Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 23 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 42 Xen Serious Buffer Overrun Issue and vCPU Isolation XSA-477

x86: buffer overrun with shadow paging + tracing [XSA-477, CVE-2025-58150] x86: incomplete IBPB for vCPU isolation [XSA-479, CVE-2026-23553]. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-e39149a8a0 2026-02-15 01:28:07.972869+00:00 -------------------------------------------------------------------------------- Name : xen Product : Fedora 42 Version : 4.19.4 Release : 2.fc42 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: x86: buffer overrun with shadow paging + tracing [XSA-477, CVE-2025-58150] x86: incomplete IBPB for vCPU isolation [XSA-479, CVE-2026-23553] -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 29 2026 Michael Young - 4.19.4-2 x86: buffer overrun with shadow paging + tracing [XSA-477, CVE-2025-58150] (#2434045) x86: incomplete IBPB for vCPU isolation [XSA-479, CVE-2026-23553] (#2434047) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2434045 - CVE-2025-58150 xen: x86: buffer overrun with shadow paging + tracing [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2434045 [ 2 ] Bug #2434047 - CVE-2026-23553 xen: x86: incomplete IBPB for vCPU isolation [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2434047 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-e39149a8a0' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Critical security advisory for Fedora 42 regarding Xen buffer overrun and vCPU isolation issues. Update recommended.. Fedora 42, Xen, security advisory, shadow paging, vCPU isolation. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 15, 2026 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorabuffer overrun

Fedora 43 Xen Critical Buffer Overrun Vuln XSA-477 CVE-2025-58150

x86: buffer overrun with shadow paging + tracing [XSA-477, CVE-2025-58150] x86: incomplete IBPB for vCPU isolation [XSA-479, CVE-2026-23553]. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-844012d662 2026-02-04 02:08:26.993112+00:00 -------------------------------------------------------------------------------- Name : xen Product : Fedora 43 Version : 4.20.2 Release : 3.fc43 URL : http://xen.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: x86: buffer overrun with shadow paging + tracing [XSA-477, CVE-2025-58150] x86: incomplete IBPB for vCPU isolation [XSA-479, CVE-2026-23553] -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 29 2026 Michael Young - 4.20.2-3 x86: buffer overrun with shadow paging + tracing [XSA-477, CVE-2025-58150] (#2434046) x86: incomplete IBPB for vCPU isolation [XSA-479, CVE-2026-23553] (#2434048) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2434046 - CVE-2025-58150 xen: x86: buffer overrun with shadow paging + tracing [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2434046 [ 2 ] Bug #2434048 - CVE-2026-23553 xen: x86: incomplete IBPB for vCPU isolation [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2434048 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-844012d662' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Critical updates for Fedora 43 to address buffer overrun and vCPU isolation issues in Xen hypervisor security.. Fedora 43 update, Xen security, buffer overrun fix, virtual machine security, vCPU isolation. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 04, 2026 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoralinux

Fedora 42: Xen Critical Exceptions and Scheduler Attacks 2025-ddaa63a0f5

update to xen-4.19.3 includes patches for x86: Incorrect stubs exception handling for flags recovery [XSA-470, CVE-2025-27465] x86: Transitive Scheduler Attacks [XSA-471, CVE-2024-36350,. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-ddaa63a0f5 2025-08-08 00:53:07.923997+00:00 -------------------------------------------------------------------------------- Name : xen Product : Fedora 42 Version : 4.19.3 Release : 2.fc42 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: update to xen-4.19.3 includes patches for x86: Incorrect stubs exception handling for flags recovery [XSA-470, CVE-2025-27465] x86: Transitive Scheduler Attacks [XSA-471, CVE-2024-36350, CVE-2024-36357] -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 5 2025 Michael Young - 4.19.3-2 - update to xen-4.19.3 remove patches now included or superceded upstream includes patches for x86: Incorrect stubs exception handling for flags recovery [XSA-470, CVE-2025-27465] x86: Transitive Scheduler Attacks [XSA-471, CVE-2024-36350, CVE-2024-36357] -------------------------------------------------------------------------------- References: [ 1 ] Bug #2381572 - CVE-2025-27465 xen: Xen: Incorrect Exception Handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2381572 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-ddaa63a0f5' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Fedora 42 enhances xen with essential patches to counter transitive threats and rectify flaws in exception management.. Fedora security advisory, xen vulnerability, virtual machine monitor. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 08, 2025 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issueupdate

