Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
202
security advisorymoderatesecurity issueopenSUSE: xtrabackup Moderate Integer Overflow Issues 2025:0270-1
An update that fixes three vulnerabilities is now available. . openSUSE Security Update: Security update for xtrabackup ______________________________________________________________________________ Announcement ID: openSUSE-SU-2025:0270-1 Rating: moderate References: #1244333 #1244383 #1244389 Cross-References: CVE-2025-5914 CVE-2025-5916 CVE-2025-5917 CVSS scores: CVE-2025-5914 (SUSE): 1.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N CVE-2025-5916 (SUSE): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2025-5917 (SUSE): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: openSUSE Backports SLE-15-SP7 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for xtrabackup fixes the following issues: - CVE-2025-5916: Prevented signed integer overflow while reading warcfile (boo#1244383). - CVE-2025-5917: Fixed overflow in build_ustar_entry_name() (boo#1244333). - CVE-2025-5914: Fixed double free due to an integer overflow (boo#1244389). Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP7: zypper in -t patch openSUSE-2025-270=1 Package List: - openSUSE Backports SLE-15-SP7 (aarch64 i586 ppc64le s390x x86_64): xtrabackup-2.4.26-bp157.2.3.1 xtrabackup-test-2.4.26-bp157.2.3.1 References: https://www.suse.com/security/cve/CVE-2025-5914.html https://www.suse.com/security/cve/CVE-2025-5916.html https://www.suse.com/security/cve/CVE-2025-5917.html https://bugzilla.suse.com/1244333 https://bugzilla.suse.com/1244383 https://bugzilla.suse.com/1244389 . An enhancement for xtrabackup in openSUSE has now resolved significant concerns involving intermediate threats and integer overflow flaws.. openSUSE,xtrabackup,security update,integer overflow,security alert. . LinuxSecurity.com Team
Jul 27, 2025
OpenSUSE
202
security advisorymoderate severityinformation exposureopenSUSE 15 SP4: 2022:10212-1 Moderate: xtrabackup Information Exposure
An update that solves two vulnerabilities and has two fixes is now available. . openSUSE Security Update: Security update for xtrabackup ______________________________________________________________________________ Announcement ID: openSUSE-SU-2022:10212-1 Rating: moderate References: #1125418 #1135095 #1170644 #1205581 Cross-References: CVE-2020-10997 CVE-2020-29488 CVSS scores: CVE-2020-10997 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2020-10997 (SUSE): 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: openSUSE Backports SLE-15-SP4 ______________________________________________________________________________ An update that solves two vulnerabilities and has two fixes is now available. Description: This update for xtrabackup fixes the following issues: Update xtrabackup to version 2.4.26: - CVE-2020-10997: Information exposure via cmd line output and table history (boo#1170644) - CVE-2020-29488: Changes in how absolute paths are handled (boo#1205581) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP4: zypper in -t patch openSUSE-2022-10212=1 Package List: - openSUSE Backports SLE-15-SP4 (aarch64 i586 ppc64le s390x x86_64): xtrabackup-2.4.26-bp154.2.3.1 xtrabackup-test-2.4.26-bp154.2.3.1 References: https://www.suse.com/security/cve/CVE-2020-10997.html https://www.suse.com/security/cve/CVE-2020-29488.html https://bugzilla.suse.com/1125418 https://bugzilla.suse.com/1135095 https://bugzilla.suse.com/1170644 https://bugzilla.suse.com/1205581 . This release of the backup tool rectifies several vulnerabilities in Fedora, bolstering protection through enhancements and corrective actions.. openSUSE SecurityUpdate, xtrabackup Information Exposure, moderate Advisory. . LinuxSecurity.com Team
