Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 3 articles for you...
197
security advisorycritical issueDebianDebian LTS: DLA-4105-1 critical: tzdata new timezone database
This update includes the changes in tzdata 2025b. Notable changes are: - - New America/Coyhaique zone for Aysén Region in Chile, which moves from -04/-03 to -03. It will not change its clocks on 2025-04-05. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4105-1
Apr 01, 2025
•Critical
Debian LTS
197
security advisorysecurity issueDebianDebian 10 buster: DLA-3788-1 moderate: tzdata timezone updates
This update includes the changes in tzdata 2024a. Notable changes are: - - Kazakhstan unifies on UTC+5 beginning 2024-03-01. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3788-1
Apr 18, 2024
Debian LTS
100
security advisorybuffer overrunimportantSUSE: 2023:4061-2 Critical: BCI/Python Image Security Patch
The container bci/ruby was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/ruby ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:3050-1 Container Tags : bci/ruby:2 , bci/ruby:2.5 , bci/ruby:2.5-31.28 , bci/ruby:latest Container Release : 31.28 Severity : important Type : security References : 1177460 1199944 1202324 1204179 1204649 1204968 1205156 CVE-2022-1664 CVE-2022-3821 ----------------------------------------------------------------- The container bci/ruby was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:3999-1 Released: Tue Nov 15 17:08:04 2022 Summary: Security update for systemd Type: security Severity: moderate References: 1204179,1204968,CVE-2022-3821 This update for systemd fixes the following issues: - CVE-2022-3821: Fixed buffer overrun in format_timespan() function (bsc#1204968). - Import commit 0cd50eedcc0692c1f907b24424215f8db7d3b428 * 0469b9f2bc pstore: do not try to load all known pstore modules * ad05f54439 pstore: Run after modules are loaded * ccad817445 core: Add trigger limit for path units * 281d818fe3 core/mount: also add default before dependency for automount mount units * ffe5b4afa8 logind: fix crash in logind on user-specified message string - Document udev naming scheme (bsc#1204179) - Make 'sle15-sp3' net naming scheme still available for backward compatibility reason ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:4066-1 Released: Fri Nov 18 10:43:00 2022 Summary: Recommended update for timezone Type: recommended Severity: important References: 1177460,1202324,1204649,1205156 This update for timezone fixes the following issues: Update timezone version from 2022a to 2022f (bsc#1177460,bsc#1204649, bsc#1205156): - Mexico will no longer observe DST except near the US border - Chihuahua moves to year-round -06 on 2022-10-30 - Fiji no longer observes DST - In vanguard form, GMT is now a Zone and Etc/GMT a link - zic now supports links to links, and vanguard form uses this - Simplify four Ontario zones - Fix a Y2438 bug when reading TZif data - Enable 64-bit time_t on 32-bit glibc platforms - Omit large-file support when no longer needed - Jordan and Syria switch from +02/+03 with DST to year-round +03 - Palestine transitions are now Saturdays at 02:00 - Simplify three Ukraine zones into one - Improve tzselect on intercontinental Zones - Chile's DST is delayed by a week in September 2022 (bsc#1202324) - Iran no longer observes DST after 2022 - Rename Europe/Kiev to Europe/Kyiv - New `zic -R` command option - Vanguard form now uses %z ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:4081-1 Released: Fri Nov 18 15:40:46 2022 Summary: Security update for dpkg Type: security Severity: low References: 1199944,CVE-2022-1664 This update for dpkg fixes the following issues: - CVE-2022-1664: Fixed a directory traversal vulnerability in Dpkg::Source::Archive (bsc#1199944). The following package changes have been done: - libudev1-249.12-150400.8.13.1 updated - libsystemd0-249.12-150400.8.13.1 updated - timezone-2022f-150000.75.15.1 updated - update-alternatives-1.19.0.4-150000.4.4.1 updated - container:sles15-image-15.0.0-27.14.16 updated . Crucial patch released for bci/ruby container tackling various vulnerabilities, notably a buffer overflow. Discover further details.. BCI Container Security, SUSE Advisory, Ruby Container Update. . Severity: Important. LinuxSecurity.com Team
Nov 19, 2022
•Important
SuSE
100
security advisorysecurity issueimportantSUSE: 2022:3043-1 Important: Bci/Dotnet-Runtime Security Patch
The container bci/dotnet-runtime was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-runtime ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:3043-1 Container Tags : bci/dotnet-runtime:6.0 , bci/dotnet-runtime:6.0-21.46 , bci/dotnet-runtime:6.0.9 , bci/dotnet-runtime:6.0.9-21.46 Container Release : 21.46 Severity : important Type : security References : 1177460 1202324 1204179 1204649 1204968 1205156 CVE-2022-3821 ----------------------------------------------------------------- The container bci/dotnet-runtime was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:3999-1 Released: Tue Nov 15 17:08:04 2022 Summary: Security update for systemd Type: security Severity: moderate References: 1204179,1204968,CVE-2022-3821 This update for systemd fixes the following issues: - CVE-2022-3821: Fixed buffer overrun in format_timespan() function (bsc#1204968). - Import commit 