Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 12 articles for you...
202
security advisorysecurity issueimportantopenSUSE 15.4 Kernel Important Fix ALSA Access Issues SUSE-SU-2026-1592-1
An update that solves two vulnerabilities can now be installed.. # Security update for the Linux Kernel (Live Patch 48 for SUSE Linux Enterprise 15 SP4) Announcement ID: SUSE-SU-2026:1592-1 Release Date: 2026-04-24T09:04:09Z Rating: important References: * bsc#1258396 * bsc#1259859 Cross-References: * CVE-2026-23191 * CVE-2026-23268 CVSS scores: * CVE-2026-23191 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23191 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23191 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23191 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves two vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.194 fixes various security issues The following security issues were fixed: * CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger (bsc#1258396). * CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy management (bsc#1259859). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1592=1 *SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-1592=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_48-debugsource-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-debuginfo-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-3-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_48-debugsource-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-debuginfo-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-3-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-23191.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://bugzilla.suse.com/show_bug.cgi?id=1258396 * https://bugzilla.suse.com/show_bug.cgi?id=1259859 . An important update for openSUSE addresses critical kernel issues related to unprivileged access and ALSA handling.. openSUSE Kernel Update, Important Security Fix, Unprivileged Access, ALSA Vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Apr 24, 2026
•Important
OpenSUSE
89
security advisorydenial of servicefedoraFedora 43 Xen Update DoS Use After Free XSA-480 XSA-481
Use after free of paging structures in EPT [XSA-480, CVE-2026-23554] Xenstored DoS by unprivileged domain [XSA-481, CVE-2026-23555]. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-8ae1a1c3d7 2026-03-23 01:07:08.010775+00:00 -------------------------------------------------------------------------------- Name : xen Product : Fedora 43 Version : 4.20.2 Release : 4.fc43 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: Use after free of paging structures in EPT [XSA-480, CVE-2026-23554] Xenstored DoS by unprivileged domain [XSA-481, CVE-2026-23555] -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 18 2026 Michael Young - 4.20.2-4 - Use after free of paging structures in EPT [XSA-480, CVE-2026-23554] - Xenstored DoS by unprivileged domain [XSA-481, CVE-2026-23555] -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-8ae1a1c3d7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 23, 2026
•Critical
Fedora
100
security advisorySuSEimportantSUSE: Kernel Important Security Update CVE-2025-38453 2025:4001-1
* bsc#1247737 * bsc#1248176 * bsc#1248631 * bsc#1249207 * bsc#1249208 . # Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP7) Announcement ID: SUSE-SU-2025:4001-1 Release Date: 2025-11-09T01:33:43Z Rating: important References: * bsc#1247737 * bsc#1248176 * bsc#1248631 * bsc#1249207 * bsc#1249208 Cross-References: * CVE-2025-38453 * CVE-2025-38511 * CVE-2025-38617 * CVE-2025-38618 * CVE-2025-38664 CVSS scores: * CVE-2025-38453 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38453 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38511 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38511 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38617 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38617 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38618 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38618 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38664 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38664 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves five vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 6.4.0-150700_53_3 fixes several issues. The following security issues were fixed: * CVE-2025-38664: ice: Fix a null pointer dereference in ice_copy_and_init_pkg() (bsc#1248631). * CVE-2025-38511: drm/xe/pf: Clear all LMTT pages on alloc (bsc#1248176). * CVE-2025-38617: net/packet: fix a race in packet_set_ring() and packet_notifier() (bsc#1249208). * CVE-2025-38453: kABI: io_uring: msg_ring ensure io_kiocb freeing is deferred (bsc#1247737). * CVE-2025-38618: vsock: Do not allow binding to VMADDR_PORT_ANY (bsc#1249207). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2025-4001=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP7 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150700_53_3-default-debuginfo-7-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_1-debugsource-7-150700.2.1 * kernel-livepatch-6_4_0-150700_53_3-default-7-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-38453.html * https://www.suse.com/security/cve/CVE-2025-38511.html * https://www.suse.com/security/cve/CVE-2025-38617.html * https://www.suse.com/security/cve/CVE-2025-38618.html * https://www.suse.com/security/cve/CVE-2025-38664.html * https://bugzilla.suse.com/show_bug.cgi?id=1247737 * https://bugzilla.suse.com/show_bug.cgi?id=1248176 * https://bugzilla.suse.com/show_bug.cgi?id=1248631 * https://bugzilla.suse.com/show_bug.cgi?id=1249207 * https://bugzilla.suse.com/show_bug.cgi?id=1249208 . Update for SUSE Linux Kernel resolves five critical issues affecting system integrity and functionality. Install urgently.. Linux Kernel Security Update, SUSE Kernel Threat Mitigation, Critical OS Update. . Severity: Important. LinuxSecurity.com Team
Nov 10, 2025
•Important
SuSE
219
security advisorysecurity issuesystem updateRocky Linux 8 RLSA-2024:8830 low: bpftrace security issue
Low: bpftrace security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2024:8830", "synopsis": "Low: bpftrace security update", "severity": "SEVERITY_LOW", "topic": "An update is available for bpftrace.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "BPFtrace is a high-level tracing language for Linux enhanced Berkeley Packet Filter (eBPF) available in recent Linux kernels (4.x). BPFtrace uses LLVM as a backend to compile scripts to BPF-bytecode and makes use of BCC for interacting with the Linux BPF system, as well as existing Linux tracing capabilities: kernel dynamic tracing (kprobes), user-level dynamic tracing (uprobes), and tracepoints. The BPFtrace language is inspired by awk and C, and predecessor tracers such as DTrace and SystemTap\n\nSecurity Fix(es):\n\n* bpftrace: unprivileged users can force loading of compromised linux headers (CVE-2024-2313)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2269014", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2269014", "description": ""}], "cves": [{"name": "CVE-2024-2313", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2024-2313", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2024-11-08T15:56:47.559546Z", "rpms": {"Rocky Linux 8": {"nvras": ["bpftrace-0:0.16.0-6.el8_10.x86_64.rpm", "bpftrace-debuginfo-0:0.16.0-6.el8_10.aarch64.rpm", "bpftrace-0:0.16.0-6.el8_10.aarch64.rpm", "bpftrace-0:0.16.0-6.el8_10.src.rpm", "bpftrace-debuginfo-0:0.16.0-6.el8_10.x86_64.rpm", "bpftrace-debugsource-0:0.16.0-6.el8_10.aarch64.rpm","bpftrace-debugsource-0:0.16.0-6.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A recent security bulletin concerning Rocky Linux highlights a minor risk associated with bpftrace that could affect non-privileged users.. Rocky Linux, bpftrace, security advisory, system update, low severity. . Severity: Low. LinuxSecurity.com Team
Nov 08, 2024
•Low
Rocky Linux
100
security advisorymoderateSUSE LinuxSUSE: 2022:2349-1 Moderate: Ignition Access Problem Fix
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for ignition ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:2349-1 Rating: moderate References: #1199524 Cross-References: CVE-2022-1706 CVSS scores: CVE-2022-1706 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2022-1706 (SUSE): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: SUSE Linux Enterprise Micro 5.2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for ignition fixes the following issues: - CVE-2022-1706: Fixed accessible configs from unprivileged containers in VMs running on VMware products (bsc#1199524). - Update to version 2.14.0 Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-2349=1 Package List: - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): ignition-2.14.0-150300.6.7.1 ignition-debuginfo-2.14.0-150300.6.7.1 ignition-dracut-grub2-2.14.0-150300.6.7.1 References: https://www.suse.com/security/cve/CVE-2022-1706.html https://bugzilla.suse.com/1199524 . SUSE has released a security patch for Ignition addressing a moderate flaw impacting VMs on VMware. It's important to update your system promptly.. SUSE Security Update, Ignition patch, unprivileged access mitigation, Linux vulnerabilities. . LinuxSecurity.com Team