Nov 23, 2022
OpenSUSE
100
security advisorysecurity issueimportantSUSE: 2018:1771-1 Important: MariaDB Security Update and Fixes
An update that fixes 16 vulnerabilities is now available. . SUSE Security Update: Security update for mariadb, mariadb-connector-c, xtrabackup ______________________________________________________________________________ Announcement ID: SUSE-SU-2018:1771-1 Rating: important References: #1080891 #1082318 #1088681 #1092544 Cross-References: CVE-2018-2755 CVE-2018-2759 CVE-2018-2761 CVE-2018-2766 CVE-2018-2767 CVE-2018-2771 CVE-2018-2777 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2786 CVE-2018-2787 CVE-2018-2810 CVE-2018-2813 CVE-2018-2817 CVE-2018-2819 Affected Products: SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud 8 HPE Helion Openstack 8 ______________________________________________________________________________ An update that fixes 16 vulnerabilities is now available. Description: This MariaDB update to version 10.2.15 brings the following fixes and improvements. Security issues: - CVE-2018-2767: The embedded server library now supports SSL when connecting to remote servers (bsc#1088681). - Collected CVEs fixes: * 10.2.15: CVE-2018-2786, CVE-2018-2759, CVE-2018-2777, CVE-2018-2810, CVE-2018-2782, CVE-2018-2784, CVE-2018-2787, CVE-2018-2766, CVE-2018-2755, CVE-2018-2819, CVE-2018-2817, CVE-2018-2761, CVE-2018-2781, CVE-2018-2771, CVE-2018-2813 Bugfixes: - bsc#1092544: Update suse_skipped_tests.list and add tests that are failing with GCC 8. - bsc#1080891: Compile option DWITH_SYSTEMD=ON is no longer needed - systemd is detected automatically. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud Crowbar 8: zypper in -t patchSUSE-OpenStack-Cloud-Crowbar-8-2018-1197=1 - SUSE OpenStack Cloud 8: zypper in -t patch SUSE-OpenStack-Cloud-8-2018-1197=1 - HPE Helion Openstack 8: zypper in -t patch HPE-Helion-OpenStack-8-2018-1197=1 Package List: - SUSE OpenStack Cloud Crowbar 8 (noarch): mariadb-errormessages-10.2.15-4.3.1 - SUSE OpenStack Cloud Crowbar 8 (x86_64): libmariadb3-3.0.3-3.3.1 libmariadb3-debuginfo-3.0.3-3.3.1 mariadb-10.2.15-4.3.1 mariadb-client-10.2.15-4.3.1 mariadb-client-debuginfo-10.2.15-4.3.1 mariadb-connector-c-debugsource-3.0.3-3.3.1 mariadb-debuginfo-10.2.15-4.3.1 mariadb-debugsource-10.2.15-4.3.1 mariadb-galera-10.2.15-4.3.1 mariadb-tools-10.2.15-4.3.1 mariadb-tools-debuginfo-10.2.15-4.3.1 xtrabackup-2.4.10-4.3.1 xtrabackup-debuginfo-2.4.10-4.3.1 xtrabackup-debugsource-2.4.10-4.3.1 - SUSE OpenStack Cloud 8 (noarch): mariadb-errormessages-10.2.15-4.3.1 - SUSE OpenStack Cloud 8 (x86_64): libmariadb3-3.0.3-3.3.1 libmariadb3-debuginfo-3.0.3-3.3.1 mariadb-10.2.15-4.3.1 mariadb-client-10.2.15-4.3.1 mariadb-client-debuginfo-10.2.15-4.3.1 mariadb-connector-c-debugsource-3.0.3-3.3.1 mariadb-debuginfo-10.2.15-4.3.1 mariadb-debugsource-10.2.15-4.3.1 mariadb-galera-10.2.15-4.3.1 mariadb-tools-10.2.15-4.3.1 mariadb-tools-debuginfo-10.2.15-4.3.1 xtrabackup-2.4.10-4.3.1 xtrabackup-debuginfo-2.4.10-4.3.1 xtrabackup-debugsource-2.4.10-4.3.1 - HPE Helion Openstack 8 (x86_64): libmariadb3-3.0.3-3.3.1 libmariadb3-debuginfo-3.0.3-3.3.1 mariadb-10.2.15-4.3.1 mariadb-client-10.2.15-4.3.1 mariadb-client-debuginfo-10.2.15-4.3.1 