Stay Vigilant with Timely Linux Security Advisories

Refine advisories

X Clear Filters

Critical (15)

Important (4)

Ubuntu (4930)

denial of service (18259)

moderate (19164)

python-pip (63)

security advisory (114756)

system update (1879)

GStreamer (100)

important (27647)

plugin issue (11)

MySQL (355)

Fedora (18)

Mageia (1)

OpenSUSE (7)

Published Date Range

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

bottom 200

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

We found 17 articles for you...

202

security advisorymoderateheap overflow

openSUSE Backports SLE-15-SP2: upx Moderate Heap Overflow CVE-2020-24119

An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for upx =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F Announcement ID: openSUSE-SU-2021:0826-1 Rating: moderate References: #1186238 Cross-References: CVE-2020-24119 CVSS scores: CVE-2020-24119 (NVD) : 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R= /S:U/C:H/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP2 =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F An update that fixes one vulnerability is now available. Description: This update for upx fixes the following issues: - CVE-2020-24119: Fixed a heap buffer overflow in p=5Flx=5Felf.cpp (boo#1186238) This update was imported from the openSUSE:Leap:15.2:Update update proje= ct. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended instal= lation methods like YaST online=5Fupdate or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP2: zypper in -t patch openSUSE-2021-826=3D1 Package List: - openSUSE Backports SLE-15-SP2 (aarch64 ppc64le s390x x86=5F64): upx-3.96-bp152.2.3.1 References: https://www.suse.com/security/cve/CVE-2020-24119.html https://bugzilla.suse.com/1186238 . An important patch for openSUSE resolves a significant memory corruption vulnerability in upx, boosting overall system security.. openSUSE update, upx fix, heap buffer overflow, security advisory. . LinuxSecurity.com Team

Sep 26, 2025 OpenSUSE

security advisoryFedorapackage update

Fedora 42: FEDORA-2025-f050ec7d1b critical: upx heap overflow

5.0.0. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-f050ec7d1b 2025-04-11 18:19:12.061671+00:00 -------------------------------------------------------------------------------- Name : upx Product : Fedora 42 Version : 5.0.0 Release : 1.fc42 URL : https://github.com/upx/upx Summary : Ultimate Packer for eXecutables Description : UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks. -------------------------------------------------------------------------------- Update Information: 5.0.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 20 2025 Gwyn Ciesla - 5.0.0-1 - 5.0.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2355649 - CVE-2025-2849 upx: UPX p_lx_elf.cpp un_DT_INIT heap-based overflow [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2355649 [ 2 ] Bug #2355650 - CVE-2025-2849 upx: UPX p_lx_elf.cpp un_DT_INIT heap-based overflow [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2355650 [ 3 ] Bug #2355651 - CVE-2025-2849 upx: UPX p_lx_elf.cpp un_DT_INIT heap-based overflow [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2355651 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-f050ec7d1b' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project canbe found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . A critical security notice for Fedora 42 concerning a buffer overflow vulnerability in upx version 5.0.0. Prompt action to update is advised.. Fedora 42, upx, heap overflow, package update, security advisory. . Severity: Critical. LinuxSecurity.com Team

