Alerts This Week
Warning Icon 1 631
Alerts This Week
Warning Icon 1 631

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisoryimportantpath traversal

openSUSE Leap 15.0: 2019:1911-1 Important: Icedtea-Web Threats Fixed

An update that fixes three vulnerabilities is now available.. openSUSE Security Update: Security update for icedtea-web ______________________________________________________________________________ Announcement ID: openSUSE-SU-2019:1911-1 Rating: important References: #1142825 #1142832 #1142835 Cross-References: CVE-2019-10181 CVE-2019-10182 CVE-2019-10185 Affected Products: openSUSE Leap 15.0 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for icedtea-web to version 1.7.2 fixes the following issues: Security issues fixed: - CVE-2019-10181: Fixed an unsigned code injection in a signed JAR file (bsc#1142835) - CVE-2019-10182: Fixed a path traversal while processing elements of JNLP files results in arbitrary file overwrite (bsc#1142825). - CVE-2019-10185: Fixed a directory traversal in the nested jar auto-extraction leading to arbitrary file overwrite (bsc#1142832). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-1911=1 Package List: - openSUSE Leap 15.0 (x86_64): icedtea-web-1.7.2-lp150.2.3.1 - openSUSE Leap 15.0 (noarch): icedtea-web-javadoc-1.7.2-lp150.2.3.1 References: https://www.suse.com/security/cve/CVE-2019-10181.html https://www.suse.com/security/cve/CVE-2019-10182.html https://www.suse.com/security/cve/CVE-2019-10185.html https://bugzilla.suse.com/1142825 https://bugzilla.suse.com/1142832 https://bugzilla.suse.com/1142835 -- . This patch resolves vulnerabilities in icedtea-web, correcting critical security weaknessessuch as code injection and file replacement.. Icedtea-web Security Fixes, openSUSE Updates, Security Advisories, OpenSUSE Leap Patching. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 15, 2019 Important OpenSUSE
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hatfile overwrite

Red Hat Enterprise Linux 8: Important Security Update for IcedTea-Web

An update for icedtea-web is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: icedtea-web security update Advisory ID: RHSA-2019:2004-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:2004 Issue date: 2019-07-31 CVE Names: CVE-2019-10181 CVE-2019-10182 CVE-2019-10185 ==================================================================== 1. Summary: An update for icedtea-web is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - noarch 3. Description: The IcedTea-Web project provides a Java web browser plug-in and an implementation of Java Web Start, which is based on the Netx project. It also contains a configuration tool for managing deployment settings for the plug-in and Web Start implementations. IcedTea-Web now also contains PolicyEditor - a simple tool to configure Java policies. Security Fix(es): * icedtea-web: path traversal while processing elements of JNLP files results in arbitrary file overwrite (CVE-2019-10182) * icedtea-web: directory traversal in the nested jar auto-extraction leading to arbitrary file overwrite (CVE-2019-10185) * icedtea-web: unsigned code injection in a signed JAR file (CVE-2019-10181) For more details about the security issue(s), including theimpact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Web browsers using the IcedTea-Web browser plug-in must be restarted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1724958 - CVE-2019-10182 icedtea-web: path traversal while processing elements of JNLP files results in arbitrary file overwrite 1724989 - CVE-2019-10185 icedtea-web: directory traversal in the nested jar auto-extraction leading to arbitrary file overwrite 1725928 - CVE-2019-10181 icedtea-web: unsigned code injection in a signed JAR file 6. Package List: Red Hat Enterprise Linux AppStream (v. 8): Source: icedtea-web-1.7.1-17.el8_0.src.rpm noarch: icedtea-web-1.7.1-17.el8_0.noarch.rpm icedtea-web-javadoc-1.7.1-17.el8_0.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-10181 https://access.redhat.com/security/cve/CVE-2019-10182 https://access.redhat.com/security/cve/CVE-2019-10185 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXUHVgtzjgjWX9erEAQg91w//T71/Ps9i81Nto+vurrb8mEb5NmZErOWm x9wc3vYtVU9IyCw2uFki66wz9Ce3YKGMUKfqId1o0HqWBKrIRTLRsm0kLR9YZgj9 q9gbw32DsXQ1nz+b2k2nvpIxmVcYa19oAHitAm1+e5lzN1+uPN1cUgDIZ+7l0yOj fgkWUV843+ChDmg2qd7FmzVgvIADj+y59bJx+yfPx2GmSriEk4EaJqmPlg37fuhi KcJo66SuSoDb96N6OdmaN0+d2cKAkj/vOLzbumhrtIOEBFFzE8Lr0jUyNbBbmt/G 1BJmZprgpxs0FtUoHhlIWEdkAQCExi9g/xg4GCBS0kYLlEnaL+l8Cyn58JGDz3pv yQ79yAx0bPvIhIEOgUypn3t8bmSRU1Qz5YwPo7GsbtJwpaL6C+e95ogGSmhm3h+X 7bk3a+7KY5PWyysAGNBekKWt1MUSRgve5Z5OQoDo8SYhpNoFjeKTHV0n/GxvLzR9 lXMbCYltSvIQpi82sDo6r8g71T2ROvEE17yUM1xt6zrQ9lKSNqmLwv1TfPIkCIac jhrKaciZaMCXG+ipxDh+udMfTrHCYcbyn974Mal+QTHkCPehPAgYJZTALUDZc59k aJ6Wl4L2+Du6goAvia6k/IAF3ZKZX3XmpL7OB+ma/mFRwH4Gse7D8qB/jjfFsxm0 UhgnSMIwy+E=TpsA -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Crucial notification regarding icedtea-web on Red Hat Enterprise Linux 8, focusing on vulnerabilities and essential recommendations.. IcedTea-Web Security, Red Hat Update, Linux Security Advisory, Important Updates, File Overwrite Risks. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jul 31, 2019 Important Red Hat
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here