Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorycriticalfirefox

Mageia 9: Firefox Critical Memory Safety Issues MGASA-2025-0227

MGASA-2025-0227 - Updated rootcerts, nspr, nss & firefox packages fix vulnerabilities. MGASA-2025-0227 - Updated rootcerts, nspr, nss & firefox packages fix vulnerabilities Publication date: 05 Sep 2025 URL: https://advisories.mageia.org/MGASA-2025-0227.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-8027, CVE-2025-8028, CVE-2025-8029, CVE-2025-8030, CVE-2025-8031, CVE-2025-8032, CVE-2025-8033, CVE-2025-8034, CVE-2025-8035, CVE-2025-9179, CVE-2025-9180, CVE-2025-9181, CVE-2025-9185 Description: JavaScript engine only wrote partial return value to stack. (CVE-2025-8027) Large branch table could lead to truncated instruction. (CVE-2025-8028) Javascript: URLs executed on object and embed tags. (CVE-2025-8029) Potential user-assisted code execution in “Copy as cURL” command. (CVE-2025-8030) Incorrect URL stripping in CSP reports. (CVE-2025-8031) XSLT documents could bypass CSP. (CVE-2025-8032) Incorrect JavaScript state machine for generators. (CVE-2025-8033) Memory safety bugs fixed in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. (CVE-2025-8034) Memory safety bugs fixed in Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. (CVE-2025-8035) Sandbox escape due to invalid pointer in the Audio/Video: GMP component. (CVE-2025-9179) Same-origin policy bypass in the Graphics: Canvas2D component. (CVE-2025-9180) Uninitialized memory in the JavaScript Engine component. (CVE-2025-9181) Memory safety bugs fixed in Firefox ESR 115.27, Firefox ESR 128.14, Thunderbird ESR 128.14, Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142. (CVE-2025-9185) References: - https://bugs.mageia.org/show_bug.cgi?id=34552 - https://www.firefox.com/en-US/firefox/128.13.0/releasenotes/ - https://www.mozilla.org/en-US/security/advisories/mfsa2025-58/ -https://www.firefox.com/en-US/firefox/128.14.0/releasenotes/ - https://www.mozilla.org/en-US/security/advisories/mfsa2025-66/ - https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_114.html - https://www.cve.org/CVERecord?id=CVE-2025-8027 - https://www.cve.org/CVERecord?id=CVE-2025-8028 - https://www.cve.org/CVERecord?id=CVE-2025-8029 - https://www.cve.org/CVERecord?id=CVE-2025-8030 - https://www.cve.org/CVERecord?id=CVE-2025-8031 - https://www.cve.org/CVERecord?id=CVE-2025-8032 - https://www.cve.org/CVERecord?id=CVE-2025-8033 - https://www.cve.org/CVERecord?id=CVE-2025-8034 - https://www.cve.org/CVERecord?id=CVE-2025-8035 - https://www.cve.org/CVERecord?id=CVE-2025-9179 - https://www.cve.org/CVERecord?id=CVE-2025-9180 - https://www.cve.org/CVERecord?id=CVE-2025-9181 - https://www.cve.org/CVERecord?id=CVE-2025-9185 SRPMS: - 9/core/firefox-128.14.0-1.4.mga9 - 9/core/firefox-l10n-128.14.0-1.mga9 - 9/core/nss-3.115.1-1.mga9 - 9/core/nspr-4.37-1.mga9 - 9/core/rootcerts-20250808.00-1.mga9 . Enhanced root certificates and Firefox updates in Mageia address significant security flaws, effectively safeguarding user data and maintaining overall system security.. Mageia security advisory, Firefox update, memory safety, rootcerts vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 05, 2025 Critical Mageia
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorycode executionarbitrary code

Gentoo Linux: GLSA-200707-02 Normal: ELinks Security Vulnerability Detected

A vulnerability has been discovered in ELinks allowing for the user-assisted execution of arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200706-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: ELinks: User-assisted execution of arbitrary code Date: June 06, 2007 Bugs: #177512 ID: 200706-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= A vulnerability has been discovered in ELinks allowing for the user-assisted execution of arbitrary code. Background ========= ELinks is a text-mode web browser. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-client/elinks < 0.11.2-r1 > = 0.11.2-r1 Description ========== Arnaud Giersch discovered that the "add_filename_to_string()" function in file intl/gettext/loadmsgcat.c uses an untrusted relative path, allowing for a format string attack with a malicious .po file. Impact ===== A local attacker could entice a user to run ELinks in a specially crafted directory environment containing a malicious ".po" file, possibly resulting in the execution of arbitrary code with the privileges of the user running ELinks. Workaround ========= There is no known workaround at this time. Resolution ========= All ELinks users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =www-client/elinks-0.11.2-r1" References ========= [ 1 ] CVE-2007-2027 https://www.cve.org/CVERecord?id=CVE-2007-2027 Availability =========== This GLSA and anyupdates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200706-03 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2007 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Uncover the critical ELinks flaw that permits user-triggered arbitrary code execution in Gentoo Linux. Prompt action necessary.. Gentoo Linux, ELinks exploit, code execution, security advisory. . LinuxSecurity.com Team

Calendar 2 Jun 06, 2007 Gentoo
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here