0cd50eedcc0692c1f907b24424215f8db7d3b428 * 0469b9f2bc pstore: do not try to load all known pstore modules * ad05f54439 pstore: Run after modules are loaded * ccad817445 core: Add trigger limit for path units * 281d818fe3 core/mount: also add default before dependency for automount mount units * ffe5b4afa8 logind: fix crash in logind on user-specified message string - Document udev naming scheme (bsc#1204179) - Make 'sle15-sp3' net naming scheme still available for backward compatibility reason ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:4066-1 Released: Fri Nov 18 10:43:00 2022 Summary: Recommended update for timezone Type: recommended Severity: important References: 1177460,1202324,1204649,1205156 This update for timezone fixes the following issues: Update timezone version from2022a to 2022f (bsc#1177460, bsc#1204649, bsc#1205156): - Mexico will no longer observe DST except near the US border - Chihuahua moves to year-round -06 on 2022-10-30 - Fiji no longer observes DST - In vanguard form, GMT is now a Zone and Etc/GMT a link - zic now supports links to links, and vanguard form uses this - Simplify four Ontario zones - Fix a Y2438 bug when reading TZif data - Enable 64-bit time_t on 32-bit glibc platforms - Omit large-file support when no longer needed - Jordan and Syria switch from +02/+03 with DST to year-round +03 - Palestine transitions are now Saturdays at 02:00 - Simplify three Ukraine zones into one - Improve tzselect on intercontinental Zones - Chile's DST is delayed by a week in September 2022 (bsc#1202324) - Iran no longer observes DST after 2022 - Rename Europe/Kiev to Europe/Kyiv - New `zic -R` command option - Vanguard form now uses %z The following package changes have been done: - libsystemd0-249.12-150400.8.13.1 updated - timezone-2022f-150000.75.15.1 updated - container:sles15-image-15.0.0-27.14.16 updated . The bci/dotnet-runtime update brings important security fixes for systemd and timezone, addressing critical issues in the system.. DotNet-Runtime, Systemd Update, Important Security Fix. . Severity: Important. LinuxSecurity.com Team
Nov 19, 2022
•Important
SuSE
197
security advisorysecurity issuedebianDebian 10 DLA-3162-1 Moderate Update for libdatetime-timezone-perl
This update includes the changes in tzdata 2022e for the Perl bindings. For the list of changes, see DLA-3161-1. For Debian 10 buster, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3162-1
Oct 26, 2022
Debian LTS
197
security advisoryupdatedebianDebian 9 Stretch DLA-2543-1 Security Patch for libdatetime-timezone-perl
This update includes the changes in tzdata 2021a for the Perl bindings. For the list of changes, see DLA-2542-1. For Debian 9 stretch, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2543-1
Feb 02, 2021
•Important
Debian LTS
203
security advisorysecurity patchtimezone updateMageia 7: 2020-0418 High: Memory Usage and LDAP Security Concerns
High memory usage during deserialization of Proxy class with many interfaces. (CVE-2020-14779) Credentials sent over unencrypted LDAP connection. (CVE-2020-14781) . MGASA-2020-0418 - Updated timezone and java-1.8.0-openjdk packages fix security vulnerabilities Publication date: 13 Nov 2020 URL: https://advisories.mageia.org/MGASA-2020-0418.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-14779, CVE-2020-14781, CVE-2020-14782, CVE-2020-14792, CVE-2020-14796, CVE-2020-14797, CVE-2020-14803 High memory usage during deserialization of Proxy class with many interfaces. (CVE-2020-14779) Credentials sent over unencrypted LDAP connection. (CVE-2020-14781) Certificate blacklist bypass via alternate certificate encodings. (CVE-2020-14782) Integer overflow leading to out-of-bounds access. (CVE-2020-14792) Missing permission check in path to URI conversion. (CVE-2020-14796) Incomplete check for invalid characters in URI to path conversion. (CVE-2020-14797) Race condition in NIO Buffer boundary checks. (CVE-2020-14803) Also, the timezone package has been updated to version 2020d. References: - https://bugs.mageia.org/show_bug.cgi?id=27478 - https://access.redhat.com/errata/RHSA-2020:4347 - https://www.oracle.com/security-alerts/cpuoct2020.html#AppendixJAVA - https://lists.fedoraproject.org/archives/list/
Nov 13, 2020
Mageia
197
security advisorymoderatedebianDebian 8 LTS: 2025:1625-1 Moderate: tzdata Timezone Adjustments
This update includes the changes in tzdata 2018i. Notable changes are: - Qyzylorda, Kazakhstan moved from +06 to +05 on 2018-12-21. A new . Package : tzdata Version : 2018i-0+deb8u1 This update includes the changes in tzdata 2018i. Notable changes are: - Qyzylorda, Kazakhstan moved from +06 to +05 on 2018-12-21. A new zone Asia/Qostanay has been added, because Qostanay, Kazakhstan didn't move. - Metlakatla, Alaska observes PST this winter only. - São Tomé and Príncipe switched from +01 to +00 on 2019-01-01. For Debian 8 "Jessie", this problem has been fixed in version 2018i-0+deb8u1. We recommend that you upgrade your tzdata packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Package : tzdata Version : 2018i-0+deb8u1 This update includes the changes in tzdata 2018i. Notable . changes, update, tzdata, 2018i, notable, qyzylorda, kazakhstan, moved. . LinuxSecurity.com Team
Jan 02, 2019
Debian LTS
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!