Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -1 articles for you...
217
security advisorythreatimportantRed Hat Enterprise Linux 9 OpenSSH Key Enhancements ELSA-2026-14382
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-13381 http://linux.oracle.com/errata/ELSA-2026-13381.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: openssh-8.7p1-49.0.1.el9_7.x86_64.rpm openssh-askpass-8.7p1-49.0.1.el9_7.x86_64.rpm openssh-clients-8.7p1-49.0.1.el9_7.x86_64.rpm openssh-keycat-8.7p1-49.0.1.el9_7.x86_64.rpm openssh-server-8.7p1-49.0.1.el9_7.x86_64.rpm pam_ssh_agent_auth-0.10.4-5.49.0.1.el9_7.x86_64.rpm aarch64: openssh-8.7p1-49.0.1.el9_7.aarch64.rpm openssh-askpass-8.7p1-49.0.1.el9_7.aarch64.rpm openssh-clients-8.7p1-49.0.1.el9_7.aarch64.rpm openssh-keycat-8.7p1-49.0.1.el9_7.aarch64.rpm openssh-server-8.7p1-49.0.1.el9_7.aarch64.rpm pam_ssh_agent_auth-0.10.4-5.49.0.1.el9_7.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/openssh-8.7p1-49.0.1.el9_7.src.rpm Related CVEs: CVE-2026-35385 CVE-2026-35386 CVE-2026-35387 CVE-2026-35388 CVE-2026-35414 Description of changes: [8.7p1-49.0.1] - Upstream references found with /usr/bin/ssh [Orabug: 37814929] - upstream: fix AuthorizedPrincipalsCommand when AuthorizedKeysCommand [Orabug: 37647064] - Update upstream references [Orabug: 36564626] [8.7p1-49] - CVE-2026-35385: Fix privilege escalation via scp legacy protocol when not in preserving file mode Resolves: RHEL-164752 - CVE-2026-35388: Add connection multiplexing confirmation for proxy-mode multiplexing sessions Resolves: RHEL-166249 - CVE-2026-35387: Fix incomplete application of PubkeyAcceptedAlgorithms and HostbasedAcceptedAlgorithms with regard to ECDSA keys Resolves: RHEL-166233 - CVE-2026-35414: Fix mishandling of authorized_keys principals option Resolves: RHEL-166201 - CVE-2026-35386: Add validation rules to usernames and hostnames set for ProxyJump/-J on the commandline Resolves: RHEL-166217 _______________________________________________ El-errata mailinglist
May 06, 2026
•Important
Oracle
89
security advisoryfedoraDoSFedora 42 rust-pty-process Update CVE-2026-33056 Advisory 2026-8f1d7b6821
Rebuild rust-sequoia-chameleon-gnupg with rust-tar 0.4.45 for CVE-2026-33056. Update rust-pty-process to 0.5.3, and adjust the dev-dependency in rust-sequoia- chameleon-gnupg to allow it.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-8f1d7b6821 2026-03-29 01:07:01.422551+00:00 -------------------------------------------------------------------------------- Name : rust-pty-process Product : Fedora 42 Version : 0.5.3 Release : 1.fc42 URL : https://crates.io/crates/pty-process Summary : Spawn commands attached to a pty Description : Spawn commands attached to a pty. -------------------------------------------------------------------------------- Update Information: Rebuild rust-sequoia-chameleon-gnupg with rust-tar 0.4.45 for CVE-2026-33056. Update rust-pty-process to 0.5.3, and adjust the dev-dependency in rust-sequoia- chameleon-gnupg to allow it. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 17 2026 Benjamin A. Beasley - 0.5.3-1 - Update to version 0.5.3; Fixes RHBZ#2344560 * Sat Jan 17 2026 Fedora Release Engineering - 0.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering - 0.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2344560 - rust-pty-process-0.5.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2344560 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-8f1d7b6821' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages aresigned with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 29, 2026
•Important
Fedora
219
security advisorymoderateMySQLRocky Linux 9 MySQL Security Patch RLSA-2026-5640 Released
Moderate: mysql:8.4 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:5640", "synopsis": "Moderate: mysql:8.4 security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for mecab-ipadic, rapidjson, module.rapidjson, module.mecab-ipadic, module.mecab, mecab.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.