Alerts This Week
Warning Icon 1 666
Alerts This Week
Warning Icon 1 666

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -2 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE Linux Micro 6.0 Security Advisory ID 2026-20716-1 for qemu

An update that solves two vulnerabilities can now be installed.. # Security update for qemu Announcement ID: SUSE-SU-2026:20716-1 Release Date: 2026-03-10T18:50:26Z Rating: moderate References: * bsc#1255400 * bsc#1256484 Cross-References: * CVE-2025-14876 * CVE-2026-0665 CVSS scores: * CVE-2025-14876 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-14876 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-14876 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-0665 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-0665 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-0665 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for qemu fixes the following issues: * CVE-2025-14876: Fixed unbounded allocation in virtio-crypto. (bsc#1255400) * CVE-2026-0665: Fixed PIRQ bounds check in xen_physdev_map_pirq. (bsc#1256484) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-614=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * qemu-block-rbd-8.2.10-2.1 * qemu-ui-opengl-8.2.10-2.1 * qemu-debugsource-8.2.10-2.1 * qemu-guest-agent-debuginfo-8.2.10-2.1 * qemu-hw-display-virtio-gpu-debuginfo-8.2.10-2.1 * qemu-chardev-spice-8.2.10-2.1 * qemu-img-debuginfo-8.2.10-2.1 * qemu-pr-helper-8.2.10-2.1 * qemu-chardev-spice-debuginfo-8.2.10-2.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-8.2.10-2.1 * qemu-block-curl-debuginfo-8.2.10-2.1 * qemu-hw-usb-redirect-debuginfo-8.2.10-2.1 *qemu-hw-display-virtio-gpu-pci-8.2.10-2.1 * qemu-block-iscsi-debuginfo-8.2.10-2.1 * qemu-ui-opengl-debuginfo-8.2.10-2.1 * qemu-block-iscsi-8.2.10-2.1 * qemu-hw-display-virtio-gpu-8.2.10-2.1 * qemu-block-ssh-debuginfo-8.2.10-2.1 * qemu-ui-spice-core-8.2.10-2.1 * qemu-hw-usb-redirect-8.2.10-2.1 * qemu-guest-agent-8.2.10-2.1 * qemu-ui-spice-core-debuginfo-8.2.10-2.1 * qemu-block-rbd-debuginfo-8.2.10-2.1 * qemu-hw-display-virtio-vga-debuginfo-8.2.10-2.1 * qemu-audio-spice-debuginfo-8.2.10-2.1 * qemu-debuginfo-8.2.10-2.1 * qemu-tools-8.2.10-2.1 * qemu-hw-display-qxl-8.2.10-2.1 * qemu-block-curl-8.2.10-2.1 * qemu-pr-helper-debuginfo-8.2.10-2.1 * qemu-hw-usb-host-debuginfo-8.2.10-2.1 * qemu-hw-display-qxl-debuginfo-8.2.10-2.1 * qemu-hw-usb-host-8.2.10-2.1 * qemu-ksm-8.2.10-2.1 * qemu-tools-debuginfo-8.2.10-2.1 * qemu-hw-display-virtio-vga-8.2.10-2.1 * qemu-img-8.2.10-2.1 * qemu-8.2.10-2.1 * qemu-block-ssh-8.2.10-2.1 * qemu-audio-spice-8.2.10-2.1 * SUSE Linux Micro 6.0 (x86_64) * qemu-x86-debuginfo-8.2.10-2.1 * qemu-accel-tcg-x86-debuginfo-8.2.10-2.1 * qemu-accel-tcg-x86-8.2.10-2.1 * qemu-x86-8.2.10-2.1 * SUSE Linux Micro 6.0 (noarch) * qemu-vgabios-8.2.101.16.3_3_ga95067eb-2.1 * qemu-ipxe-8.2.10-2.1 * qemu-seabios-8.2.101.16.3_3_ga95067eb-2.1 * qemu-lang-8.2.10-2.1 * SUSE Linux Micro 6.0 (s390x) * qemu-s390x-8.2.10-2.1 * qemu-s390x-debuginfo-8.2.10-2.1 * SUSE Linux Micro 6.0 (aarch64) * qemu-arm-debuginfo-8.2.10-2.1 * qemu-arm-8.2.10-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-14876.html * https://www.suse.com/security/cve/CVE-2026-0665.html * https://bugzilla.suse.com/show_bug.cgi?id=1255400 * https://bugzilla.suse.com/show_bug.cgi?id=1256484 . Update addresses two issues in qemu for SUSE Linux Micro, enhancing security and stability.. SUSE security update,qemu vulnerabilities,qemu patch. . LinuxSecurity.com Team