Fedora 41 FEDORA-2025-933a9a977e critical: xen data leak and deadlock

work around debugedit bug to fix aarch64 builds xen-hypervisor %post doesn't load all needed grub2 modules update to xen-4.19.1 which includes Deadlock in x86 HVM standard VGA handling [XSA-463, CVE-2024-45818] libxl leaks data to PVH guests via ACPI tables [XSA-464, CVE-2024-45819]. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-933a9a977e 2025-01-12 01:37:12.378788+00:00 -------------------------------------------------------------------------------- Name : xen Product : Fedora 41 Version : 4.19.1 Release : 3.fc41 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: work around debugedit bug to fix aarch64 builds xen-hypervisor %post doesn't load all needed grub2 modules update to xen-4.19.1 which includes Deadlock in x86 HVM standard VGA handling [XSA-463, CVE-2024-45818] libxl leaks data to PVH guests via ACPI tables [XSA-464, CVE-2024-45819] -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 9 2025 Michael Young - 4.19.1-3 - work around debugedit bug to fix aarch64 builds * Sat Jan 4 2025 Andrea Perotti - 4.19.1-2 - xen-hypervisor %post doesn't load all needed grub2 modules (#2335558) * Thu Dec 5 2024 Michael Young - 4.19.1-1 - update to xen-4.19.1 remove patches now included or superceded upstream * Tue Nov 12 2024 Michael Young - 4.19.0-5 - Deadlock in x86 HVM standard VGA handling [XSA-463, CVE-2024-45818] - libxl leaks data to PVH guests via ACPI tables [XSA-464, CVE-2024-45819] - additional patches so above applies cleanly -------------------------------------------------------------------------------- References: [ 1 ] Bug#2330331 - xen-4.19.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2330331 [ 2 ] Bug #2333330 - CVE-2024-45818 xen: Deadlock in x86 HVM standard VGA handling [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2333330 [ 3 ] Bug #2333333 - CVE-2024-45819 xen: libxl leaks data to PVH guests via ACPI tables [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2333333 [ 4 ] Bug #2335558 - Failure in loading multiboot2 prevent Xen from boot https://bugzilla.redhat.com/show_bug.cgi?id=2335558 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-933a9a977e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Release note for Fedora 41 focused on urgent patches for xen, remedying data leaks and enhancing error management. Keep your system safe!. Fedora xen update, security advisory, virtual machine monitor, data leaks, bug fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 12, 2025 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoracritical update

Fedora 38: 2023-56901a79a1 critical: IOMMU mismatches, BTC SRSO fixes

x86/AMD: mismatch in IOMMU quarantine page table levels [XSA-445, CVE-2023-46835] x86: BTC/SRSO fixes not fully effective [XSA-446, CVE-2023-46836]. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-56901a79a1 2023-11-30 03:33:42.162617 -------------------------------------------------------------------------------- Name : xen Product : Fedora 38 Version : 4.17.2 Release : 5.fc38 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: x86/AMD: mismatch in IOMMU quarantine page table levels [XSA-445, CVE-2023-46835] x86: BTC/SRSO fixes not fully effective [XSA-446, CVE-2023-46836] -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 14 2023 Michael Young - 4.17.2-5 - x86/AMD: mismatch in IOMMU quarantine page table levels [XSA-445, CVE-2023-46835] - x86: BTC/SRSO fixes not fully effective [XSA-446, CVE-2023-46836] -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-56901a79a1' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Crucial update for Fedora 38 focusing on rectifying IOMMU discrepancies and boosting efficiency for BTC/SRSO adjustments.. Fedora 38 Update,Xen IOMMU Issues,BTC SRSO Fixes. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 30, 2023 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issueFedora