mariadb-connector-c-debugsource-3.0.3-3.3.1 mariadb-debuginfo-10.2.15-4.3.1 mariadb-debugsource-10.2.15-4.3.1 mariadb-galera-10.2.15-4.3.1 mariadb-tools-10.2.15-4.3.1 mariadb-tools-debuginfo-10.2.15-4.3.1 xtrabackup-2.4.10-4.3.1 xtrabackup-debuginfo-2.4.10-4.3.1 xtrabackup-debugsource-2.4.10-4.3.1 - HPE Helion Openstack 8 (noarch): mariadb-errormessages-10.2.15-4.3.1 References: https://www.suse.com/security/cve/CVE-2018-2755.html https://www.suse.com/security/cve/CVE-2018-2759.html https://www.suse.com/security/cve/CVE-2018-2761.html https://www.suse.com/security/cve/CVE-2018-2766.html https://www.suse.com/security/cve/CVE-2018-2767.html https://www.suse.com/security/cve/CVE-2018-2771.html https://www.suse.com/security/cve/CVE-2018-2777.html https://www.suse.com/security/cve/CVE-2018-2781.html https://www.suse.com/security/cve/CVE-2018-2782.html https://www.suse.com/security/cve/CVE-2018-2784.html https://www.suse.com/security/cve/CVE-2018-2786.html https://www.suse.com/security/cve/CVE-2018-2787.html https://www.suse.com/security/cve/CVE-2018-2810.html https://www.suse.com/security/cve/CVE-2018-2813.html https://www.suse.com/security/cve/CVE-2018-2817.html https://www.suse.com/security/cve/CVE-2018-2819.html https://bugzilla.suse.com/1080891 https://bugzilla.suse.com/1082318 https://bugzilla.suse.com/1088681 https://bugzilla.suse.com/1092544 . SUSE has rolled out a Security Update addressing several vulnerabilities in postgresql, postgresql-client, and barman for OpenStack clients.. SUSE Update, MariaDB Fix, Security Patch, OpenStack Security, Database Security. . Severity: Important. LinuxSecurity.com Team
Jun 21, 2018
•Important
SuSE
202
security advisoryimportantopenSUSEopenSUSE 13.1: 2014:0333-1 Important: Disable Remote Version Check in Tools
An update that fixes one vulnerability is now available.. openSUSE Security Update: percona-toolkit,xtrabackup: disable remote version check ______________________________________________________________________________ Announcement ID: openSUSE-SU-2014:0333-1 Rating: important References: #864194 Cross-References: CVE-2014-2029 Affected Products: openSUSE 13.1 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: percona-toolkit and xtrabackup were updated: - disable automatic version check for all tools [bnc#864194] Prevents transmission of version information to an external host in the default configuration. CVE-2014-2029 Can be used by owner of a Percona Server (or an attacker who can control this destination for the client) to collect arbitrary MySQL configuration parameters and execute commands (with -v). Now the version check needs to be requested via command line or global/tool specific/user configuration. (--version-check) - added /etc/percona-toolkit/percona-toolkit.conf configuration directory and template configuration file Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 13.1: zypper in -t patch openSUSE-2014-184 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 13.1 (i586 x86_64): xtrabackup-2.1.7-13.2 xtrabackup-debuginfo-2.1.7-13.2 xtrabackup-debugsource-2.1.7-13.2 - openSUSE 13.1 (noarch): percona-toolkit-2.2.7-2.10.1 References: https://www.suse.com/security/cve/CVE-2014-2029.html -- . A critical patch for openSUSE turns off remote version checks in percona-toolkit and xtrabackup utilities.. Percona Toolkit Update, Xtrabackup Security Fix, Remote Check Disable. . Severity: Important.LinuxSecurity.com Team
Mar 06, 2014
•Important
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!