Alerts This Week
Warning Icon 1 975
Alerts This Week
Warning Icon 1 975

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE libinput Important Local Privilege Escalation Fix 2026-2523-1

Calendar White Jun 23, 2026
Important
Suse Large Esm H900
SuSE

SUSE sqlite3 Important Memory Corruption Buffer Overflow Vuln 2026-2527-1

Calendar White Jun 23, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE libinput Important Local Escalation Fix Vuln 2026-2529-1

Calendar White Jun 23, 2026
Important
Suse Large Esm H800
SuSE

SUSE Libinput Important Local Privilege Escalation Vuln 2026-2529-1

Calendar White Jun 23, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE libinput Important Local Access Disruption 2026-2530-1

Calendar White Jun 23, 2026
Important
Suse Large Esm H900
SuSE

SUSE libsolv Important Buffer Overflow & Security Fixes 2026-2531-1

Calendar White Jun 23, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Kernel Important Buffer Overflow Security Update 2026-2549-1

Calendar White Jun 23, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE Kernel Important Security Update for CVE-2026-43503 CVE-2026-46323

Calendar White Jun 23, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Enterprise Kernel Important Security Fixes 2026-2532-1

Calendar White Jun 23, 2026
Important
Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

Does sandboxing completely stop hackers?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/153-does-sandboxing-completely-stop-hackers?task=poll.vote&format=json
153
radio
0
[{"id":494,"title":"Isolation breeds ultimate system safety.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":495,"title":"Flawed configurations bypass all barriers.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":496,"title":"Determined exploits always break out.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag%201security advisorySuSEDoS

SUSE python-PyJWT Important DoS Token Forgery Vulnern 2026-22170-1

An update that solves five vulnerabilities can now be installed.. # Security update for python-PyJWT Announcement ID: SUSE-SU-2026:22170-1 Release Date: 2026-06-19T05:43:13Z Rating: important References: * bsc#1266798 * bsc#1266799 * bsc#1266800 * bsc#1266801 * bsc#1266802 Cross-References: * CVE-2026-48522 * CVE-2026-48523 * CVE-2026-48524 * CVE-2026-48525 * CVE-2026-48526 CVSS scores: * CVE-2026-48522 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-48522 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-48522 ( NVD ): 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-48523 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-48523 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-48523 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-48524 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-48524 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-48524 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-48525 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-48525 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-48526 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-48526 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-48526 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves five vulnerabilities can now be installed. ## Description: This update for python-PyJWT fixes the following issues * CVE-2026-48522: `PyJWKClient` passes URI arguments directly to `urllib.request.urlopen()` and allows for SSRF and token forgery (bsc#1266798). * CVE-2026-48523: verifier-side algorithm allow-list bypass when `jwt.decode()` or `jwt.decode_complete()` are called with a PyJWK key (bsc#1266799). * CVE-2026-48524: unlimited processing of JWTs with unknown kid values by `PyJWKClient.get_signing_key()` leads to unbounded JWKS endpoint requests and DoS (bsc#1266800). * CVE-2026-48525: unbounded Base64URL decoding of unused payload segment in `b64=false` detached JWS allows for DoS (bsc#1266801). * CVE-2026-48526: no validation of use of JSON Web Keys in HMAC algorithm when decoding JSON Web Tokens allows for forged HS256 tokens (bsc#1266802). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-960=1 * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-960=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * python313-PyJWT-2.12.1-160000.2.1 * SUSE Linux Enterprise Server 16.0 (noarch) * python313-PyJWT-2.12.1-160000.2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-48522.html * https://www.suse.com/security/cve/CVE-2026-48523.html * https://www.suse.com/security/cve/CVE-2026-48524.html * https://www.suse.com/security/cve/CVE-2026-48525.html * https://www.suse.com/security/cve/CVE-2026-48526.html * https://bugzilla.suse.com/show_bug.cgi?id=1266798 * https://bugzilla.suse.com/show_bug.cgi?id=1266799 * https://bugzilla.suse.com/show_bug.cgi?id=1266800 * https://bugzilla.suse.com/show_bug.cgi?id=1266801 * https://bugzilla.suse.com/show_bug.cgi?id=1266802 . Five issues in python-PyJWT resolved with important update for SUSE systems, patch recommended for security.. python PyJWT security update SUSE vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 23, 2026 Important SuSE
100
Ls Advisories Suse Esm H240
Price Tag%201security advisorysecurity issueSuSE

SUSE Python-PyJWT Important DoS Token Forgery Vulnern 2026-22220-1

An update that solves five vulnerabilities can now be installed.. # Security update for python-PyJWT Announcement ID: SUSE-SU-2026:22220-1 Release Date: 2026-06-19T05:43:05Z Rating: important References: * bsc#1266798 * bsc#1266799 * bsc#1266800 * bsc#1266801 * bsc#1266802 Cross-References: * CVE-2026-48522 * CVE-2026-48523 * CVE-2026-48524 * CVE-2026-48525 * CVE-2026-48526 CVSS scores: * CVE-2026-48522 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-48522 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-48522 ( NVD ): 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-48523 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-48523 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-48523 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-48524 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-48524 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-48524 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-48525 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-48525 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-48526 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-48526 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-48526 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * SUSE Linux Micro 6.2 An update that solves five vulnerabilities can now be installed. ## Description: This update for python-PyJWT fixes the following issues * CVE-2026-48522: `PyJWKClient` passes URI arguments directly to `urllib.request.urlopen()` and allows for SSRF and token forgery (bsc#1266798). * CVE-2026-48523: verifier-side algorithm allow-list bypass when `jwt.decode()` or `jwt.decode_complete()` are called with a PyJWK key (bsc#1266799). * CVE-2026-48524: unlimited processing of JWTs with unknown kid values by `PyJWKClient.get_signing_key()` leads to unbounded JWKS endpoint requests and DoS (bsc#1266800). * CVE-2026-48525: unbounded Base64URL decoding of unused payload segment in `b64=false` detached JWS allows for DoS (bsc#1266801). * CVE-2026-48526: no validation of use of JSON Web Keys in HMAC algorithm when decoding JSON Web Tokens allows for forged HS256 tokens (bsc#1266802). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-960=1 ## Package List: * SUSE Linux Micro 6.2 (noarch) * python313-PyJWT-2.12.1-160000.2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-48522.html * https://www.suse.com/security/cve/CVE-2026-48523.html * https://www.suse.com/security/cve/CVE-2026-48524.html * https://www.suse.com/security/cve/CVE-2026-48525.html * https://www.suse.com/security/cve/CVE-2026-48526.html * https://bugzilla.suse.com/show_bug.cgi?id=1266798 * https://bugzilla.suse.com/show_bug.cgi?id=1266799 * https://bugzilla.suse.com/show_bug.cgi?id=1266800 * https://bugzilla.suse.com/show_bug.cgi?id=1266801 * https://bugzilla.suse.com/show_bug.cgi?id=1266802 . Five critical updates for python-PyJWT resolve multiple security issues in SUSE Linux Micro 6.2 to enhance protection.. security update, python-PyJWT, SUSE patch. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 23, 2026 Important SuSE
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

Does sandboxing completely stop hackers?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/153-does-sandboxing-completely-stop-hackers?task=poll.vote&format=json
153
radio
0
[{"id":494,"title":"Isolation breeds ultimate system safety.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":495,"title":"Flawed configurations bypass all barriers.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":496,"title":"Determined exploits always break out.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here