Calendar 2 Mar 19, 2026 SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateDoS

openSUSE 15.5 qemu Major Continuous Resource Drain DoS SUSE-SU-2026-0889-6

An update that solves one vulnerability can now be installed.. # Security update for qemu Announcement ID: SUSE-SU-2026:0889-1 Release Date: 2026-03-13T07:58:56Z Rating: moderate References: * bsc#1255400 Cross-References: * CVE-2025-14876 CVSS scores: * CVE-2025-14876 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-14876 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-14876 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for qemu fixes the following issue: * CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto (bsc#1255400). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2026-889=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-889=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-889=1 ## Package List: * Server Applications Module 15-SP7 (noarch) * qemu-sgabios-8-150500.49.39.2 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * qemu-block-dmg-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-redirect-7.1.0-150500.49.39.2 * qemu-hw-display-qxl-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-curses-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-smartcard-7.1.0-150500.49.39.2 * qemu-accel-qtest-7.1.0-150500.49.39.2 * qemu-ppc-debuginfo-7.1.0-150500.49.39.2 *qemu-hw-s390x-virtio-gpu-ccw-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-qxl-7.1.0-150500.49.39.2 * qemu-hw-s390x-virtio-gpu-ccw-7.1.0-150500.49.39.2 * qemu-guest-agent-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-vga-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-dbus-7.1.0-150500.49.39.2 * qemu-hw-usb-host-7.1.0-150500.49.39.2 * qemu-block-nfs-7.1.0-150500.49.39.2 * qemu-ui-spice-app-debuginfo-7.1.0-150500.49.39.2 * qemu-block-curl-debuginfo-7.1.0-150500.49.39.2 * qemu-block-iscsi-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-gtk-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-curses-7.1.0-150500.49.39.2 * qemu-audio-jack-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-vga-7.1.0-150500.49.39.2 * qemu-s390x-7.1.0-150500.49.39.2 * qemu-x86-7.1.0-150500.49.39.2 * qemu-audio-oss-debuginfo-7.1.0-150500.49.39.2 * qemu-tools-debuginfo-7.1.0-150500.49.39.2 * qemu-block-dmg-7.1.0-150500.49.39.2 * qemu-block-ssh-7.1.0-150500.49.39.2 * qemu-ui-opengl-7.1.0-150500.49.39.2 * qemu-audio-jack-7.1.0-150500.49.39.2 * qemu-audio-dbus-debuginfo-7.1.0-150500.49.39.2 * qemu-vhost-user-gpu-debuginfo-7.1.0-150500.49.39.2 * qemu-debugsource-7.1.0-150500.49.39.2 * qemu-headless-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-pci-7.1.0-150500.49.39.2 * qemu-arm-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-oss-7.1.0-150500.49.39.2 * qemu-chardev-baum-debuginfo-7.1.0-150500.49.39.2 * qemu-chardev-spice-debuginfo-7.1.0-150500.49.39.2 * qemu-arm-7.1.0-150500.49.39.2 * qemu-ui-dbus-7.1.0-150500.49.39.2 * qemu-ui-spice-core-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-debuginfo-7.1.0-150500.49.39.2 * qemu-extra-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-smartcard-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-alsa-debuginfo-7.1.0-150500.49.39.2 * qemu-linux-user-debugsource-7.1.0-150500.49.39.2 * qemu-accel-qtest-debuginfo-7.1.0-150500.49.39.2 *qemu-block-ssh-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-redirect-debuginfo-7.1.0-150500.49.39.2 * qemu-s390x-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-gtk-7.1.0-150500.49.39.2 * qemu-ui-dbus-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-spice-core-debuginfo-7.1.0-150500.49.39.2 * qemu-block-iscsi-7.1.0-150500.49.39.2 * qemu-extra-7.1.0-150500.49.39.2 * qemu-linux-user-7.1.0-150500.49.39.2 * qemu-ivshmem-tools-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-spice-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-pa-debuginfo-7.1.0-150500.49.39.2 * qemu-chardev-baum-7.1.0-150500.49.39.2 * qemu-block-gluster-7.1.0-150500.49.39.2 * qemu-accel-tcg-x86-7.1.0-150500.49.39.2 * qemu-linux-user-debuginfo-7.1.0-150500.49.39.2 * qemu-accel-tcg-x86-debuginfo-7.1.0-150500.49.39.2 * qemu-block-nfs-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-7.1.0-150500.49.39.2 * qemu-ivshmem-tools-7.1.0-150500.49.39.2 * qemu-debuginfo-7.1.0-150500.49.39.2 * qemu-block-gluster-debuginfo-7.1.0-150500.49.39.2 * qemu-tools-7.1.0-150500.49.39.2 * qemu-7.1.0-150500.49.39.2 * qemu-ui-spice-app-7.1.0-150500.49.39.2 * qemu-x86-debuginfo-7.1.0-150500.49.39.2 * qemu-block-curl-7.1.0-150500.49.39.2 * qemu-ppc-7.1.0-150500.49.39.2 * qemu-hw-usb-host-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-pci-debuginfo-7.1.0-150500.49.39.2 * qemu-guest-agent-7.1.0-150500.49.39.2 * qemu-audio-alsa-7.1.0-150500.49.39.2 * qemu-ui-opengl-debuginfo-7.1.0-150500.49.39.2 * qemu-ksm-7.1.0-150500.49.39.2 * qemu-audio-pa-7.1.0-150500.49.39.2 * qemu-vhost-user-gpu-7.1.0-150500.49.39.2 * qemu-audio-spice-7.1.0-150500.49.39.2 * qemu-chardev-spice-7.1.0-150500.49.39.2 * openSUSE Leap 15.5 (s390x x86_64 i586) * qemu-kvm-7.1.0-150500.49.39.2 * openSUSE Leap 15.5 (noarch) * qemu-microvm-7.1.0-150500.49.39.2 * qemu-seabios-1.16.0_0_gd239552-150500.49.39.2 * qemu-SLOF-7.1.0-150500.49.39.2 *qemu-lang-7.1.0-150500.49.39.2 * qemu-skiboot-7.1.0-150500.49.39.2 * qemu-ipxe-1.0.0+-150500.49.39.2 * qemu-vgabios-1.16.0_0_gd239552-150500.49.39.2 * qemu-sgabios-8-150500.49.39.2 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * qemu-block-rbd-7.1.0-150500.49.39.2 * qemu-block-rbd-debuginfo-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * qemu-hw-display-virtio-gpu-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-vga-7.1.0-150500.49.39.2 * qemu-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-redirect-7.1.0-150500.49.39.2 * qemu-hw-display-qxl-debuginfo-7.1.0-150500.49.39.2 * qemu-tools-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-spice-core-debuginfo-7.1.0-150500.49.39.2 * qemu-tools-7.1.0-150500.49.39.2 * qemu-7.1.0-150500.49.39.2 * qemu-ui-opengl-7.1.0-150500.49.39.2 * qemu-audio-spice-debuginfo-7.1.0-150500.49.39.2 * qemu-debugsource-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-pci-7.1.0-150500.49.39.2 * qemu-block-curl-7.1.0-150500.49.39.2 * qemu-chardev-spice-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-qxl-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-pci-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-spice-core-7.1.0-150500.49.39.2 * qemu-guest-agent-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-debuginfo-7.1.0-150500.49.39.2 * qemu-guest-agent-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-opengl-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-vga-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-spice-7.1.0-150500.49.39.2 * qemu-block-curl-debuginfo-7.1.0-150500.49.39.2 * qemu-chardev-spice-7.1.0-150500.49.39.2 * qemu-hw-usb-redirect-debuginfo-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (aarch64) * qemu-arm-7.1.0-150500.49.39.2 * qemu-arm-debuginfo-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (noarch) * qemu-seabios-1.16.0_0_gd239552-150500.49.39.2 * qemu-SLOF-7.1.0-150500.49.39.2 *qemu-ipxe-1.0.0+-150500.49.39.2 * qemu-vgabios-1.16.0_0_gd239552-150500.49.39.2 * qemu-sgabios-8-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (ppc64le) * qemu-ppc-debuginfo-7.1.0-150500.49.39.2 * qemu-ppc-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (s390x) * qemu-s390x-7.1.0-150500.49.39.2 * qemu-s390x-debuginfo-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (x86_64) * qemu-accel-tcg-x86-7.1.0-150500.49.39.2 * qemu-x86-7.1.0-150500.49.39.2 * qemu-accel-tcg-x86-debuginfo-7.1.0-150500.49.39.2 * qemu-x86-debuginfo-7.1.0-150500.49.39.2 ## References: * https://www.suse.com/security/cve/CVE-2025-14876.html * https://bugzilla.suse.com/show_bug.cgi?id=1255400 . Install the latest SUSE update to address a moderate issue with qemu related to unbounded allocations.. SUSE update, qemu security, moderate severity, openSUSE patch. . LinuxSecurity.com Team