Apr 11, 2025 •Critical Fedora

security advisorysoftware updateFedora

Fedora 41: FEDORA-2025-c91006eca6 critical: UPX heap overflow

5.0.0. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-c91006eca6 2025-04-06 01:20:10.028704+00:00 -------------------------------------------------------------------------------- Name : upx Product : Fedora 41 Version : 5.0.0 Release : 1.fc41 URL : https://github.com/upx/upx Summary : Ultimate Packer for eXecutables Description : UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks. -------------------------------------------------------------------------------- Update Information: 5.0.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 20 2025 Gwyn Ciesla - 5.0.0-1 - 5.0.0 * Sun Jan 19 2025 Fedora Release Engineering - 4.2.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Dec 18 2024 Gwyn Ciesla - 4.2.4-3 - Provide bundled lzma-sdk -------------------------------------------------------------------------------- References: [ 1 ] Bug #2355649 - CVE-2025-2849 upx: UPX p_lx_elf.cpp un_DT_INIT heap-based overflow [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2355649 [ 2 ] Bug #2355650 - CVE-2025-2849 upx: UPX p_lx_elf.cpp un_DT_INIT heap-based overflow [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2355650 [ 3 ] Bug #2355651 - CVE-2025-2849 upx: UPX p_lx_elf.cpp un_DT_INIT heap-based overflow [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2355651 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-c91006eca6' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Explore the Fedora 41 update for UPX, focusing on critical heap overflow issues in version 5.0.0 and its performance.. Fedora Update, UPX Compression, Security Advisory, Heap Overflow. . Severity: Critical. LinuxSecurity.com Team

Apr 06, 2025 •Critical Fedora

security advisorybuffer overflowcritical

Fedora 42: FEDORA-2025-ab6345ef72 Major: Mem Overflow Issue Detected

4.2.3. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-df5322cd61 2024-04-19 21:20:20.796877 -------------------------------------------------------------------------------- Name : upx Product : Fedora 40 Version : 4.2.3 Release : 1.fc40 URL : https://github.com/upx/upx Summary : Ultimate Packer for eXecutables Description : UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks. -------------------------------------------------------------------------------- Update Information: 4.2.3 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 28 2024 Gwyn Ciesla - 4.2.3-1 - 4.2.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272102 - upx-4.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2272102 [ 2 ] Bug #2272828 - CVE-2024-3209 upx: heap-based buffer overflow via get_ne64() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2272828 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-df5322cd61' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. Tounsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . The latest update for upx on Fedora 40 resolves a serious buffer overflow vulnerability. Ensure your system is secure by installing this update promptly.. Fedora Security Update, upx Packer, Buffer Overflow Fix. . Severity: Critical. LinuxSecurity.com Team

Apr 19, 2024 •Critical Fedora

security advisoryupdatecritical

Fedora 38: FEDORA-2024-80ee97033c Urgent: UPX Buffer Vulnerability

4.2.3 . -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-70ee97033b 2024-04-12 01:13:29.030661 -------------------------------------------------------------------------------- Name : upx Product : Fedora 38 Version : 4.2.3 Release : 1.fc38 URL : https://github.com/upx/upx Summary : Ultimate Packer for eXecutables Description : UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks. -------------------------------------------------------------------------------- Update Information: 4.2.3 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 28 2024 Gwyn Ciesla - 4.2.3-1 - 4.2.3 * Sat Jan 27 2024 Fedora Release Engineering - 4.2.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Thu Jan 4 2024 Gwyn Ciesla - 4.2.2-1 - 4.2.2 * Thu Nov 2 2023 Gwyn Ciesla - 4.2.1-1 - 4.2.1 * Fri Oct 27 2023 Gwyn Ciesla - 4.2.0-1 - 4.2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272102 - upx-4.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2272102 [ 2 ] Bug #2272828 - CVE-2024-3209 upx: heap-based buffer overflow via get_ne64() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2272828 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-70ee97033b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details onthe GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Important patch release for Fedora 38: upx mitigates memory corruption vulnerabilities and improves binary size optimization.. Fedora 38 Security Update, upx Security Advisory, Executable Compression, Buffer Overflow Protection. . Severity: Critical. LinuxSecurity.com Team

