Alerts This Week
Warning Icon 1 537
Alerts This Week
Warning Icon 1 537

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisoryfile disclosurelocal attacker

Scientific Linux SL6: Low Severity xorg-x11-server Security Advisory

Low: xorg-x11-server security and bug fix update. Date: Mon, 9 Jul 2012 10:00:28 -0500 Reply-To: This email address is being protected from spambots. You need JavaScript enabled to view it. Sender: Security Errata for Scientific Linux From: Patrick Riehecky Subject: Security ERRATA Low: xorg-x11-server on SL6.x i386/x86_64 Comments: To: This email address is being protected from spambots. You need JavaScript enabled to view it. Synopsis: Low: xorg-x11-server security and bug fix update Issue Date: 2012-06-20 CVE Numbers: CVE-2011-4029 CVE-2011-4028 X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. A flaw was found in the way the X.Org server handled lock files. A local user with access to the system console could use this flaw to determine the existence of a file in a directory not accessible to the user, via a symbolic link attack. (CVE-2011-4028) A race condition was found in the way the X.Org server managed temporary lock files. A local attacker could use this flaw to perform a symbolic link attack, allowing them to make an arbitrary file world readable, leading to the disclosure of sensitive information. (CVE-2011-4029) This update also fixes the following bugs: * Prior to this update, the KDE Display Manager (KDM) could pass invalid 24bpp pixmap formats to the X server. As a consequence, the X server could unexpectedly abort. This update modifies the underlying code to pass the correct formats. * Prior to this update, absolute input devices, like the stylus of a graphic tablet, could become unresponsive in the right-most or bottom-most screen if the X server was configured as a multi-screen setup through multiple "Device" sections in the xorg.conf file. This update changes the screen crossing behavior so that absolute devices are always mapped across all screens. * Prior to this update, the misleading message "Session active, not inhibited, screen idle. If you see this test, your display server is broken and you should notify your distributor." could be displayed after resuming the system or re-enablingthe display, and included a URL to an external web page. This update removes this message. * Prior to this update, the erroneous input handling code of the Xephyr server disabled screens on a screen crossing event. The focus was only on the screen where the mouse was located and only this screen was updated when the Xephyr nested X server was configured in a multi-screen setup. This update removes this code and Xephyr now correctly updates screens in multi-screen setups. * Prior to this update, raw events did not contain relative axis values. As a consequence, clients which relied on relative values for functioning did not behave as expected. This update sets the values to the original driver values instead of the already transformed values. Now, raw events contain relative axis values as expected. All users of xorg-x11-server are advised to upgrade to these updated packages, which correct these issues. All running X.Org server instances must be restarted for this update to take effect. SL6: i386 xorg-x11-server-common-1.10.6-1.sl6.i686.rpm xorg-x11-server-debuginfo-1.10.6-1.sl6.i686.rpm xorg-x11-server-devel-1.10.6-1.sl6.i686.rpm xorg-x11-server-Xdmx-1.10.6-1.sl6.i686.rpm xorg-x11-server-Xephyr-1.10.6-1.sl6.i686.rpm xorg-x11-server-Xnest-1.10.6-1.sl6.i686.rpm xorg-x11-server-Xorg-1.10.6-1.sl6.i686.rpm xorg-x11-server-Xvfb-1.10.6-1.sl6.i686.rpm noarch xorg-x11-server-source-1.10.6-1.sl6.noarch.rpm x86_64 xorg-x11-server-common-1.10.6-1.sl6.x86_64.rpm xorg-x11-server-debuginfo-1.10.6-1.sl6.i686.rpm xorg-x11-server-debuginfo-1.10.6-1.sl6.x86_64.rpm xorg-x11-server-devel-1.10.6-1.sl6.i686.rpm xorg-x11-server-devel-1.10.6-1.sl6.x86_64.rpm xorg-x11-server-Xdmx-1.10.6-1.sl6.x86_64.rpm xorg-x11-server-Xephyr-1.10.6-1.sl6.x86_64.rpm xorg-x11-server-Xnest-1.10.6-1.sl6.x86_64.rpm xorg-x11-server-Xorg-1.10.6-1.sl6.x86_64.rpm xorg-x11-server-Xvfb-1.10.6-1.sl6.x86_64.rpm - Scientific Linux Development Team . A critical vulnerability in xorg-x11-server for Scientific Linux SL6 may allowunauthorized access, posing a risk of system compromise and breach. xorg-x11-server, bug fix, security advisories, local access, SL6. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Jul 09, 2012 Low Scientific Linux
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisoryremote executionimportant