Calendar 2 Mar 13, 2026 SuSE
Banner 2 1028x280 1708121730 1 1771599631
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderateQEMU

openSUSE 15.5 qemu Moderate Unbounded Allocation Threat SUSE-SU-2026-0889-1

An update that solves one vulnerability can now be installed.. # Security update for qemu Announcement ID: SUSE-SU-2026:0889-1 Release Date: 2026-03-13T07:58:56Z Rating: moderate References: * bsc#1255400 Cross-References: * CVE-2025-14876 CVSS scores: * CVE-2025-14876 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-14876 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-14876 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for qemu fixes the following issue: * CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto (bsc#1255400). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2026-889=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-889=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-889=1 ## Package List: * Server Applications Module 15-SP7 (noarch) * qemu-sgabios-8-150500.49.39.2 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * qemu-block-dmg-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-redirect-7.1.0-150500.49.39.2 * qemu-hw-display-qxl-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-curses-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-smartcard-7.1.0-150500.49.39.2 * qemu-accel-qtest-7.1.0-150500.49.39.2 * qemu-ppc-debuginfo-7.1.0-150500.49.39.2 *qemu-hw-s390x-virtio-gpu-ccw-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-qxl-7.1.0-150500.49.39.2 * qemu-hw-s390x-virtio-gpu-ccw-7.1.0-150500.49.39.2 * qemu-guest-agent-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-vga-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-dbus-7.1.0-150500.49.39.2 * qemu-hw-usb-host-7.1.0-150500.49.39.2 * qemu-block-nfs-7.1.0-150500.49.39.2 * qemu-ui-spice-app-debuginfo-7.1.0-150500.49.39.2 * qemu-block-curl-debuginfo-7.1.0-150500.49.39.2 * qemu-block-iscsi-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-gtk-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-curses-7.1.0-150500.49.39.2 * qemu-audio-jack-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-vga-7.1.0-150500.49.39.2 * qemu-s390x-7.1.0-150500.49.39.2 * qemu-x86-7.1.0-150500.49.39.2 * qemu-audio-oss-debuginfo-7.1.0-150500.49.39.2 * qemu-tools-debuginfo-7.1.0-150500.49.39.2 * qemu-block-dmg-7.1.0-150500.49.39.2 * qemu-block-ssh-7.1.0-150500.49.39.2 * qemu-ui-opengl-7.1.0-150500.49.39.2 * qemu-audio-jack-7.1.0-150500.49.39.2 * qemu-audio-dbus-debuginfo-7.1.0-150500.49.39.2 * qemu-vhost-user-gpu-debuginfo-7.1.0-150500.49.39.2 * qemu-debugsource-7.1.0-150500.49.39.2 * qemu-headless-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-pci-7.1.0-150500.49.39.2 * qemu-arm-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-oss-7.1.0-150500.49.39.2 * qemu-chardev-baum-debuginfo-7.1.0-150500.49.39.2 * qemu-chardev-spice-debuginfo-7.1.0-150500.49.39.2 * qemu-arm-7.1.0-150500.49.39.2 * qemu-ui-dbus-7.1.0-150500.49.39.2 * qemu-ui-spice-core-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-debuginfo-7.1.0-150500.49.39.2 * qemu-extra-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-smartcard-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-alsa-debuginfo-7.1.0-150500.49.39.2 * qemu-linux-user-debugsource-7.1.0-150500.49.39.2 * qemu-accel-qtest-debuginfo-7.1.0-150500.49.39.2 *qemu-block-ssh-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-redirect-debuginfo-7.1.0-150500.49.39.2 * qemu-s390x-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-gtk-7.1.0-150500.49.39.2 * qemu-ui-dbus-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-spice-core-debuginfo-7.1.0-150500.49.39.2 * qemu-block-iscsi-7.1.0-150500.49.39.2 * qemu-extra-7.1.0-150500.49.39.2 * qemu-linux-user-7.1.0-150500.49.39.2 * qemu-ivshmem-tools-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-spice-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-pa-debuginfo-7.1.0-150500.49.39.2 * qemu-chardev-baum-7.1.0-150500.49.39.2 * qemu-block-gluster-7.1.0-150500.49.39.2 * qemu-accel-tcg-x86-7.1.0-150500.49.39.2 * qemu-linux-user-debuginfo-7.1.0-150500.49.39.2 * qemu-accel-tcg-x86-debuginfo-7.1.0-150500.49.39.2 * qemu-block-nfs-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-7.1.0-150500.49.39.2 * qemu-ivshmem-tools-7.1.0-150500.49.39.2 * qemu-debuginfo-7.1.0-150500.49.39.2 * qemu-block-gluster-debuginfo-7.1.0-150500.49.39.2 * qemu-tools-7.1.0-150500.49.39.2 * qemu-7.1.0-150500.49.39.2 * qemu-ui-spice-app-7.1.0-150500.49.39.2 * qemu-x86-debuginfo-7.1.0-150500.49.39.2 * qemu-block-curl-7.1.0-150500.49.39.2 * qemu-ppc-7.1.0-150500.49.39.2 * qemu-hw-usb-host-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-pci-debuginfo-7.1.0-150500.49.39.2 * qemu-guest-agent-7.1.0-150500.49.39.2 * qemu-audio-alsa-7.1.0-150500.49.39.2 * qemu-ui-opengl-debuginfo-7.1.0-150500.49.39.2 * qemu-ksm-7.1.0-150500.49.39.2 * qemu-audio-pa-7.1.0-150500.49.39.2 * qemu-vhost-user-gpu-7.1.0-150500.49.39.2 * qemu-audio-spice-7.1.0-150500.49.39.2 * qemu-chardev-spice-7.1.0-150500.49.39.2 * openSUSE Leap 15.5 (s390x x86_64 i586) * qemu-kvm-7.1.0-150500.49.39.2 * openSUSE Leap 15.5 (noarch) * qemu-microvm-7.1.0-150500.49.39.2 * qemu-seabios-1.16.0_0_gd239552-150500.49.39.2 * qemu-SLOF-7.1.0-150500.49.39.2 *qemu-lang-7.1.0-150500.49.39.2 * qemu-skiboot-7.1.0-150500.49.39.2 * qemu-ipxe-1.0.0+-150500.49.39.2 * qemu-vgabios-1.16.0_0_gd239552-150500.49.39.2 * qemu-sgabios-8-150500.49.39.2 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * qemu-block-rbd-7.1.0-150500.49.39.2 * qemu-block-rbd-debuginfo-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * qemu-hw-display-virtio-gpu-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-vga-7.1.0-150500.49.39.2 * qemu-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-usb-redirect-7.1.0-150500.49.39.2 * qemu-hw-display-qxl-debuginfo-7.1.0-150500.49.39.2 * qemu-tools-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-spice-core-debuginfo-7.1.0-150500.49.39.2 * qemu-tools-7.1.0-150500.49.39.2 * qemu-7.1.0-150500.49.39.2 * qemu-ui-opengl-7.1.0-150500.49.39.2 * qemu-audio-spice-debuginfo-7.1.0-150500.49.39.2 * qemu-debugsource-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-pci-7.1.0-150500.49.39.2 * qemu-block-curl-7.1.0-150500.49.39.2 * qemu-chardev-spice-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-qxl-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-pci-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-spice-core-7.1.0-150500.49.39.2 * qemu-guest-agent-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-gpu-debuginfo-7.1.0-150500.49.39.2 * qemu-guest-agent-debuginfo-7.1.0-150500.49.39.2 * qemu-ui-opengl-debuginfo-7.1.0-150500.49.39.2 * qemu-hw-display-virtio-vga-debuginfo-7.1.0-150500.49.39.2 * qemu-audio-spice-7.1.0-150500.49.39.2 * qemu-block-curl-debuginfo-7.1.0-150500.49.39.2 * qemu-chardev-spice-7.1.0-150500.49.39.2 * qemu-hw-usb-redirect-debuginfo-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (aarch64) * qemu-arm-7.1.0-150500.49.39.2 * qemu-arm-debuginfo-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (noarch) * qemu-seabios-1.16.0_0_gd239552-150500.49.39.2 * qemu-SLOF-7.1.0-150500.49.39.2 *qemu-ipxe-1.0.0+-150500.49.39.2 * qemu-vgabios-1.16.0_0_gd239552-150500.49.39.2 * qemu-sgabios-8-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (ppc64le) * qemu-ppc-debuginfo-7.1.0-150500.49.39.2 * qemu-ppc-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (s390x) * qemu-s390x-7.1.0-150500.49.39.2 * qemu-s390x-debuginfo-7.1.0-150500.49.39.2 * SUSE Linux Enterprise Micro 5.5 (x86_64) * qemu-accel-tcg-x86-7.1.0-150500.49.39.2 * qemu-x86-7.1.0-150500.49.39.2 * qemu-accel-tcg-x86-debuginfo-7.1.0-150500.49.39.2 * qemu-x86-debuginfo-7.1.0-150500.49.39.2 ## References: * https://www.suse.com/security/cve/CVE-2025-14876.html * https://bugzilla.suse.com/show_bug.cgi?id=1255400 . This update addresses a moderate severity issue in qemu related to unbounded allocation in virtio-crypto. Ensure your systems are protected.. openSUSE qemu vulnerability patch security update. . LinuxSecurity.com Team

