Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorydenial of servicepatch

SUSE: 2024:1129-2 Important: Expat DoS and XML Security Update

* bsc#1219559 * bsc#1221289 Cross-References: * CVE-2023-52425 . # Security update for expat Announcement ID: SUSE-SU-2024:1129-2 Rating: important References: * bsc#1219559 * bsc#1221289 Cross-References: * CVE-2023-52425 * CVE-2024-28757 CVSS scores: * CVE-2023-52425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52425 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-28757 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves two vulnerabilities can now be installed. ## Description: This update for expat fixes the following issues: * CVE-2023-52425: Fixed a DoS caused by processing large tokens. (bsc#1219559) * CVE-2024-28757: Fixed an XML Entity Expansion. (bsc#1221289) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1129=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * libexpat1-debuginfo-2.4.4-150400.3.17.1 * expat-debuginfo-2.4.4-150400.3.17.1 * expat-debugsource-2.4.4-150400.3.17.1 * libexpat1-2.4.4-150400.3.17.1 ## References: * https://www.suse.com/security/cve/CVE-2023-52425.html * https://www.suse.com/security/cve/CVE-2024-28757.html * https://bugzilla.suse.com/show_bug.cgi?id=1219559 * https://bugzilla.suse.com/show_bug.cgi?id=1221289 . Patch release for libxml addresses significant buffer overflow and XML processing vulnerabilities for Red Hat distributions, enhancing stability and protection.. SUSE Linux, expat update, DoS fix, XML issue, security patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 19, 2024 Important SuSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 30 php-robrichards-xmlseclibs1 Vulnerability: Signed Info Flaw

## 1.4.3 (12, Nov 2019) ### Security Improvements: - Insure only a single SignedInfo element exists within a signature during verification. Refs [CVE-2019-3465](https://nvd.nist.gov/vuln/detail/CVE-2019-3465).. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-1b95d7a131 2020-04-13 16:45:10.937085 --------------------------------------------------------------------------------Name : php-robrichards-xmlseclibs1 Product : Fedora 30 Version : 1.4.3 Release : 1.fc30 URL : https://github.com/robrichards/xmlseclibs Summary : A PHP library for XML Security (version 1) Description : xmlseclibs is a library written in PHP for working with XML Encryption and Signatures. NOTE: php-mcrypt will not be automatically installed as a dependency of this package so it will need to be "manually" installed if it is required --specifically for the following XMLSecurityKey encryption types: - XMLSecurityKey::AES128_CBC - XMLSecurityKey::AES192_CBC - XMLSecurityKey::AES256_CBC - XMLSecurityKey::TRIPLEDES_CBC Autoloader: /usr/share/php/robrichards-xmlseclibs/autoload.php --------------------------------------------------------------------------------Update Information: ## 1.4.3 (12, Nov 2019) ### Security Improvements: - Insure only a single SignedInfo element exists within a signature during verification. Refs [CVE-2019-3465](https://nvd.nist.gov/vuln/detail/CVE-2019-3465). --------------------------------------------------------------------------------ChangeLog: * Sun Apr 5 2020 Shawn Iwinski - 1.4.3-1 - Update to 1.4.3 (RHBZ #1771533, CVE-2019-3465) - https://nvd.nist.gov/vuln/detail/CVE-2019-3465 * Thu Jan 30 2020 Fedora Release Engineering - 1.4.2-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Fri Jul 26 2019 Fedora Release Engineering - 1.4.2-8 - Rebuilt forhttps://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #1771533 - php-robrichards-xmlseclibs1-1.4.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1771533 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-1b95d7a131' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora Update Announcement for php-robrichards-xmlseclibs1 outlines enhancements for security and the procedure for applying updates.. php library, xml security, Fedora update, security advisory, signed info. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 13, 2020 Important Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 30 FEDORA-2019-dc90bf093b Critical: XML Security Update

## 2.1.1 CVE-2019-3465 / https://simplesamlphp.org/security/201911-01 ## 2.1.0 Backports changes from 3.0 branch. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-dc90bf093b 2019-11-15 03:54:31.619943 --------------------------------------------------------------------------------Name : php-robrichards-xmlseclibs Product : Fedora 30 Version : 2.1.1 Release : 1.fc30 URL : https://github.com/robrichards/xmlseclibs Summary : A PHP library for XML Security Description : xmlseclibs is a library written in PHP for working with XML Encryption and Signatures. NOTE: php-mcrypt will not be automatically installed as a dependency of this package so it will need to be "manually" installed if it is required --specifically for the following XMLSecurityKey encryption types: - XMLSecurityKey::AES128_CBC - XMLSecurityKey::AES192_CBC - XMLSecurityKey::AES256_CBC - XMLSecurityKey::TRIPLEDES_CBC Autoloader: /usr/share/php/RobRichards/XMLSecLibs/autoload.php --------------------------------------------------------------------------------Update Information: ## 2.1.1 CVE-2019-3465 / https://simplesamlphp.org/security/201911-01 ## 2.1.0 Backports changes from 3.0 branch --------------------------------------------------------------------------------ChangeLog: * Wed Nov 6 2019 Shawn Iwinski - 2.1.1-1 - Update to 2.1.1 (CVE-2019-3465) - https://simplesamlphp.org/security/201911-01 * Fri Jul 26 2019 Fedora Release Engineering - 2.0.1-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-dc90bf093b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPGkey. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora 30's update to php-robrichards-xmlseclibs enhances security against CVE-2019-3465, mitigating risks of XML parsing vulnerabilities and fostering safe development. php xml security updates, fedora 30 advisory, security update 2019, encryption library. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 14, 2019 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraCVE resolution