\n\nSecurity Fix(es):\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21941)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21948)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jan 2026) (CVE-2026-21936)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21968)\n\n* mysql: DDL unspecified vulnerability (CPU Jan 2026) (CVE-2026-21937)\n\n* mysql: Thread Pooling unspecified vulnerability (CPU Jan 2026) (CVE-2026-21964)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2431384", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431384", "description": ""}, {"ticket": "2431385", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431385", "description": ""}, {"ticket": "2431402", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431402", "description": ""}, {"ticket": "2431409", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431409", "description": ""}, {"ticket": "2431413", "sourceBy": "Red Hat", "sourceLink":"https://bugzilla.redhat.com/show_bug.cgi?id=2431413", "description": ""}, {"ticket": "2431431", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431431", "description": ""}], "cves": [{"name": "CVE-2026-21936", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21936", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21937", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21937", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21941", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21941", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21948", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21948", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21964", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21964", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21968", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21968", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "6.5", "cwe": null}], "references": [], "publishedAt": "2026-03-24T18:03:46.961393Z", "rpms": {"Rocky Linux 9": {"nvras": ["mecab-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.aarch64.rpm", "mecab-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.ppc64le.rpm", "mecab-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.s390x.rpm", "mecab-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.src.rpm", "mecab-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.x86_64.rpm", "mecab-debuginfo-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.aarch64.rpm","mecab-debuginfo-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.ppc64le.rpm", "mecab-debuginfo-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.s390x.rpm", "mecab-debuginfo-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.x86_64.rpm", "mecab-debugsource-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.aarch64.rpm", "mecab-debugsource-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.ppc64le.rpm", "mecab-debugsource-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.s390x.rpm", "mecab-debugsource-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.x86_64.rpm", "mecab-devel-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.aarch64.rpm", "mecab-devel-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.ppc64le.rpm", "mecab-devel-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.s390x.rpm", "mecab-devel-0:0.996-3.module+el9.7.0+40027+0df0d4e0.4.x86_64.rpm", "mecab-ipadic-0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0.aarch64.rpm", "mecab-ipadic-0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0.ppc64le.rpm", "mecab-ipadic-0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0.s390x.rpm", "mecab-ipadic-0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0.src.rpm", "mecab-ipadic-0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0.x86_64.rpm", "mecab-ipadic-EUCJP-0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0.aarch64.rpm", "mecab-ipadic-EUCJP-0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0.ppc64le.rpm", "mecab-ipadic-EUCJP-0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0.s390x.rpm", "mecab-ipadic-EUCJP-0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0.x86_64.rpm", "rapidjson-0:1.1.0-19.module+el9.7.0+40027+0df0d4e0.src.rpm", "rapidjson-devel-0:1.1.0-19.module+el9.7.0+40027+0df0d4e0.aarch64.rpm", "rapidjson-devel-0:1.1.0-19.module+el9.7.0+40027+0df0d4e0.ppc64le.rpm", "rapidjson-devel-0:1.1.0-19.module+el9.7.0+40027+0df0d4e0.s390x.rpm", "rapidjson-devel-0:1.1.0-19.module+el9.7.0+40027+0df0d4e0.x86_64.rpm", "rapidjson-doc-0:1.1.0-19.module+el9.7.0+40027+0df0d4e0.noarch.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux 9 updates for MySQL with moderate severity threats, includingoptimizer and InnoDB vulnerabilities affecting users.. Rocky Linux MySQL Security Update Moderate Optimizer. . LinuxSecurity.com Team
Mar 24, 2026
Rocky Linux
219
security advisorymoderateMySQLRocky Linux 9 PostgreSQL Security Notice RLSA-2026-5644 CVE-2026-22007