Calendar 2 Mar 13, 2026 OpenSUSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderatedenial of service

SUSE 15 SP7 QEMU Advanced Unbounded Resource Risk SUSE-SU-2026-0923-1

An update that solves one vulnerability and contains one feature can now be installed.. # Security update for qemu Announcement ID: SUSE-SU-2026:0832-1 Release Date: 2026-03-05T16:38:47Z Rating: moderate References: * bsc#1255400 * jsc#PED-14271 Cross-References: * CVE-2025-14876 CVSS scores: * CVE-2025-14876 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-14876 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-14876 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP7 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability and contains one feature can now be installed. ## Description: This update for qemu fixes the following issues: Security issue: * CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto (bsc#1255400). Non security issues: * * hw/virtio: Also include md stubs in case CONFIG_VIRTIO_PCI is not set (jsc#PED-14271). * * s390x/pv: prepare for memory devices (jsc#PED-14271). * * s390x/s390-skeys: prepare for memory devices (jsc#PED-14271). * * s390x/s390-stattrib-kvm: prepare for memory devices and sparse memory layouts (jsc#PED-14271). * * s390x/s390-virtio-ccw: prepare for memory devices (jsc#PED-14271). * * s390x/virtio-ccw: add support for virtio based memory devices (jsc#PED-14271). * * s390x: remember the maximum page size (jsc#PED-14271). * * s390x: virtio-mem support (jsc#PED-14271). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-832=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-832=1 * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2026-832=1 ## Package List: * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * qemu-tools-debuginfo-9.2.4-150700.3.17.1 * qemu-pr-helper-9.2.4-150700.3.17.1 * qemu-debuginfo-9.2.4-150700.3.17.1 * qemu-pr-helper-debuginfo-9.2.4-150700.3.17.1 * qemu-debugsource-9.2.4-150700.3.17.1 * qemu-img-9.2.4-150700.3.17.1 * qemu-img-debuginfo-9.2.4-150700.3.17.1 * qemu-tools-9.2.4-150700.3.17.1 * Basesystem Module 15-SP7 (x86_64) * qemu-vmsr-helper-debuginfo-9.2.4-150700.3.17.1 * qemu-vmsr-helper-9.2.4-150700.3.17.1 * SUSE Package Hub 15 15-SP7 (noarch) * qemu-SLOF-9.2.4-150700.3.17.1 * qemu-microvm-9.2.4-150700.3.17.1 * qemu-skiboot-9.2.4-150700.3.17.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * qemu-hw-s390x-virtio-gpu-ccw-9.2.4-150700.3.17.1 * qemu-ivshmem-tools-9.2.4-150700.3.17.1 * qemu-ivshmem-tools-debuginfo-9.2.4-150700.3.17.1 * qemu-hw-s390x-virtio-gpu-ccw-debuginfo-9.2.4-150700.3.17.1 * qemu-ppc-9.2.4-150700.3.17.1 * qemu-arm-debuginfo-9.2.4-150700.3.17.1 * qemu-ppc-debuginfo-9.2.4-150700.3.17.1 * qemu-hw-usb-smartcard-debuginfo-9.2.4-150700.3.17.1 * qemu-audio-oss-debuginfo-9.2.4-150700.3.17.1 * qemu-audio-jack-debuginfo-9.2.4-150700.3.17.1 * qemu-linux-user-9.2.4-150700.3.17.1 * qemu-vhost-user-gpu-9.2.4-150700.3.17.1 * qemu-linux-user-debugsource-9.2.4-150700.3.17.1 * qemu-accel-qtest-debuginfo-9.2.4-150700.3.17.1 * qemu-linux-user-debuginfo-9.2.4-150700.3.17.1 * qemu-block-dmg-debuginfo-9.2.4-150700.3.17.1 * qemu-extra-9.2.4-150700.3.17.1 * qemu-audio-jack-9.2.4-150700.3.17.1 * qemu-s390x-debuginfo-9.2.4-150700.3.17.1 *qemu-hw-usb-smartcard-9.2.4-150700.3.17.1 * qemu-debugsource-9.2.4-150700.3.17.1 * qemu-block-dmg-9.2.4-150700.3.17.1 * qemu-arm-9.2.4-150700.3.17.1 * qemu-audio-oss-9.2.4-150700.3.17.1 * qemu-vhost-user-gpu-debuginfo-9.2.4-150700.3.17.1 * qemu-s390x-9.2.4-150700.3.17.1 * qemu-accel-qtest-9.2.4-150700.3.17.1 * qemu-debuginfo-9.2.4-150700.3.17.1 * qemu-extra-debuginfo-9.2.4-150700.3.17.1 * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * qemu-block-rbd-9.2.4-150700.3.17.1 * qemu-audio-dbus-9.2.4-150700.3.17.1 * qemu-block-nfs-9.2.4-150700.3.17.1 * qemu-hw-display-virtio-vga-9.2.4-150700.3.17.1 * qemu-ui-dbus-debuginfo-9.2.4-150700.3.17.1 * qemu-chardev-baum-9.2.4-150700.3.17.1 * qemu-hw-display-qxl-9.2.4-150700.3.17.1 * qemu-audio-dbus-debuginfo-9.2.4-150700.3.17.1 * qemu-9.2.4-150700.3.17.1 * qemu-ui-curses-9.2.4-150700.3.17.1 * qemu-ui-opengl-9.2.4-150700.3.17.1 * qemu-hw-usb-redirect-9.2.4-150700.3.17.1 * qemu-guest-agent-9.2.4-150700.3.17.1 * qemu-block-curl-9.2.4-150700.3.17.1 * qemu-audio-spice-debuginfo-9.2.4-150700.3.17.1 * qemu-hw-display-qxl-debuginfo-9.2.4-150700.3.17.1 * qemu-ui-dbus-9.2.4-150700.3.17.1 * qemu-block-ssh-debuginfo-9.2.4-150700.3.17.1 * qemu-chardev-baum-debuginfo-9.2.4-150700.3.17.1 * qemu-hw-usb-redirect-debuginfo-9.2.4-150700.3.17.1 * qemu-ui-curses-debuginfo-9.2.4-150700.3.17.1 * qemu-ui-spice-core-9.2.4-150700.3.17.1 * qemu-hw-usb-host-9.2.4-150700.3.17.1 * qemu-ui-spice-core-debuginfo-9.2.4-150700.3.17.1 * qemu-block-rbd-debuginfo-9.2.4-150700.3.17.1 * qemu-debugsource-9.2.4-150700.3.17.1 * qemu-block-ssh-9.2.4-150700.3.17.1 * qemu-block-nfs-debuginfo-9.2.4-150700.3.17.1 * qemu-block-iscsi-9.2.4-150700.3.17.1 * qemu-audio-pipewire-9.2.4-150700.3.17.1 * qemu-audio-spice-9.2.4-150700.3.17.1 * qemu-hw-display-virtio-vga-debuginfo-9.2.4-150700.3.17.1 * qemu-spice-9.2.4-150700.3.17.1 *qemu-block-curl-debuginfo-9.2.4-150700.3.17.1 * qemu-audio-pipewire-debuginfo-9.2.4-150700.3.17.1 * qemu-chardev-spice-9.2.4-150700.3.17.1 * qemu-guest-agent-debuginfo-9.2.4-150700.3.17.1 * qemu-ksm-9.2.4-150700.3.17.1 * qemu-block-iscsi-debuginfo-9.2.4-150700.3.17.1 * qemu-debuginfo-9.2.4-150700.3.17.1 * qemu-headless-9.2.4-150700.3.17.1 * qemu-hw-usb-host-debuginfo-9.2.4-150700.3.17.1 * qemu-ui-opengl-debuginfo-9.2.4-150700.3.17.1 * qemu-chardev-spice-debuginfo-9.2.4-150700.3.17.1 * Server Applications Module 15-SP7 (aarch64) * qemu-arm-9.2.4-150700.3.17.1 * qemu-arm-debuginfo-9.2.4-150700.3.17.1 * Server Applications Module 15-SP7 (aarch64 s390x x86_64) * qemu-hw-display-virtio-gpu-pci-debuginfo-9.2.4-150700.3.17.1 * qemu-hw-display-virtio-gpu-debuginfo-9.2.4-150700.3.17.1 * qemu-hw-display-virtio-gpu-pci-9.2.4-150700.3.17.1 * qemu-hw-display-virtio-gpu-9.2.4-150700.3.17.1 * Server Applications Module 15-SP7 (noarch) * qemu-skiboot-9.2.4-150700.3.17.1 * qemu-SLOF-9.2.4-150700.3.17.1 * qemu-ipxe-9.2.4-150700.3.17.1 * qemu-lang-9.2.4-150700.3.17.1 * qemu-vgabios-9.2.41.16.3_3_g3d33c746-150700.3.17.1 * qemu-seabios-9.2.41.16.3_3_g3d33c746-150700.3.17.1 * Server Applications Module 15-SP7 (aarch64 ppc64le x86_64) * qemu-ui-gtk-9.2.4-150700.3.17.1 * qemu-ui-spice-app-debuginfo-9.2.4-150700.3.17.1 * qemu-ui-spice-app-9.2.4-150700.3.17.1 * qemu-ui-gtk-debuginfo-9.2.4-150700.3.17.1 * Server Applications Module 15-SP7 (ppc64le) * qemu-ppc-9.2.4-150700.3.17.1 * qemu-ppc-debuginfo-9.2.4-150700.3.17.1 * Server Applications Module 15-SP7 (s390x) * qemu-hw-s390x-virtio-gpu-ccw-9.2.4-150700.3.17.1 * qemu-s390x-debuginfo-9.2.4-150700.3.17.1 * qemu-s390x-9.2.4-150700.3.17.1 * qemu-hw-s390x-virtio-gpu-ccw-debuginfo-9.2.4-150700.3.17.1 * Server Applications Module 15-SP7 (x86_64) * qemu-x86-debuginfo-9.2.4-150700.3.17.1 * qemu-accel-tcg-x86-9.2.4-150700.3.17.1 *qemu-audio-pa-9.2.4-150700.3.17.1 * qemu-audio-pa-debuginfo-9.2.4-150700.3.17.1 * qemu-accel-tcg-x86-debuginfo-9.2.4-150700.3.17.1 * qemu-audio-alsa-9.2.4-150700.3.17.1 * qemu-x86-9.2.4-150700.3.17.1 * qemu-audio-alsa-debuginfo-9.2.4-150700.3.17.1 ## References: * https://www.suse.com/security/cve/CVE-2025-14876.html * https://bugzilla.suse.com/show_bug.cgi?id=1255400 * https://jira.suse.com/browse/PED-14271 . Fixes CVE-2025-14876 in qemu with moderate severity; robust patch instructions included for SUSE users.. qemu update SUSE CVE-2025-14876 patch. . LinuxSecurity.com Team