Fedora 29 CVE-2019-3465: php-robrichards-xmlseclibs Security Fix

## 2.1.1 CVE-2019-3465 / https://simplesamlphp.org/security/201911-01 ## 2.1.0 Backports changes from 3.0 branch. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-81f61cdceb 2019-11-15 03:20:21.101981 --------------------------------------------------------------------------------Name : php-robrichards-xmlseclibs Product : Fedora 29 Version : 2.1.1 Release : 1.fc29 URL : https://github.com/robrichards/xmlseclibs Summary : A PHP library for XML Security Description : xmlseclibs is a library written in PHP for working with XML Encryption and Signatures. NOTE: php-mcrypt will not be automatically installed as a dependency of this package so it will need to be "manually" installed if it is required --specifically for the following XMLSecurityKey encryption types: - XMLSecurityKey::AES128_CBC - XMLSecurityKey::AES192_CBC - XMLSecurityKey::AES256_CBC - XMLSecurityKey::TRIPLEDES_CBC Autoloader: /usr/share/php/RobRichards/XMLSecLibs/autoload.php --------------------------------------------------------------------------------Update Information: ## 2.1.1 CVE-2019-3465 / https://simplesamlphp.org/security/201911-01 ## 2.1.0 Backports changes from 3.0 branch --------------------------------------------------------------------------------ChangeLog: * Wed Nov 6 2019 Shawn Iwinski - 2.1.1-1 - Update to 2.1.1 (CVE-2019-3465) - https://simplesamlphp.org/security/201911-01 * Fri Jul 26 2019 Fedora Release Engineering - 2.0.1-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Sat Feb 2 2019 Fedora Release Engineering - 2.0.1-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-81f61cdceb' at the command line. For more information, refer to the dnfdocumentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora 29's php-robrichards-xmlseclibs package has a vulnerability (CVE-2019-3465) due to improper XML signature validation. Upgrade to 3.0.3 or later. Fedora Updates, XML Security, php-robrichards, CVE Fixes. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 14, 2019 Important Fedora
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicesecurity issue

Debian: DSA-4265-1 Critical: Apache XML Security Denial Of Service

It was discovered that the Apache XML Security for C++ library performed insufficient validation of KeyInfo hints, which could result in denial of service via NULL pointer dereferences when processing malformed XML data. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4265-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff August 05, 2018 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : xml-security-c CVE ID : not yet available It was discovered that the Apache XML Security for C++ library performed insufficient validation of KeyInfo hints, which could result in denial of service via NULL pointer dereferences when processing malformed XML data. For the stable distribution (stretch), this problem has been fixed in version 1.7.3-4+deb9u1. We recommend that you upgrade your xml-security-c packages. For the detailed security status of xml-security-c please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/xml-security-c Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . The C++ library for Apache XML Security has received updates to fix vulnerabilities related to denial of service attacks. Ensure your system is updated promptly.. Debian, XML Security, Denial Of Service, Apache Library. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 05, 2018 Critical Debian
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 20 Batik Security Advisory: CVE-2015-0250 Critical Threat

Security fix for CVE-2015-0250. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-8745 2015-05-25 20:38:00 -------------------------------------------------------------------------------- Name : batik Product : Fedora 20 Version : 1.8 Release : 0.12.svn1230816.fc20 URL : https://xmlgraphics.apache.org/batik/ Summary : Scalable Vector Graphics for Java Description : Batik is a Java(tm) technology based toolkit for applications that want to use images in the Scalable Vector Graphics (SVG) format for various purposes, such as viewing, generation or manipulation. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-0250 -------------------------------------------------------------------------------- ChangeLog: * Thu May 21 2015 Michal Srb - 1.8-0.12.svn1230816 - Disable external xml entities - Resolves: CVE-2015-0250 * Thu Jan 16 2014 Stanislav Ochotnicky - 1.8-0.11.svn1230816 - Fix classpath for slideshow script - Change javadoc task maxmem to 512MB to avoid OOM -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update batik' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . Essential patch released for Fedora 20's batik addressing CVE-2015-0250, improving SVG management and bolstering security measures.. Fedora Updates, BatikSecurity, SVG Java Toolkit. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 04, 2015 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here