Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryimportantwebdav

Mageia 9 Tomcat Important WebDAV HTTP/2 Security Fix MGASA-2026-0139

MGASA-2026-0139 - Updated tomcat packages fix security vulnerability. MGASA-2026-0139 - Updated tomcat packages fix security vulnerability Publication date: 15 May 2026 URL: https://advisories.mageia.org/MGASA-2026-0139.html Type: security Affected Mageia releases: 9 CVE: CVE-2026-41284, CVE-2026-41293, CVE-2026-42498, CVE-2026-43512, CVE-2026-43513, CVE-2026-43514, CVE-2026-43515 Description: Unbounded read in WebDAV LOCK and PROPFIND handling. (CVE-2026-41284) HTTP/2 request headers not validated. (CVE-2026-41293) WebSocket authentication header exposure. (CVE-2026-42498) Digest authenticator will authenticate any unknown user. (CVE-2026-43512) LockOutRealm treats user names as case-sensitive. (CVE-2026-43513) AJP secret compared in non-constant time. (CVE-2026-43514) Security constraints not correctly applied. (CVE-2026-43515) References: - https://bugs.mageia.org/show_bug.cgi?id=35523 - https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.118 - https://www.openwall.com/lists/oss-security/2026/05/12/8 - https://www.openwall.com/lists/oss-security/2026/05/12/9 - https://www.openwall.com/lists/oss-security/2026/05/12/10 - https://www.openwall.com/lists/oss-security/2026/05/12/11 - https://www.openwall.com/lists/oss-security/2026/05/12/12 - https://www.openwall.com/lists/oss-security/2026/05/12/13 - https://www.openwall.com/lists/oss-security/2026/05/12/14 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-41284 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-41293 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42498 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43512 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43513 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43514 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43515 SRPMS: - 9/core/tomcat-9.0.118-1.mga9 . Updated tomcat packages in Mageia resolve multiple security issues. Critical vulnerabilities fixed ensure safer applicationoperation.. Mageia tomcat security patch, Tomcat vulnerabilities, webdav security issues, http2 request validation. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 15, 2026 Important Mageia
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoolow severity

Gentoo: GLSA-200711-03 Low: Gallery WebDAV and Reupload Threats

The WebDAV and Reupload modules of Gallery contain multiple unspecified vulnerabilities.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200711-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Low Title: Gallery: Multiple vulnerabilities Date: November 01, 2007 Bugs: #191587 ID: 200711-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= The WebDAV and Reupload modules of Gallery contain multiple unspecified vulnerabilities. Background ========= Gallery is a PHP based photo album manager. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/gallery < 2.2.3 > = 2.2.3 Description ========== Merrick Manalastas and Nicklous Roberts have discovered multiple vulnerabilities in the WebDAV and Reupload modules. Impact ===== A remote attacker could exploit these vulnerabilities to bypass security restrictions and rename, replace and change properties of items, or edit item data using WebDAV. Workaround ========= There is no known workaround at this time. Resolution ========= All Gallery users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =www-apps/gallery-2.2.3" References ========= [ 1 ] CVE-2007-4650 https://www.cve.org/CVERecord?id=CVE-2007-4650 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200711-03 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2007 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - iD8DBQFHKnAWuhJ+ozIKI5gRAqGnAKCKzgiyzZZXPxkTkWyR3TPjjjXrkQCfT7TS s7zfZErUBINg8TgVkkrC9FY=nzXL -----END PGP SIGNATURE----- . Numerous unidentified problems detected in Gallery's WebDAV and Reupload components impacting Gentoo. Immediate patch needed.. Gallery Issues, Gentoo Security Advisory, WebDAV Threats. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Nov 02, 2007 Low Gentoo
Banner 1 1028x280 1708121660 1771599717
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentooremote execution

