1.noarch.rpm - Scientific Linux Development Team . Crucial Ghostscript security patch released featuring essential enhancements for file access and permission validations on Scientific Linux.. ghostscript update, security fix, Scientific Linux, SL7, access checks. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 27, 2018 Critical Scientific Linux
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderateFedora

Fedora 7: Moderate Advisory - id3lib Tempfile Issue Fixed

This security update fixes a (minor) tempfile creation security issue (CVE-2007-4460) by using mkstemp (bugzilla 253553). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2007-1774 2007-08-23 22:40:53.379091 --------------------------------------------------------------------------------Name : id3lib Product : Fedora 7 Version : 3.8.3 Release : 17.fc7 Summary : Library for manipulating ID3v1 and ID3v2 tags Description : This package provides a software library for manipulating ID3v1 and ID3v2 tags. It provides a convenient interface for software developers to include standards-compliant ID3v1/2 tagging capabilities in their applications. Features include identification of valid tags, automatic size conversions, (re)synchronisation of tag frames, seamless tag (de)compression, and optional padding facilities. Additionally, it can tell mp3 header info, like bitrate etc. --------------------------------------------------------------------------------Update Information: This security update fixes a (minor) tempfile creation security issue (CVE-2007-4460) by using mkstemp (bugzilla 253553) --------------------------------------------------------------------------------ChangeLog: * Mon Aug 20 2007 Hans de Goede 3.8.3-17 - Use mkstemp instead of insecure tempfile creation (bz 253553) * Mon Aug 13 2007 Hans de Goede 3.8.3-16 - Update License tag for new Licensing Guidelines compliance --------------------------------------------------------------------------------References: [ 1 ] Bug #253553 https://bugzilla.redhat.com/show_bug.cgi?id=253553 [ 2 ] CVE-2007-4460 --------------------------------------------------------------------------------Updated packages: e6b3087e4bbf2dfa8dd88f41b6ea9877992e386f id3lib-3.8.3-17.fc7.ppc64.rpm 5dbd4f22a208836933133c1c0fb241c939394dc0 id3lib-debuginfo-3.8.3-17.fc7.ppc64.rpm 6be196648013797251adfeaae6b52720c25f94d4id3lib-devel-3.8.3-17.fc7.ppc64.rpm c4cc4c16f97561fae3a5f70330ab7964c1640969 id3lib-3.8.3-17.fc7.i386.rpm 2b5ae4415358b2c59247b264b3b1d1a99cbd2b9a id3lib-devel-3.8.3-17.fc7.i386.rpm 0f2544b47b544b9e8ca54e19c21ed2b2b3a210d4 id3lib-debuginfo-3.8.3-17.fc7.i386.rpm 037f38b2988545ad440c5174a7313c4fec58f0f1 id3lib-debuginfo-3.8.3-17.fc7.x86_64.rpm ab54ab72585de3a83ef4b7502e04e57dfe6e4ab7 id3lib-3.8.3-17.fc7.x86_64.rpm e167543feb1561e259edbcc0e49cf63487ed2eb1 id3lib-devel-3.8.3-17.fc7.x86_64.rpm f836a7b9b33c183fc6009d611c1efd1dee4a0876 id3lib-3.8.3-17.fc7.ppc.rpm 7e2badfdca50550fdf15d0f467d4c5e4843a7e7b id3lib-debuginfo-3.8.3-17.fc7.ppc.rpm cdfa2d1d118b41d394278f4330a63f7b47bf46ea id3lib-devel-3.8.3-17.fc7.ppc.rpm 3a9864090c09df3d7aa82eeacb6adaff2ec19592 id3lib-3.8.3-17.fc7.src.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at . --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Addresses a small temporary file problem within id3lib using mkstemp. This modification aims to bolster security measures in Fedora 7.. Fedora Security Update,id3lib Package Update,tempfile Creation Issue. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 27, 2007 Important Fedora
Banner 3 1028x280 1708121785 1771599793
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysoftware updatedebian

