Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycode executionDebian

Debian: DSA-5397-1 Moderate: Webkit Code Execution Vulnerability Fix

The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-0108 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5397-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Alberto Garcia May 03, 2023 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : wpewebkit CVE ID : CVE-2022-0108 CVE-2022-32885 CVE-2023-27932 CVE-2023-27954 CVE-2023-28205 The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-0108 Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. CVE-2022-32885 P1umer and Q1IQ discovered that processing maliciously crafted web content may lead to arbitrary code execution. CVE-2023-27932 An anonymous researcher discovered that processing maliciously crafted web content may bypass Same Origin Policy. CVE-2023-27954 An anonymous researcher discovered that a website may be able to track sensitive user information. CVE-2023-28205 Clement Lecigne and Donncha O Cearbhaill discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. For the stable distribution (bullseye), these problems have been fixed in version 2.38.6-1~deb11u1. We recommend that you upgrade your wpewebkit packages. For the detailed security status of wpewebkit please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/wpewebkit Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list:This email address is being protected from spambots. You need JavaScript enabled to view it. . Enhance webkit feature set to address various security flaws impacting user data and the handling of web content.. Debian, WebKitGTK, Security Patch, Code Execution, User Privacy. . LinuxSecurity.com Team

Calendar 2 May 03, 2023 Debian
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryuser privacyMediaWiki

Mageia 8 MGASA-2022-0370 Moderate: MediaWiki User Exposure Issues

HTMLUserTextField exposes existence of hidden users (CVE-2022-41765). reassignEdits doesn't update results in an IP range check on Special:Contributions (CVE-2022-41767) . MGASA-2022-0370 - Updated mediawiki packages fix security vulnerability Publication date: 13 Oct 2022 URL: https://advisories.mageia.org/MGASA-2022-0370.html Type: security Affected Mageia releases: 8 CVE: CVE-2022-41765, CVE-2022-41767 HTMLUserTextField exposes existence of hidden users (CVE-2022-41765). reassignEdits doesn't update results in an IP range check on Special:Contributions (CVE-2022-41767) References: - https://bugs.mageia.org/show_bug.cgi?id=30943 - https://lists.wikimedia.org/hyperkitty/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/SPYFDCGZE7KJNO73ET7QVSUXMHXVRFTE/ - https://www.cve.org/CVERecord?id=CVE-2022-41765 - https://www.cve.org/CVERecord?id=CVE-2022-41767 SRPMS: - 8/core/mediawiki-1.35.8-1.mga8 . Mageia 2022-0370 security patch for mediawiki enhances security measures and safeguards user data. Discover the changes now!. Mageia Security, MediaWiki Update, User Privacy, Hidden Users Issue, IP Range Check Fix. . LinuxSecurity.com Team

Calendar 2 Oct 13, 2022 Mageia
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderateFedora

Fedora 29: 2019-d8ec88b21e Moderate: User Privacy Fixes for Moodle

Multiple CVE fixes.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-d8ec88b21e 2019-01-31 03:20:04.985379 --------------------------------------------------------------------------------Name : moodle Product : Fedora 29 Version : 3.5.4 Release : 1.fc29 URL : https://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. --------------------------------------------------------------------------------Update Information: Multiple CVE fixes. --------------------------------------------------------------------------------ChangeLog: * Tue Jan 22 2019 Gwyn Ciesla - 3.5.4-1 - 3.5.4 * Wed Nov 21 2018 Gwyn Ciesla - 3.5.3-1 - 3.5.3 * Tue Oct 30 2018 Gwyn Ciesla - 3.5.2-2 - Fix URL, drop php-Smarty. --------------------------------------------------------------------------------References: [ 1 ] Bug #1668074 - CVE-2019-3810 moodle: User full name is not escaped in the un-linked userpix page (MSA-19-0003) [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1668074 [ 2 ] Bug #1668068 - CVE-2019-3809 moodle: Blind SSRF Risk in /badges/mybackpack.php (MSA-19-0002) [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1668068 [ 3 ] Bug #1668066 - CVE-2019-3808 moodle: Manage groups capability is missing XSS risk flag (MSA-19-0001) [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1668066 [ 4 ] Bug #1668065 - CVE-2019-3808 moodle: Manage groups capability is missing XSS risk flag (MSA-19-0001) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1668065 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2019-d8ec88b21e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. . The 2020 Moodle security patch 5a1f67c9c0 resolves various vulnerabilities affecting CentOS 7, ensuring enhanced data protection for user information.. Moodle Security Update,Fedora Security Advisory,Critical User Privacy Fix,Moodle Security Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 31, 2019 Important Fedora
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorymoderateinformation leak