Apr 12, 2024 •Critical Fedora

security advisorybuffer overflowFedora

Fedora 39: FEDORA-2024-ea4b8a246f Critical: UPX 4.2.3 Buffer Overflow Fix

4.2.3. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-fb0dbe3373 2024-04-06 01:40:54.068035 -------------------------------------------------------------------------------- Name : upx Product : Fedora 39 Version : 4.2.3 Release : 1.fc39 URL : https://github.com/upx/upx Summary : Ultimate Packer for eXecutables Description : UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks. -------------------------------------------------------------------------------- Update Information: 4.2.3 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 28 2024 Gwyn Ciesla - 4.2.3-1 - 4.2.3 * Sat Jan 27 2024 Fedora Release Engineering - 4.2.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272102 - upx-4.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2272102 [ 2 ] Bug #2272828 - CVE-2024-3209 upx: heap-based buffer overflow via get_ne64() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2272828 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-fb0dbe3373' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Fedora 39 enhancements to upx 4.2.3 tackle security vulnerabilities. Discover the effects and guidelines for installation.. upx update,Fedora update,software patch,buffer overflow fix,executables compression. . Severity: Critical. LinuxSecurity.com Team

Apr 06, 2024 •Critical Fedora

202

security advisorycritical threatimportant patch

openSUSE: 2023:0088-1 Important: 12 Threats Resolved in UPX

An update that fixes 12 vulnerabilities is now available. . openSUSE Security Update: Security update for upx ______________________________________________________________________________ Announcement ID: openSUSE-SU-2023:0088-1 Rating: important References: #1183510 #1184701 #1184702 #1207121 #1207122 #1209765 #1209766 #1209767 #1209768 #1209769 #1209770 #1209771 Cross-References: CVE-2021-20285 CVE-2021-30500 CVE-2021-30501 CVE-2021-43311 CVE-2021-43312 CVE-2021-43313 CVE-2021-43314 CVE-2021-43315 CVE-2021-43316 CVE-2021-43317 CVE-2023-23456 CVE-2023-23457 CVSS scores: CVE-2021-20285 (NVD) : 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H CVE-2021-30500 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30501 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-43311 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-43312 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-43313 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-43314 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-43315 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-43316 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-43317 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-23456 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2023-23457 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP4 ______________________________________________________________________________ An update that fixes 12 vulnerabilities is nowavailable. Description: upx was updated to fix the following issues: Update to release 4.0.2 * Fix unpack of ELF x86-64 that failed with "CantUnpackException: corrupt b_info" * Resolve SEGV on PackLinuxElf64::invert_pt_dynamic - CVE-2021-30500: Fixed Null pointer dereference in PackLinuxElf:canUnpack() in p_lx_elf.cpp - CVE-2021-30501: Fixed Assertion abort in function MemBuffer:alloc() - CVE-2021-43311: Fixed Heap-based buffer overflow in PackLinuxElf32:elf_lookup() at p_lx_elf.cpp - CVE-2021-43312: Fixed Heap-based buffer overflow in PackLinuxElf64:invert_pt_dynamic at p_lx_elf.cpp:5239 - CVE-2021-43313: Fixed Heap-based buffer overflow in PackLinuxElf32:invert_pt_dynamic at p_lx_elf.cpp:1688 - CVE-2021-43314: Fixed Heap-based buffer overflows in PackLinuxElf32:elf_lookup() at p_lx_elf.cp - CVE-2021-43315: Fixed Heap-based buffer overflows in PackLinuxElf32:elf_lookup() at p_lx_elf.cp - CVE-2021-43316: Fixed Heap-based buffer overflow in func get_le64() - CVE-2021-43317: Fixed Heap-based buffer overflows in PackLinuxElf64:elf_lookup() at p_lx_elf.cp - CVE-2023-23456: Fixed heap-buffer-overflow in PackTmt:pack() - CVE-2023-23457: Fixed SEGV on PackLinuxElf64:invert_pt_dynamic() in p_lx_elf.cpp Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP4: zypper in -t patch openSUSE-2023-88=1 Package List: - openSUSE Backports SLE-15-SP4 (aarch64 ppc64le s390x x86_64): upx-4.0.2-bp154.4.6.1 upx-debuginfo-4.0.2-bp154.4.6.1 upx-debugsource-4.0.2-bp154.4.6.1 References: https://www.suse.com/security/cve/CVE-2021-20285.html https://www.suse.com/security/cve/CVE-2021-30500.html https://www.suse.com/security/cve/CVE-2021-30501.html https://www.suse.com/security/cve/CVE-2021-43311.html https://www.suse.com/security/cve/CVE-2021-43312.html https://www.suse.com/security/cve/CVE-2021-43313.html https://www.suse.com/security/cve/CVE-2021-43314.html https://www.suse.com/security/cve/CVE-2021-43315.html https://www.suse.com/security/cve/CVE-2021-43316.html https://www.suse.com/security/cve/CVE-2021-43317.html https://www.suse.com/security/cve/CVE-2023-23456.html https://www.suse.com/security/cve/CVE-2023-23457.html https://bugzilla.suse.com/1183510 https://bugzilla.suse.com/1184701 https://bugzilla.suse.com/1184702 https://bugzilla.suse.com/1207121 https://bugzilla.suse.com/1207122 https://bugzilla.suse.com/1209765 https://bugzilla.suse.com/1209766 https://bugzilla.suse.com/1209767 https://bugzilla.suse.com/1209768 https://bugzilla.suse.com/1209769 https://bugzilla.suse.com/1209770 https://bugzilla.suse.com/1209771 . A significant Arch Linux patch targets 15 flaws in libjpeg, boosting both security measures and system reliability.. openSUSE Update, Upx Security Fix, Security Improvements. . Severity: Important. LinuxSecurity.com Team