Moderate: mysql:8.0 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:5580", "synopsis": "Moderate: mysql:8.0 security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for mecab-ipadic, module.mecab, mecab, module.mecab-ipadic.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.\n\nSecurity Fix(es):\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21941)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21948)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jan 2026) (CVE-2026-21936)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21968)\n\n* mysql: DDL unspecified vulnerability (CPU Jan 2026) (CVE-2026-21937)\n\n* mysql: Thread Pooling unspecified vulnerability (CPU Jan 2026) (CVE-2026-21964)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2431384", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431384", "description": ""}, {"ticket": "2431385", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431385", "description": ""}, {"ticket": "2431402", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431402", "description": ""}, {"ticket": "2431409", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431409", "description": ""}, {"ticket": "2431413", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431413","description": ""}, {"ticket": "2431431", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2431431", "description": ""}], "cves": [{"name": "CVE-2026-21936", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21936", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21937", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21937", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21941", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21941", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21948", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21948", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21964", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21964", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "4.9", "cwe": null}, {"name": "CVE-2026-21968", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-21968", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "6.5", "cwe": null}], "references": [], "publishedAt": "2026-03-24T12:01:12.163837Z", "rpms": {"Rocky Linux 8": {"nvras": ["mecab-0:0.996-2.module+el8.10.0+1676+9b4b6e24.aarch64.rpm", "mecab-0:0.996-2.module+el8.10.0+1676+9b4b6e24.x86_64.rpm", "mecab-debuginfo-0:0.996-2.module+el8.10.0+1676+9b4b6e24.x86_64.rpm", "mecab-debugsource-0:0.996-2.module+el8.10.0+1676+9b4b6e24.x86_64.rpm", "mecab-devel-0:0.996-2.module+el8.10.0+1676+9b4b6e24.aarch64.rpm", "mecab-devel-0:0.996-2.module+el8.10.0+1676+9b4b6e24.x86_64.rpm","mecab-0:0.996-2.module+el8.10.0+1937+28fbbc83.aarch64.rpm", "mecab-0:0.996-2.module+el8.10.0+2091+db4d14f6.aarch64.rpm", "mecab-0:0.996-2.module+el8.10.0+1937+28fbbc83.src.rpm", "mecab-0:0.996-2.module+el8.10.0+2091+db4d14f6.src.rpm", "mecab-0:0.996-2.module+el8.10.0+1676+9b4b6e24.src.rpm", "mecab-0:0.996-2.module+el8.10.0+1937+28fbbc83.x86_64.rpm", "mecab-0:0.996-2.module+el8.10.0+2091+db4d14f6.x86_64.rpm", "mecab-debuginfo-0:0.996-2.module+el8.10.0+1676+9b4b6e24.aarch64.rpm", "mecab-debuginfo-0:0.996-2.module+el8.10.0+2091+db4d14f6.aarch64.rpm", "mecab-debuginfo-0:0.996-2.module+el8.10.0+1937+28fbbc83.aarch64.rpm", "mecab-debuginfo-0:0.996-2.module+el8.10.0+1937+28fbbc83.x86_64.rpm", "mecab-debuginfo-0:0.996-2.module+el8.10.0+2091+db4d14f6.x86_64.rpm", "mecab-debugsource-0:0.996-2.module+el8.10.0+1676+9b4b6e24.aarch64.rpm", "mecab-debugsource-0:0.996-2.module+el8.10.0+1937+28fbbc83.aarch64.rpm", "mecab-debugsource-0:0.996-2.module+el8.10.0+2091+db4d14f6.aarch64.rpm", "mecab-debugsource-0:0.996-2.module+el8.10.0+1937+28fbbc83.x86_64.rpm", "mecab-debugsource-0:0.996-2.module+el8.10.0+2091+db4d14f6.x86_64.rpm", "mecab-devel-0:0.996-2.module+el8.10.0+2091+db4d14f6.aarch64.rpm", "mecab-devel-0:0.996-2.module+el8.10.0+1937+28fbbc83.aarch64.rpm", "mecab-devel-0:0.996-2.module+el8.10.0+1937+28fbbc83.x86_64.rpm", "mecab-devel-0:0.996-2.module+el8.10.0+2091+db4d14f6.x86_64.rpm", "mecab-ipadic-0:2.7.0.20070801-17.module+el8.10.0+1937+28fbbc83.aarch64.rpm", "mecab-ipadic-0:2.7.0.20070801-17.module+el8.10.0+2091+db4d14f6.aarch64.rpm", "mecab-ipadic-0:2.7.0.20070801-17.module+el8.10.0+1937+28fbbc83.src.rpm", "mecab-ipadic-0:2.7.0.20070801-17.module+el8.10.0+2091+db4d14f6.src.rpm", "mecab-ipadic-0:2.7.0.20070801-17.module+el8.10.0+2091+db4d14f6.x86_64.rpm", "mecab-ipadic-0:2.7.0.20070801-17.module+el8.10.0+1937+28fbbc83.x86_64.rpm", "mecab-ipadic-EUCJP-0:2.7.0.20070801-17.module+el8.10.0+2091+db4d14f6.aarch64.rpm", "mecab-ipadic-EUCJP-0:2.7.0.20070801-17.module+el8.10.0+1937+28fbbc83.aarch64.rpm","mecab-ipadic-EUCJP-0:2.7.0.20070801-17.module+el8.10.0+1937+28fbbc83.x86_64.rpm", "mecab-ipadic-EUCJP-0:2.7.0.20070801-17.module+el8.10.0+2091+db4d14f6.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Get details on the moderate MySQL security update for Rocky Linux with crucial information on vulnerabilities and fixes.. Rocky Linux updates, mysql security updates, software vulnerabilities. . LinuxSecurity.com Team