Debian 2.2: DSA-038-1 Critical: Sgml-Tools Insecure Tempfile Threat

Former versions of sgml-tools created temporary files directly in /tmp in an insecure fashion.. ---------------------------------------------------------------------------- Debian Security Advisory DSA-038-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Martin Schulze March 8, 2001 ---------------------------------------------------------------------------- Package : sgml-tools Vulnerability : insecure use of tempfiles Type : local tempfile problem Debian-specific: no Fixed version : 1.0.9-15 Former versions of sgml-tools created temporary files directly in /tmp in an insecure fashion. Version 1.0.9-15 and higher create a subdirectory first and open temporary files within that directory. We recommend you upgrade your sgml-tools package. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 2.2 alias potato ------------------------------------ Potato was released for the alpha, arm, i386, m68k, powerpc and sparc architectures. Source archives: MD5 checksum: 41187c94c4c112253543c50a834c223c MD5 checksum: 5092e08e04f8ad13a594335a718490b4 MD5 checksum: 872d55460634c4e7fb84e06e946989c7 Intel ia32 architecture: MD5 checksum: bc2d3d8eea05c1b0495724390b2099a4 Motorola 680x0 architecture: MD5 checksum: b387d59f20d79d0ac37375e5b009c7e1 Sun Sparc architecture: MD5 checksum: 4ca530c6d43a0d7bd05c9857316467db Alpha architecture: MD5 checksum: 52745714a737dd035f56c9952f356470 PowerPC architecture: MD5 checksum: 946a6aa2b2517cca2c35a6ec28eafabf ARM architecture: MD5 checksum: cc5f223311f462895e56cdf624a61367 These files will be moved into soon. For not yet released architectures please refer to theappropriate directory . ---------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Issues related to unsafe management of temporary files in sgml-tools brought to attention by Debian Security Advisory DSA-038-3. Users advised to implement updates to reduce vulnerabilities.. sgml-tools Update,insecure File Handling,Debian Security Advisory,tempfile Issue. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 07, 2001 Critical Debian
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebiansymlink attack

Debian: DSA-011-1 Critical: Mgetty Insecure Tempfile Attack

Immunix reports that mgetty does not create temporary files in a securemanner, which could lead to a symlink attack.. - ---------------------------------------------------------------------------- Debian Security Advisory DSA-011-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Michael Stone January 10, 2001 - ---------------------------------------------------------------------------- Package: mgetty Vulnerability: insecure tempfile Debian-specific: no Immunix reports that mgetty does not create temporary files in a secure manner, which could lead to a symlink attack. This has been corrected in mgetty 1.1.21-3potato1 We recommend you upgrade your mgetty package immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 2.2 alias potato - ------------------------------------ Potato was released for the alpha, arm, i386, m68k, powerpc and sparc architectures. Source archives: MD5 checksum: 7fa9561fad8dbe7a4a288c8135b33174 MD5 checksum: 0d4b5d68d1bb236970e1fe5f6ae02264 MD5 checksum: 41b23fb60b123a25179067bb0711b935 Architecture-independent files: MD5 checksum: c406e21ea10a22497b4f8d6a0473b537 Alpha architecture: MD5 checksum: 835087610bd00ccd5a40e01936e61bb2 MD5 checksum: e2958b3b698687bfc9de34742c1b90b6 MD5 checksum: 1c0981919bca639e309799d9e532b2d6 MD5 checksum: d838cb1009a5925ced1c92411b013ffc ARM architecture: MD5 checksum: 1cf2e00618425cec1dd76dde1515f6c9 MD5 checksum: dfd5bb2c08ec7fc06518f8df29c0df97 MD5 checksum: c8b9477a35b82f439b37bff1147aad93 MD5 checksum: 9a06b9274f595c849e7ffc40ec902e33 Intel ia32 architecture: MD5 checksum: fc841c1e78fa0d3347115cf8a50d63cf MD5 checksum: 57992604cc9437ce1b3362f8e05403ab MD5 checksum: 14f6f890c3595c020508b936204fa177 MD5 checksum: 52c203e583636f32389244c851823afa Motorola 680x0 architecture: not yet available PowerPC architecture: not yet available Sun Sparc architecture: MD5 checksum: 5fcec09109acc945db8612710ab87e9d MD5 checksum: 4e2a6603b8d11c495d519dec3ad2946d MD5 checksum: f4203cbdba33a85f05b63e5883887af4 MD5 checksum: 02bd00238010590cb9a4e73d8122f2f7 These files will be moved into soon. For not yet released architectures please refer to the appropriate directory . . Debian's DSA-011-1 highlights critical mgetty risk from insecure tempfile handling; immediate update recommended.. mgetty security, debian advisory, insecure tempfile, symlink risk, upgrade instructions. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 10, 2001 Critical Debian
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here