Scientific Linux: Important Polkit Update CVE-2011-1485 Remote Exec

Important: polkit security update. Date: Tue, 19 Apr 2011 10:22:55 -0500 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Re: Security ERRATA Moderate: xorg-x11-server-utils on SL5.x, SL6.x i386/x86_64 Comments: To: "scientific-linux-errata@fnal.gov" In-Reply-To: MIME-Version: 1.0 * This security update applied a backported patch to fix a flaw in the X server resource database utility, xrdb. While this patch resolved the security issue, it also introduced an error in the macro expansion mechanism. Consequent to this, an attempt to run the xrdb utility could fail with the following messages written to standard error: sh: -c: line 0: unexpected EOF while looking for matching `"' sh: -c: line 1: syntax error: unexpected end of file With this update, the underlying source code has been adapted to correct the macro expansion mechanism, and the xrdb utility now works as expected. Note that all running instances of the X.Org server must be restarted for this update to take effect. SL 5.x SRPMS: xorg-x11-server-utils-7.1-5.el5_6.2.src.rpm i386: xorg-x11-server-utils-7.1-5.el5_6.2.i386.rpm x86_64: xorg-x11-server-utils-7.1-5.el5_6.2.x86_64.rpm SL 6.x SRPMS: xorg-x11-server-utils-7.4-15.el6_0.2.src.rpm i386: xorg-x11-server-utils-7.4-15.el6_0.2.i686.rpm x86_64: xorg-x11-server-utils-7.4-15.el6_0.2.x86_64.rpm - Scientific Linux Development Team On 04/12/2011 03:28 PM, Troy J Dawson wrote: > Synopsis: Moderate: xorg-x11-server-utils security update > Issue date: 2011-04-11 > CVE Names: CVE-2011-0465 > > A flaw was found in the X.Org X server resource database utility, xrdb. > Certain variables were not properly sanitized during the launch of a > user's graphical session, which could possibly allow a remote attacker > to execute arbitrary code with root privileges, if they were able to > make the display manager execute xrdb with a specially-crafted X client > hostname. For example, by configuring the hostname on the target system > via acrafted DHCP reply, or by using the X Display Manager Control > Protocol (XDMCP) to connect to that system from a host that has a > special DNS name. (CVE-2011-0465) > > All running X.Org server instances must be restarted for this update to > take effect. > > SL 5.x > > SRPMS: > xorg-x11-server-utils-7.1-5.el5_6.1.src.rpm > i386: > xorg-x11-server-utils-7.1-5.el5_6.1.i386.rpm > x86_64: > xorg-x11-server-utils-7.1-5.el5_6.1.x86_64.rpm > > SL 6.x > > SRPMS: > xorg-x11-server-utils-7.4-15.el6_0.1.src.rpm > i386: > xorg-x11-server-utils-7.4-15.el6_0.1.i686.rpm > x86_64: > xorg-x11-server-utils-7.4-15.el6_0.1.x86_64.rpm > > -Connie Sieh > -Troy Dawson > > > > -- __________________________________________________ Troy Dawson This email address is being protected from spambots. You need JavaScript enabled to view it. (630)840-6468 Fermilab ComputingDivision/SCF/FEF/SLSMS Group __________________________________________________ Date: Wed, 20 Apr 2011 14:30:51 -0500 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA Important: polkit on SL6.x i386/x86_64 Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it." MIME-Version: 1.0 Synopsis: Important: polkit security update Issue date: 2011-04-19 CVE Names: CVE-2011-1485 A race condition flaw was found in the PolicyKit pkexec utility and polkitd daemon. A local user could use this flaw to appear as a privileged user to pkexec, allowing them to execute arbitrary commands as root by running those commands with pkexec. (CVE-2011-1485) The system must be rebooted for this update to take effect. SL 6.x SRPMS: polkit-0.96-2.el6_0.1.src.rpm i386: polkit-0.96-2.el6_0.1.i686.rpm polkit-desktop-policy-0.96-2.el6_0.1.noarch.rpm polkit-devel-0.96-2.el6_0.1.i686.rpm polkit-docs-0.96-2.el6_0.1.i686.rpm x86_64: polkit-0.96-2.el6_0.1.i686.rpm polkit-0.96-2.el6_0.1.x86_64.rpm polkit-desktop-policy-0.96-2.el6_0.1.noarch.rpm polkit-devel-0.96-2.el6_0.1.i686.rpm polkit-devel-0.96-2.el6_0.1.x86_64.rpm polkit-docs-0.96-2.el6_0.1.x86_64.rpm - Scientific Linux DevelopmentTeam . Urgent openssl patch published to mitigate potential exploits on CentOS, necessitating immediate system restart.. polkit Security Update, Scientific Linux Fix, Remote Access Patch, Xorg Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 20, 2011 Important Scientific Linux
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here