Mar 24, 2026
Rocky Linux
202
security advisorymoderateupdateropenSUSE Tumbleweed python311-PyNaCl Moderate Issue Advisory 2026-10130-1
An update that solves one vulnerability can now be installed.. # python311-PyNaCl-1.6.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10130-1 Rating: moderate Cross-References: * CVE-2025-69277 CVSS scores: * CVE-2025-69277 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2025-69277 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the python311-PyNaCl-1.6.2-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * python311-PyNaCl 1.6.2-1.1 * python312-PyNaCl 1.6.2-1.1 * python313-PyNaCl 1.6.2-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-69277.html . Update for openSUSE resolves a moderate severity issue in python311-PyNaCl, ensuring enhanced security.. openSUSE Patch, python311 Update, PyNaCl Security Fix, Moderate Threat, CVE-2025-69277. . LinuxSecurity.com Team
Feb 03, 2026
OpenSUSE
202
security advisorythreatimportantopenSUSE Leap 15.3: Kernel Important Security Update 2025:03664-1
An update that solves four vulnerabilities can now be installed.. # Security update for the Linux Kernel (Live Patch 58 for SLE 15 SP3) Announcement ID: SUSE-SU-2025:03664-1 Release Date: 2025-10-19T15:33:37Z Rating: important References: * bsc#1245794 * bsc#1246075 * bsc#1248673 * bsc#1248749 Cross-References: * CVE-2025-21971 * CVE-2025-38206 * CVE-2025-38499 * CVE-2025-38644 CVSS scores: * CVE-2025-21971 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-21971 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38206 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38206 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38499 ( SUSE ): 6.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:H * CVE-2025-38499 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H * CVE-2025-38644 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38644 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves four vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_207 fixes several issues. The following security issues were fixed: * CVE-2025-38499: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns (bsc#1248673). * CVE-2025-21971: net_sched: Prevent creation of classes with TC_H_ROOT (bsc#1245794). * CVE-2025-38644: wifi: mac80211: reject TDLS operations when station is not associated (bsc#1248749). * CVE-2025-38206: exfat: fixdouble free in delayed_free (bsc#1246075). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-3664=1 SUSE-2025-3665=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2025-3664=1 SUSE-SLE- Module-Live-Patching-15-SP3-2025-3665=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_56-debugsource-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_201-default-debuginfo-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_207-default-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_201-default-8-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_58-debugsource-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_207-default-debuginfo-7-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_201-preempt-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_207-preempt-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_207-preempt-debuginfo-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_201-preempt-debuginfo-8-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_56-debugsource-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_201-default-debuginfo-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_207-default-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_201-default-8-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_58-debugsource-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_207-default-debuginfo-7-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-21971.html * https://www.suse.com/security/cve/CVE-2025-38206.html * https://www.suse.com/security/cve/CVE-2025-38499.html * https://www.suse.com/security/cve/CVE-2025-38644.html *https://bugzilla.suse.com/show_bug.cgi?id=1245794 * https://bugzilla.suse.com/show_bug.cgi?id=1246075 * https://bugzilla.suse.com/show_bug.cgi?id=1248673 * https://bugzilla.suse.com/show_bug.cgi?id=1248749 . This advisory details important updates regarding the Linux Kernel vulnerabilities in openSUSE addressing critical issues.. openSUSE Security, Linux Kernel Update, 2025 Security Patch, System Vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Oct 20, 2025