Apr 11, 2023 •Important OpenSUSE

202

security advisorymoderatesecurity patch

openSUSE 15 SP4: SUSE-SU-2023:0031-1 Moderate: upx Segmentation Fault

An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for upx ______________________________________________________________________________ Announcement ID: openSUSE-SU-2023:0031-1 Rating: moderate References: #1207122 Cross-References: CVE-2023-23457 Affected Products: openSUSE Backports SLE-15-SP4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: upx was updated to fix the following issues: - CVE-2023-23457: Fixed a segmentation fault when processing malicious elf files (boo#1207122) Update to release 4.0.1 * Fix crash when a linux/armeb LZMA-packed binary unpacks itself. * Resolve "CantPackException: bad ElfXX_Shdrs" with staticly-linked programs. * Resolve "CantPackException: need DT_INIT;..." when attempting to re-compress an already packed binary. Update to release 4.0 * Add support for EFI files Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP4: zypper in -t patch openSUSE-2023-31=1 Package List: - openSUSE Backports SLE-15-SP4 (aarch64 ppc64le s390x x86_64): upx-4.0.1-bp154.4.3.1 References: https://www.suse.com/security/cve/CVE-2023-23457.html https://bugzilla.suse.com/1207122 . openSUSE Security Notice: Security patch for gzip Announcement ID: openSUSE-SU-2023:0042-1 Rating: high. openSUSE Update, upx Fix, Security Patch. . LinuxSecurity.com Team

Jan 23, 2023 OpenSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

bottom 200

Stay Secure with the Latest Linux Advisories

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

openSUSE Backports SLE-15-SP2: upx Moderate Heap Overflow CVE-2020-24119

Fedora 42: FEDORA-2025-f050ec7d1b critical: upx heap overflow

Fedora 41: FEDORA-2025-c91006eca6 critical: UPX heap overflow

Fedora 42: FEDORA-2025-ab6345ef72 Major: Mem Overflow Issue Detected

Fedora 38: FEDORA-2024-80ee97033c Urgent: UPX Buffer Vulnerability

Fedora 39: FEDORA-2024-ea4b8a246f Critical: UPX 4.2.3 Buffer Overflow Fix

openSUSE: 2023:0088-1 Important: 12 Threats Resolved in UPX

openSUSE 15 SP4: SUSE-SU-2023:0031-1 Moderate: upx Segmentation Fault

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!