Gentoo: GLSA-200405-04 High: OpenOffice.org Remote Code Execution Risk

Several format string vulnerabilities are present in the Neon library included in OpenOffice.org, allowing remote execution of arbitrary code when connected to an untrusted WebDAV server. [More...]. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200405-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: OpenOffice.org vulnerability when using DAV servers Date: May 11, 2004 Bugs: #47926 ID: 200405-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Several format string vulnerabilities are present in the Neon library included in OpenOffice.org, allowing remote execution of arbitrary code when connected to an untrusted WebDAV server. Background ========= OpenOffice.org is an office productivity suite, including word processing, spreadsheets, presentations, drawings, data charting, formula editing, and file conversion facilities. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-office/openoffice = 1.1.1-r1 2 app-office/openoffice = 1.0.3-r2 3 app-office/openoffice = 1.1.0-r4 4 app-office/openoffice-ximian = 1.1.51-r1 5 app-office/openoffice-ximian-bin

Calendar 2 May 11, 2004 Gentoo
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorybuffer overflowdebian

Debian DSA 412-1: Addressing Moderate Nd Remote Execution Risk

Multiple vulnerabilities were discovered in nd, a command-line WebDAVinterface, whereby long strings received from the remote server couldoverflow fixed-length buffers. This vulnerability could be exploitedby a remote attacker in control of a malicious WebDAV server toexecute arbitrary code if the server was accessed by a vulnerableversion of nd.. - -------------------------------------------------------------------------- Debian Security Advisory DSA 412-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Matt Zimmerman January 5th, 2004 Debian -- Debian security FAQ - -------------------------------------------------------------------------- Package : nd Vulnerability : buffer overflows Problem-Type : remote Debian-specific: no CVE Ids : CAN-2004-0014 Multiple vulnerabilities were discovered in nd, a command-line WebDAV interface, whereby long strings received from the remote server could overflow fixed-length buffers. This vulnerability could be exploited by a remote attacker in control of a malicious WebDAV server to execute arbitrary code if the server was accessed by a vulnerable version of nd. For the current stable distribution (woody) this problem has been fixed in version 0.5.0-1woody1. For the unstable distribution (sid) this problem has been fixed in version 0.8.2-1. We recommend that you update your nd package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody - -------------------------------- Source archives: Size/MD5 checksum: 566d2e27c164d3544a251804570379eb44c Size/MD5 checksum: 3533 4a7b92e2df684bf7f312e3a827764671 Size/MD5 checksum: 52117 d07741e6323fdeb38a6b4549bca02c53 Alpha architecture: Size/MD5 checksum: 20650 c67cd2e49a3a61649ce5a452d55b05eb ARM architecture: Size/MD5 checksum: 18072 3837139e2a5beba99b59984bb748315d Intel IA-32 architecture: Size/MD5 checksum: 17314 5edd55545dc4a923333a67aea035e095 Intel IA-64 architecture: Size/MD5 checksum: 24434 a538a442a1bb1b7c1cd5ee64096a3a1b HP Precision architecture: Size/MD5 checksum: 20862 92c12defa016b8a577ddf4fb1d80fdc3 Motorola 680x0 architecture: Size/MD5 checksum: 16622 f61ea0df91f69157ef653b406af90871 Big endian MIPS architecture: Size/MD5 checksum: 19466 d4d60babdecee2e7612410eb8670b9df Little endian MIPS architecture: Size/MD5 checksum: 19470 e9a1e61cd15011fe1a30da782d3c7da9 PowerPC architecture: Size/MD5 checksum: 18204 fb699d5bb90844990c52495f3863ccfe IBM S/390 architecture: Size/MD5 checksum: 18212 65c7e34f77ddf46ebc4d10656772d055 Sun Sparc architecture: Size/MD5 checksum: 17420 6d172963ca07e2e6ca0a1ab2bf59f67a These files will probably be moved into the stable distribution on its next revision. - --------------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Multiple buffer overflows in Debian's nd package allow remote attackers to execute arbitrary code. Update recommended now.. Debian Security, Nd Exploit, WebDAV Server Risk. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 06, 2004 Important Debian
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here