•Important
OpenSUSE
202
security advisorypatchimportantopenSUSE Leap 15.3: Kernel Important Issues Fixed SUSE-SU-2025:03666-1
An update that solves four vulnerabilities can now be installed.. # Security update for the Linux Kernel (Live Patch 60 for SLE 15 SP3) Announcement ID: SUSE-SU-2025:03666-1 Release Date: 2025-10-19T19:33:36Z Rating: important References: * bsc#1245794 * bsc#1246075 * bsc#1248673 * bsc#1248749 Cross-References: * CVE-2025-21971 * CVE-2025-38206 * CVE-2025-38499 * CVE-2025-38644 CVSS scores: * CVE-2025-21971 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-21971 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38206 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38206 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38499 ( SUSE ): 6.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:H * CVE-2025-38499 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H * CVE-2025-38644 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38644 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves four vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_215 fixes several issues. The following security issues were fixed: * CVE-2025-38499: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns (bsc#1248673). * CVE-2025-21971: net_sched: Prevent creation of classes with TC_H_ROOT (bsc#1245794). * CVE-2025-38644: wifi: mac80211: reject TDLS operations when station is not associated (bsc#1248749). * CVE-2025-38206: exfat: fixdouble free in delayed_free (bsc#1246075). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-3667=1 SUSE-2025-3666=1 SUSE-2025-3668=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2025-3667=1 SUSE-SLE- Module-Live-Patching-15-SP3-2025-3666=1 SUSE-SLE-Module-Live- Patching-15-SP3-2025-3668=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_204-default-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_215-default-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_182-default-debuginfo-16-150300.2.1 * kernel-livepatch-5_3_18-150300_59_215-default-debuginfo-4-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_60-debugsource-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_182-default-16-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_57-debugsource-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_204-default-debuginfo-8-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_50-debugsource-16-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_215-preempt-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_215-preempt-debuginfo-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_204-preempt-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_182-preempt-16-150300.2.1 * kernel-livepatch-5_3_18-150300_59_182-preempt-debuginfo-16-150300.2.1 * kernel-livepatch-5_3_18-150300_59_204-preempt-debuginfo-8-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_204-default-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_215-default-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_215-default-debuginfo-4-150300.2.1 *kernel-livepatch-SLE15-SP3_Update_60-debugsource-4-150300.2.1 * kernel-livepatch-5_3_18-150300_59_182-default-16-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_57-debugsource-8-150300.2.1 * kernel-livepatch-5_3_18-150300_59_204-default-debuginfo-8-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-21971.html * https://www.suse.com/security/cve/CVE-2025-38206.html * https://www.suse.com/security/cve/CVE-2025-38499.html * https://www.suse.com/security/cve/CVE-2025-38644.html * https://bugzilla.suse.com/show_bug.cgi?id=1245794 * https://bugzilla.suse.com/show_bug.cgi?id=1246075 * https://bugzilla.suse.com/show_bug.cgi?id=1248673 * https://bugzilla.suse.com/show_bug.cgi?id=1248749 . SUSE releases important kernel update solving four issues, improving system security and stability for openSUSE Leap 15.3.. Linux Kernel Update, SUSE Security Advisory, OpenSUSE Patching, System Vulnerabilities, Linux Security Fixes. . Severity: Important. LinuxSecurity.com Team
Oct 20, 2025
•Important
OpenSUSE
98