Fedora 38: 2023-703f133eb3 High Risk Xen Security Issues

3 security issues (#2180425) x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332] x86/HVM pinned cache attributes mis-handling [XSA-428, CVE-2022-42333, CVE-2022-42334] x86: speculative vulnerability in 32bit SYSCALL path [XSA-429, CVE-2022-42331]. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-703f133eb3 2023-03-26 00:18:16.306542 --------------------------------------------------------------------------------Name : xen Product : Fedora 38 Version : 4.17.0 Release : 8.fc38 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor --------------------------------------------------------------------------------Update Information: 3 security issues (#2180425) x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332] x86/HVM pinned cache attributes mis-handling [XSA-428, CVE-2022-42333, CVE-2022-42334] x86: speculative vulnerability in 32bit SYSCALL path [XSA-429, CVE-2022-42331] --------------------------------------------------------------------------------ChangeLog: * Tue Mar 21 2023 Michael Young - 4.17.0-8 - 3 security issues (#2180425) x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332] x86/HVM pinned cache attributes mis-handling [XSA-428, CVE-2022-42333, CVE-2022-42334] x86: speculative vulnerability in 32bit SYSCALL path [XSA-429, CVE-2022-42331] --------------------------------------------------------------------------------References: [ 1 ] Bug #2180424 - CVE-2022-42331 CVE-2022-42333 CVE-2022-42334 CVE-2022-42332 xen: Xen Security Advisory https://bugzilla.redhat.com/show_bug.cgi?id=2180424 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program.Use su -c 'dnf upgrade --advisory FEDORA-2023-703f133eb3' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Fedora 38 features key updates that tackle critical vulnerabilities in the Xen hypervisor, improving the security of virtualized environments and system integrity. Xen Hypervisor,Fedora Update Notification,Security Issues,Xen Threats. . LinuxSecurity.com Team

Calendar 2 Mar 26, 2023 Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraprivilege escalation

Fedora 36 Security Alert: Critical Local Escalation in Open-VM-Tools

Security fix for CVE-2022-31676. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-cd23eac6f4 2022-09-08 11:01:41.721693 --------------------------------------------------------------------------------Name : open-vm-tools Product : Fedora 36 Version : 12.0.5 Release : 3.fc36 URL : https://github.com/vmware/open-vm-tools Summary : Open Virtual Machine Tools for virtual machines hosted on VMware Description : The open-vm-tools project is an open source implementation of VMware Tools. It is a suite of open source virtualization utilities and drivers to improve the functionality, user experience and administration of VMware virtual machines. This package contains only the core user-space programs and libraries of open-vm-tools. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2022-31676 --------------------------------------------------------------------------------ChangeLog: * Sun Sep 4 2022 John Wolfe - 12.0.5-3 - Add patch 1205-Properly-check-authorization-on-incoming-guestOps-re.patch to fix CVE-2022-31676 in open-vm-tools 12.0.5 tracked in PR 120976. - Correct build requirements - replace systemd-rpm-macros with systemd_udev. * Fri Jul 22 2022 Fedora Release Engineering - 12.0.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #2118714 - CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine https://bugzilla.redhat.com/show_bug.cgi?id=2118714 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-cd23eac6f4' at the command line. For more information, refer to the dnf documentation availableat https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Essential security patch for open-vm-tools tackling local privilege escalation. Update using dnf on Fedora 36.. open-vm-tools security fix,Fedora security update,local root escalation,open source security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 08, 2022 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoravulnerability

Fedora 36: 2022-0142d562ca Critical: Xen Race Condition Risk

stop building for ix86 and armv7hl due to missing build dependency x86 pv: Race condition in typeref acquisition [XSA-401, CVE-2022-26362] x86 pv: Insufficient care with non-coherent mappings [ XSA-402, CVE-2022-26363, CVE-2022-26364] ---- Split qemu-user-static into per-arch subpackages (bz 2061584). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-0142d562ca 2022-06-22 00:46:07.353356 --------------------------------------------------------------------------------Name : xen Product : Fedora 36 Version : 4.16.1 Release : 2.fc36 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor --------------------------------------------------------------------------------Update Information: stop building for ix86 and armv7hl due to missing build dependency x86 pv: Race condition in typeref acquisition [XSA-401, CVE-2022-26362] x86 pv: Insufficient care with non-coherent mappings [ XSA-402, CVE-2022-26363, CVE-2022-26364] ---- Split qemu-user-static into per-arch subpackages (bz 2061584) --------------------------------------------------------------------------------ChangeLog: * Sat Jun 11 2022 Michael Young - 4.16.1-2 - stop building for ix86 and armv7hl due to missing build dependency - x86 pv: Race condition in typeref acquisition [XSA-401, CVE-2022-26362] - x86 pv: Insufficient care with non-coherent mappings [ XSA-402, CVE-2022-26363, CVE-2022-26364] - additional patches so above applies cleanly --------------------------------------------------------------------------------References: [ 1 ] Bug #2061584 - qemu-user-static needs to be broken into separate package per arch. https://bugzilla.redhat.com/show_bug.cgi?id=2061584 --------------------------------------------------------------------------------Thisupdate can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-0142d562ca' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Fedora 36 has released important updates for the Xen vulnerabilities XSA-401 and XSA-402, aimed at protecting users managing virtual machines. Xen Hypervisor, Security Update, Virtual Machine Management, Fedora Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 21, 2022 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here