Ubuntu: USN-4500-1 Low: Kernel Memory Disclosure Vulnerability

Ralf Schlatterbeck discovered an information leak in roundup, a web-based issue tracking system. An authenticated attacker could use it to see sensitive details about other users, including their hashed password. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3502-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Yves-Alexis Perez March 03, 2016 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : roundup CVE ID : CVE-2014-6276 Ralf Schlatterbeck discovered an information leak in roundup, a web-based issue tracking system. An authenticated attacker could use it to see sensitive details about other users, including their hashed password. After applying the update, which will fix the shipped templates, the site administrator should ensure the instanced versions (in /var/lib/roundup usually) are also updated, either by patching them manually or by recreating them. More info can be found in the upstream documentation at https://www.roundup-tracker.org/docs/upgrading.html For the oldstable distribution (wheezy), this problem has been fixed in version 1.4.20-1.1+deb7u1. For the stable distribution (jessie), this problem has been fixed in version 1.4.20-1.1+deb8u1. For the testing (stretch) and unstable (sid) distribution, this problem has not yet been fixed. We recommend that you upgrade your roundup packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Ralf Schlatterbeck has informed us about a data breach in roundup that compromises sensitive user information. Please implement the necessary update immediately.. roundup Security, Debian Advisory, InformationLeak. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Mar 03, 2016 Low Debian
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryinformation leakFedora

Fedora 24: 2016-17392 High: Tar Utility Vulnerability Fix

smuxi-1.0-2.fc23 - Added patch to not expose the user's realname automatically (bz#1257597). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-14475 2015-09-18 18:29:10.322089 -------------------------------------------------------------------------------- Name : smuxi Product : Fedora 23 Version : 1.0 Release : 2.fc23 URL : https://smuxi.im Summary : Powerful, flexible, user-friendly chat client Description : Smuxi is an open-source, powerful, flexible, and user-friendly chat client created by Mirco Bauer and developed by other contributors. Inspired by the combination of screen and irssi, Smuxi has a detachable server (or like a "normal" client) that stays connected when you aren't, and can allow multiple Smuxi front-ends (like the GNOME front-end, or STFL text-based front-end) to be connected and in sync. This is similar to screen+irssi or IRC bouncers, but more elegant and powerful. -------------------------------------------------------------------------------- Update Information: smuxi-1.0-2.fc23 - Added patch to not expose the user's realname automatically (bz#1257597) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1257597 - smuxi: User information leak at first start https://bugzilla.redhat.com/show_bug.cgi?id=1257597 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update smuxi' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailinglist This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . The latest Fedora 23 release includes an important update for smuxi, designed to bolster user privacy by guarding against the exposure of real names.. Smuxi Update, Fedora Security, User Information Leak, Open Source Client, Privacy Enhancement. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Sep 18, 2015 Important Fedora
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorymoderateinformation leak

Debian DSA-2913-1 Moderate: Information Leak in Drupal 7.14

An information disclosure vulnerability was discovered in Drupal, a fully-featured content management framework. When pages are cached for anonymous users, form state may leak between anonymous users. Sensitive or private information recorded for one anonymous user could thus be . - ------------------------------------------------------------------------- Debian Security Advisory DSA-2913-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Salvatore Bonaccorso April 25, 2014 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : drupal7 CVE ID : CVE-2014-2983 An information disclosure vulnerability was discovered in Drupal, a fully-featured content management framework. When pages are cached for anonymous users, form state may leak between anonymous users. Sensitive or private information recorded for one anonymous user could thus be disclosed to other users interacting with the same form at the same time. This security update introduces small API changes, see the upstream advisory at https:// for further information. For the stable distribution (wheezy), this problem has been fixed in version 7.14-2+deb7u4. For the testing distribution (jessie), this problem has been fixed in version 7.27-1. For the unstable distribution (sid), this problem has been fixed in version 7.27-1. We recommend that you upgrade your drupal7 packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Essential Drupal security patch tackling data exposure risks across every distribution variant.. Drupal Security, Debian Update, Information Disclosure, Content Management, Software Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 25, 2014 Important Debian
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here