security advisoryRed HatxtermRed Hat Enterprise Linux 4: RHSA-2007:0701-02 Low: xterm TTY Permissions
An updated xterm package that corrects a security issue is now available for Red Hat Enterprise Linux 4. A bug was found in the way xterm packages were built that caused the pseudo-terminal device files of the xterm emulated terminals to be owned by the incorrect group. This flaw did not affect Red Hat Enterprise Linux 4 Update 4 and earlier. This update has been rated as having low security impact by the Red Hat Security Response Team.. - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Low: xterm security update Advisory ID: RHSA-2007:0701-02 Advisory URL: https://access.redhat.com/errata/RHSA-2007:0701.html Issue date: 2007-11-15 Updated on: 2007-11-15 Product: Red Hat Enterprise Linux Keywords: tty owner group CVE Names: CVE-2007-2797 - ---------------------------------------------------------------------1. Summary: An updated xterm package that corrects a security issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Problem description: The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that cannot use the window system directly. A bug was found in the way xterm packages were built that caused the pseudo-terminal device files of the xterm emulated terminals to be owned by the incorrect group. This flaw did not affect Red Hat Enterprise Linux 4 Update 4 and earlier. (CVE-2007-2797) All users of xterm are advised to upgrade to this updated package,which contains a patch to correct this issue. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bug IDs fixed (http://bugzilla.redhat.com/): 239070 - CVE-2007-2797 Wrong settings for the tty (mesg: error: tty device is not owned by group `tty') 6. RPMs required: Red Hat Enterprise Linux AS version 4: SRPMS: 1e6bd5c8d2dd4a12405bc8d3442f2c3f xterm-192-8.el4.src.rpm i386: 589caa3f2e0984fd89d65250e377f06f xterm-192-8.el4.i386.rpm fd15d510790d4a2252f26bc79915ea98 xterm-debuginfo-192-8.el4.i386.rpm ia64: bb3af76c6ba12b96192c50673329dd37 xterm-192-8.el4.ia64.rpm b7d930d860f8762b2f52dafd701d295b xterm-debuginfo-192-8.el4.ia64.rpm ppc: 415b26fb6c78f8416eefb10b03254d0d xterm-192-8.el4.ppc.rpm 2d3873ce815c843b934ff93812d41e4e xterm-debuginfo-192-8.el4.ppc.rpm s390: 77d8e2b60ec35da065c7b7b65fc82b46 xterm-192-8.el4.s390.rpm c1e25b6df0c45f0dc84b222d839030c2 xterm-debuginfo-192-8.el4.s390.rpm s390x: 7e2261212daab8efbfe301cee7251be9 xterm-192-8.el4.s390x.rpm 84e6ee329093936d744b095d3c94ba8d xterm-debuginfo-192-8.el4.s390x.rpm x86_64: 98850a2fe869908974bab98456e5c3a3 xterm-192-8.el4.x86_64.rpm 62a5541a4d336fa39f960dea51e31e98 xterm-debuginfo-192-8.el4.x86_64.rpm Red Hat Enterprise Linux Desktop version 4: SRPMS: 1e6bd5c8d2dd4a12405bc8d3442f2c3f xterm-192-8.el4.src.rpm i386: 589caa3f2e0984fd89d65250e377f06f xterm-192-8.el4.i386.rpm fd15d510790d4a2252f26bc79915ea98 xterm-debuginfo-192-8.el4.i386.rpm x86_64: 98850a2fe869908974bab98456e5c3a3 xterm-192-8.el4.x86_64.rpm 62a5541a4d336fa39f960dea51e31e98 xterm-debuginfo-192-8.el4.x86_64.rpm Red Hat Enterprise Linux ES version 4: SRPMS: 1e6bd5c8d2dd4a12405bc8d3442f2c3f xterm-192-8.el4.src.rpm i386: 589caa3f2e0984fd89d65250e377f06f xterm-192-8.el4.i386.rpm fd15d510790d4a2252f26bc79915ea98 xterm-debuginfo-192-8.el4.i386.rpm ia64: bb3af76c6ba12b96192c50673329dd37 xterm-192-8.el4.ia64.rpm b7d930d860f8762b2f52dafd701d295b xterm-debuginfo-192-8.el4.ia64.rpm x86_64: 98850a2fe869908974bab98456e5c3a3 xterm-192-8.el4.x86_64.rpm 62a5541a4d336fa39f960dea51e31e98 xterm-debuginfo-192-8.el4.x86_64.rpm Red Hat Enterprise Linux WS version 4: SRPMS: 1e6bd5c8d2dd4a12405bc8d3442f2c3f xterm-192-8.el4.src.rpm i386: 589caa3f2e0984fd89d65250e377f06f xterm-192-8.el4.i386.rpm fd15d510790d4a2252f26bc79915ea98 xterm-debuginfo-192-8.el4.i386.rpm ia64: bb3af76c6ba12b96192c50673329dd37 xterm-192-8.el4.ia64.rpm b7d930d860f8762b2f52dafd701d295b xterm-debuginfo-192-8.el4.ia64.rpm x86_64: 98850a2fe869908974bab98456e5c3a3 xterm-192-8.el4.x86_64.rpm 62a5541a4d336fa39f960dea51e31e98 xterm-debuginfo-192-8.el4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2007-2797 https://access.redhat.com/security/updates/classification#low 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2007 Red Hat, Inc. . Security Notice for Red Hat: xterm patch resolves minor risk linked to terminal device file permissions in RHEL.. Red Hat Enterprise, xterm update, security advisory, tty group permissions. . Severity: Low. LinuxSecurity.com Team
Nov 15, 2007
•Low
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!