Calendar 2 Mar 06, 2026 SuSE
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 43 opentofu Critical Unbounded Allocation Threat 2026-49b5d5c5e6

Update to 1.11.5. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-49b5d5c5e6 2026-02-26 01:08:36.076695+00:00 -------------------------------------------------------------------------------- Name : opentofu Product : Fedora 43 Version : 1.11.5 Release : 1.fc43 URL : https://github.com/opentofu/opentofu Summary : OpenTofu lets you declaratively manage your cloud infrastructure Description : OpenTofu lets you declaratively manage your cloud infrastructure. -------------------------------------------------------------------------------- Update Information: Update to 1.11.5 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 12 2026 Packit - 1.11.5-1 - Update to 1.11.5 upstream release - Resolves: rhbz#2439332 * Tue Feb 3 2026 Maxwell G - 1.11.4-2 - Rebuild for https://fedoraproject.org/wiki/Changes/golang1.26 * Wed Jan 21 2026 Packit - 1.11.4-1 - Update to 1.11.4 upstream release - Resolves: rhbz#2429160 * Fri Jan 16 2026 Fedora Release Engineering - 1.11.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2412594 - CVE-2025-58183 opentofu: Unbounded allocation when parsing GNU sparse map [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2412594 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-49b5d5c5e6' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Critical update for Fedora 43 opentofu addresses unbounded allocation issue improving cloud management.. Fedora 43, opentofu, cloud infrastructure, security patch, update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 26, 2026 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraDoS

Fedora 43: checkpointctl Important DoS Alert 2025:58183

Update checkpointctl to 1.4.1. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-ebfdef0115 2025-12-19 04:19:43.952390+00:00 -------------------------------------------------------------------------------- Name : checkpointctl Product : Fedora 43 Version : 1.4.1 Release : 1.fc43 URL : https://github.com/checkpoint-restore/checkpointctl Summary : A command-line tool for in-depth analysis of container checkpoints Description : The checkpointctl command can be used for in-depth analysis of container checkpoints created with Podman and Kubernetes. -------------------------------------------------------------------------------- Update Information: Update checkpointctl to 1.4.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 10 2025 Adrian Reber - 1:1.4.1-1 - Update checkpointctl to 1.4.1 * Fri Oct 10 2025 Alejandro Sez - 1:1.4.0-4 - rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2412668 - CVE-2025-58183 checkpointctl: Unbounded allocation when parsing GNU sparse map [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2412668 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-ebfdef0115' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Update checkpointctl to version 1.4.1 for Fedora 43 addressing important security issues to enhance performance.. checkpointctl update Fedora 43 importantsecurity. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 19, 2025 Important Fedora
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderatefedora

Fedora 43: Advisory 2025-264853458b for Moderate Unbounded Allocation Risk

Update to release v0.26.1 Update to release v0.26.0 Resolves: rhbz#2412681, rhbz#2412761 Upstream new features and fixes dependency override for moby/policy-helper needed for license (default. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-264853458b 2025-11-26 00:50:04.944100+00:00 -------------------------------------------------------------------------------- Name : docker-buildkit Product : Fedora 43 Version : 0.26.1 Release : 1.fc43 URL : https://github.com/moby/buildkit Summary : Concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit Description : Concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit. -------------------------------------------------------------------------------- Update Information: Update to release v0.26.1 Update to release v0.26.0 Resolves: rhbz#2412681, rhbz#2412761 Upstream new features and fixes dependency override for moby/policy-helper needed for license (default version does not a a license file) -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 17 2025 Bradley G Smith - 0.26.1-1 - Update to release v0.26.1 - Upstream fixes * Thu Nov 13 2025 Bradley G Smith - 0.26.0-1 - Update to release v0.26.0 - Resolves: rhbz#2412681, rhbz#2412761 - Upstream new features and fixes - dependency override for moby/policy-helper needed for license (default version does not a a license file) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2412681 - CVE-2025-58183 docker-buildkit: Unbounded allocation when parsing GNU sparse map [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2412681 [ 2 ] Bug #2412761 - CVE-2025-58183 docker-buildkit: Unbounded allocation when parsing GNU sparse map [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2412761 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-264853458b' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Update for docker-buildkit resolves serious issues in Fedora 43, enhancing security against unbounded allocation risks.. docker-buildkit security update Fedora 43 unbounded allocation. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 26, 2025 Important Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here