Jul 11, 2022
SuSE
100
security advisoryimportantSUSE LinuxSUSE Linux HPC: 2022:1815-1 Critical: Slurm Process Exploits
An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for slurm_20_11 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:1815-1 Rating: important References: #1199278 #1199279 Cross-References: CVE-2022-29500 CVE-2022-29501 CVSS scores: CVE-2022-29500 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-29500 (SUSE): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2022-29501 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-29501 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for slurm_20_11 fixes the following issues: - CVE-2022-29500: Fixed architectural flaw that could have been exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed a problem that an unprivileged user could have sent data to arbitrary unix socket as root (bsc#1199279). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-1815=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-1815=1 Package List: - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64x86_64): libnss_slurm2_20_11-20.11.9-150100.3.14.1 libpmi0_20_11-20.11.9-150100.3.14.1 libslurm36-20.11.9-150100.3.14.1 perl-slurm_20_11-20.11.9-150100.3.14.1 slurm_20_11-20.11.9-150100.3.14.1 slurm_20_11-auth-none-20.11.9-150100.3.14.1 slurm_20_11-config-20.11.9-150100.3.14.1 slurm_20_11-config-man-20.11.9-150100.3.14.1 slurm_20_11-devel-20.11.9-150100.3.14.1 slurm_20_11-doc-20.11.9-150100.3.14.1 slurm_20_11-lua-20.11.9-150100.3.14.1 slurm_20_11-munge-20.11.9-150100.3.14.1 slurm_20_11-node-20.11.9-150100.3.14.1 slurm_20_11-pam_slurm-20.11.9-150100.3.14.1 slurm_20_11-plugins-20.11.9-150100.3.14.1 slurm_20_11-slurmdbd-20.11.9-150100.3.14.1 slurm_20_11-sql-20.11.9-150100.3.14.1 slurm_20_11-sview-20.11.9-150100.3.14.1 slurm_20_11-torque-20.11.9-150100.3.14.1 slurm_20_11-webdoc-20.11.9-150100.3.14.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64): libnss_slurm2_20_11-20.11.9-150100.3.14.1 libpmi0_20_11-20.11.9-150100.3.14.1 libslurm36-20.11.9-150100.3.14.1 perl-slurm_20_11-20.11.9-150100.3.14.1 slurm_20_11-20.11.9-150100.3.14.1 slurm_20_11-auth-none-20.11.9-150100.3.14.1 slurm_20_11-config-20.11.9-150100.3.14.1 slurm_20_11-config-man-20.11.9-150100.3.14.1 slurm_20_11-devel-20.11.9-150100.3.14.1 slurm_20_11-doc-20.11.9-150100.3.14.1 slurm_20_11-lua-20.11.9-150100.3.14.1 slurm_20_11-munge-20.11.9-150100.3.14.1 slurm_20_11-node-20.11.9-150100.3.14.1 slurm_20_11-pam_slurm-20.11.9-150100.3.14.1 slurm_20_11-plugins-20.11.9-150100.3.14.1 slurm_20_11-slurmdbd-20.11.9-150100.3.14.1 slurm_20_11-sql-20.11.9-150100.3.14.1 slurm_20_11-sview-20.11.9-150100.3.14.1 slurm_20_11-torque-20.11.9-150100.3.14.1 slurm_20_11-webdoc-20.11.9-150100.3.14.1 References: https://www.suse.com/security/cve/CVE-2022-29500.html https://www.suse.com/security/cve/CVE-2022-29501.html https://bugzilla.suse.com/1199278 https://bugzilla.suse.com/1199279 . New enhancement released for slurm_20_11 fixing significant vulnerabilities that enable unauthorized users to initiate processes with root privileges.. SUSE Linux, Slurm Update, Security Patch, Threat Mitigation, Unix Socket Fix. . Severity: Important. LinuxSecurity.com Team
May 23, 2022
•Important
SuSE
197
security advisorycritical issuedebianDebian: DLA-2980-1 Urgent: Sudo Security Vulnerability Exploit
A flaw was found in usbguard, an USB device authorization policy framework. When using the usbguard-dbus daemon an unprivileged user could make USBGuard allow all USB devices to be connected in the future. . -------------------------------------------------------------------------Debian LTS Advisory DLA-2979-1
Apr 11, 2022
•Important
Debian LTS
203
security advisorymageiaunprivileged accessMageia 8: MGASA-2022-0071 Critical: Unprivileged Pod File Binding Issue
Unprivileged pod may bind mount any privileged regular file on disk (CVE-2021-43816) References: - https://bugs.mageia.org/show_bug.cgi?id=30050 . MGASA-2022-0071 - Updated docker-containerd packages fix security vulnerability Publication date: 18 Feb 2022 URL: https://advisories.mageia.org/MGASA-2022-0071.html Type: security Affected Mageia releases: 8 CVE: CVE-2021-43816 Unprivileged pod may bind mount any privileged regular file on disk (CVE-2021-43816) References: - https://bugs.mageia.org/show_bug.cgi?id=30050 - https://lists.fedoraproject.org/archives/list/
Feb 17, 2022
•Critical
Mageia
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!