Alerts This Week
Warning Icon 1 609
Alerts This Week
Warning Icon 1 609

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Calendar White Jun 05, 2026
Important
Fedora Large Esm H800
Fedora

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Calendar White Jun 05, 2026
Critical
Fedora Large Esm H900
Fedora

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Calendar White Jun 05, 2026
high
Fedora Large Esm H800
Fedora

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorybuffer overflowfile overwrite

openSUSE: wget2 Important Buffer Overflow Fixes CVE-2025-69194 2026:0010-1

An update that fixes two vulnerabilities is now available.. openSUSE Security Update: Security update for wget2 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2026:0010-1 Rating: important References: #1255728 #1255729 Cross-References: CVE-2025-69194 CVE-2025-69195 Affected Products: openSUSE Backports SLE-15-SP6 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for wget2 fixes the following issues: - Update to release 2.2.1 * Fix file overwrite issue with metalink [CVE-2025-69194 bsc#1255728] * Fix remote buffer overflow in get_local_filename_real() [CVE-2025-69195 bsc#1255729] * Fix a redirect/mirror regression from 400713ca * Use the local system timestamp when requested via --no-use-server-timestamps * Prevent file truncation with --no-clobber * Improve messages about why URLs are not being followed * Fix metalink with -O/--output-document * Fix sorting of metalink mirrors by priority * Add --show-progress to improve backwards compatibility to wget * Fix buffer overflow in wget_iri_clone() after wget_iri_set_scheme() * Allow 'no_' prefix in config options * Use libnghttp2 for HTTP/2 testing * Set exit status to 8 on 403 response code * Fix convert-links * Fix --server-response for HTTP/1.1 - Update to release 2.2.0 * Don't truncate file when -c and -O are combined * Don't log URI userinfo to logs * Fix downloading multiple files via HTTP/2 * Support connecting with HTTP/1.0 proxies * Ignore 1xx HTTP responses for HTTP/1.1 * Disable TCP Fast Open by default * Fix segfault when OCSP response is missing * Add libproxy support Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods likeYaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP6: zypper in -t patch openSUSE-2026-10=1 Package List: - openSUSE Backports SLE-15-SP6 (aarch64 i586 ppc64le s390x x86_64): libwget4-2.2.1-bp156.2.3.1 wget2-2.2.1-bp156.2.3.1 wget2-devel-2.2.1-bp156.2.3.1 References: https://www.suse.com/security/cve/CVE-2025-69194.html https://www.suse.com/security/cve/CVE-2025-69195.html https://bugzilla.suse.com/1255728 https://bugzilla.suse.com/1255729 . An important update is available for openSUSE to fix multiple issues in wget2, including critical buffer overflows.. openSUSE wget2 update important buffer overflow file overwrite. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 12, 2026 Important OpenSUSE
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryimportantpath traversal

Mageia 9: wget2 Important Path Traversal Fix MGASA-2026-0002 CVE-2025-69194

MGASA-2026-0002 - Updated wget2 packages fix security vulnerability. MGASA-2026-0002 - Updated wget2 packages fix security vulnerability Publication date: 10 Jan 2026 URL: https://advisories.mageia.org/MGASA-2026-0002.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-69194 Description: Arbitrary File Write via Metalink Path Traversal in GNU Wget2. (CVE-2025-69194) References: - https://bugs.mageia.org/show_bug.cgi?id=34947 - https://www.openwall.com/lists/oss-security/2026/01/07/1 - https://www.cve.org/CVERecord?id=CVE-2025-69194 SRPMS: - 9/core/wget2-2.0.1-1.1.mga9 . Updated wget2 packages for Mageia fix critical path traversal security issue, affecting releases 9 and fix details.. wget2 security update, Mageia security advisory, file write vulnerability, path traversal exploit. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 10, 2026 Important Mageia
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoramemory corruption

Fedora 43: wget2 Critical Memory Corruption and File Write Issues 2026:01

New version 2.2.1. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-de1a91fe79 2026-01-08 01:26:39.511506+00:00 -------------------------------------------------------------------------------- Name : wget2 Product : Fedora 43 Version : 2.2.1 Release : 1.fc43 URL : https://gitlab.com/gnuwget/wget2 Summary : An advanced file and recursive website downloader Description : GNU Wget2 is the successor of GNU Wget, a file and recursive website downloader. Designed and written from scratch it wraps around libwget, that provides the basic functions needed by a web client. Wget2 works multi-threaded and uses many features to allow fast operation. In many cases Wget2 downloads much faster than Wget1.x due to HTTP2, HTTP compression, parallel connections and use of If-Modified-Since HTTP header. -------------------------------------------------------------------------------- Update Information: New version 2.2.1 -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 1 2026 LuK1337 - 2.2.1-1 - New version 2.2.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2425777 - CVE-2025-69195 wget2: GNU Wget2: Memory corruption and crash via filename sanitization logic with attacker-controlled URLs [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2425777 [ 2 ] Bug #2425778 - CVE-2025-69195 wget2: GNU Wget2: Memory corruption and crash via filename sanitization logic with attacker-controlled URLs [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2425778 [ 3 ] Bug #2425782 - CVE-2025-69194 wget2: Arbitrary File Write via Metalink Path Traversal in GNU Wget2 [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2425782 [ 4 ] Bug #2425783 - CVE-2025-69194 wget2: Arbitrary File Write via Metalink Path Traversal in GNU Wget2 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2425783 [ 5 ] Bug #2426325 - wget2-2.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2426325 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-de1a91fe79' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Explore critical updates for Fedora 43 wget2 version 2.2.1 addressing memory corruption and file write issues.. Fedora 43,Wget2 Update,Security Advisory,Memory Corruption,File Write. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 08, 2026 Important Fedora
99
Ls Advisories Slackware Esm H240
Price Tag 1security advisorysecurity issuecritical

Slackware: wget2 Critical Remote Buffer Overflow SSA:2025-364-02

New wget2 packages are available for Slackware 15.0 and -current to fix security issues.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] wget2 (SSA:2025-364-02) New wget2 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ patches/packages/wget2-2.2.1-i586-1_slack15.0.txz: Upgraded. This update fixes bugs and the following security issues: Fix file overwrite issue with metalink. Fix remote buffer overflow in get_local_filename_real(), Fix buffer overflow in wget_iri_clone() after wget_iri_set_scheme(). Shared library .so-version bump. (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you. Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/wget2-2.2.1-i586-1_slack15.0.txz Updated package for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/wget2-2.2.1-x86_64-1_slack15.0.txz Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/wget2-2.2.1-i686-1.txz Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/wget2-2.2.1-x86_64-1.txz MD5 signatures: +-------------+ Slackware 15.0 package: 06ccc5cb00d1bfae1cf28d8936f672e8 wget2-2.2.1-i586-1_slack15.0.txz Slackware x86_64 15.0 package: 64721c304ef80df73ad2dcd7b4086da2 wget2-2.2.1-x86_64-1_slack15.0.txz Slackware -current package: 1c46eafb055858059222b16252b4cb50 n/wget2-2.2.1-i686-1.txz Slackware x86_64 -current package: 4207ddd7bd3cce3e0eafe60c0a763d18 n/wget2-2.2.1-x86_64-1.txz Installationinstructions: +------------------------+ Upgrade the package as root: # upgradepkg wget2-2.2.1-i586-1_slack15.0.txz +-----+ . New wget2 packages address critical security issues in Slackware 15.0. Update recommended for all users to maintain safety.. Slackware wget2 update security critical issues buffer overflow. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 30, 2025 Critical Slackware
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here