Alerts This Week
Warning Icon 1 687
Alerts This Week
Warning Icon 1 687

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 2 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of servicesoftware update

Ubuntu 22.04 LTS USN-7177-1: YARA Denial of Service Issue

YARA could be made to crash if it received specially crafted input.. ========================================================================== Ubuntu Security Notice USN-7177-1 December 18, 2024 yara vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: YARA could be made to crash if it received specially crafted input. Software Description: - yara: Pattern matching swiss knife for malware researchers Details: It was discovered that YARA did not properly sanitize its configuration settings. An attacker could potentially exploit this issue to cause a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS libyara8 4.1.3-1ubuntu0.1~esm1 Available with Ubuntu Pro yara 4.1.3-1ubuntu0.1~esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7177-1 CVE-2021-45429 . The Ubuntu Security Announcement USN-7178-1 addresses a vulnerability in Bind that impacts LTS releases, providing users with secure measures to rectify the issue.. Yara Update, Ubuntu LTS Security, Denial of Service Issue, Software Vulnerability. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 18, 2024 Important Ubuntu
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

Fedora 36: 2022-21cf5402fc Moderate: YARA 4.2.3 Malware Update

Update to yara-4.2.3 ---- Update to 4.2.0 ---- Update to 4.2.2. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-21cf5402fc 2022-08-17 01:05:09.336585 --------------------------------------------------------------------------------Name : yara Product : Fedora 36 Version : 4.2.3 Release : 1.fc36 URL : https://virustotal.github.io/yara/ Summary : Pattern matching Swiss knife for malware researchers Description : YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or whatever you want to describe) based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strings and a Boolean expression which determine its logic. --------------------------------------------------------------------------------Update Information: Update to yara-4.2.3 ---- Update to 4.2.0 ---- Update to 4.2.2 --------------------------------------------------------------------------------ChangeLog: * Tue Aug 9 2022 Mikel Olasagasti Uranga - 4.2.3-1 - Update to 4.2.3 (#2116594) * Sat Jul 23 2022 Fedora Release Engineering - 4.2.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jul 18 2022 Mikel Olasagasti Uranga - 4.2.2-1 - Update to 4.2.2 (#2103444) - BUGFIX: Fix buffer overrun in "dex" module (#1728). - BUGFIX: Wrong offset used when checking Version string of .net metadata (#1708). - BUGFIX: YARA doesn't compile if --with-debug-verbose flag is enabled (#1719). - BUGFIX: Null-pointer dereferences while loading corrupted compiled rules (#1727). * Mon May 23 2022 Michal Ambroz - 4.2.1-1 - bump to 4.2.1 - adding changes based on proposal of Mikel Olasagasti Uranga: - change to BSD license as yara was relicensed in 2016 - minor changes to spec, like using https for URL - remove old patches - enable checks * Sat Mar 12 2022Michal Ambroz - 4.2.0-1 - bump to 4.2.0 * Thu Feb 17 2022 Michal Ambroz - 4.2.0-0.rc1.1 - bump to 4.2.0-rc1 --------------------------------------------------------------------------------References: [ 1 ] Bug #2112508 - Update yara to 4.2.2 https://bugzilla.redhat.com/show_bug.cgi?id=2112508 [ 2 ] Bug #2116289 - F36FailsToInstall: python3-yara https://bugzilla.redhat.com/show_bug.cgi?id=2116289 [ 3 ] Bug #2116594 - yara-4.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2116594 [ 4 ] Bug #2117081 - F36FailsToInstall: python3-yara https://bugzilla.redhat.com/show_bug.cgi?id=2117081 [ 5 ] Bug #2117161 - python-yara-4.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2117161 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-21cf5402fc' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The latest YARA upgrade for Fedora 36 fixes issues and enhances various functionalities for identifying malicious software.. Fedora 36,YARA Update,MalwareDetection,Security Notification. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 16, 2022 Important Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraupdate information

Fedora 30: YARA Security Update - Critical Malware Detection Fix

update to the bugfix release 3.9.0. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-c3627a0e7a 2019-04-10 02:47:32.732625 --------------------------------------------------------------------------------Name : yara Product : Fedora 30 Version : 3.9.0 Release : 1.fc30 URL : https://virustotal.github.io/yara/ Summary : Pattern matching Swiss knife for malware researchers Description : YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or whatever you want to describe) based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strings and a Boolean expression which determine its logic. --------------------------------------------------------------------------------Update Information: update to the bugfix release 3.9.0 --------------------------------------------------------------------------------References: [ 1 ] Bug #1660398 - CVE-2018-19974 CVE-2018-19975 CVE-2018-19976 yara: Multiple issues [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1660398 [ 2 ] Bug #1680203 - yara-3.9.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1680203 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-c3627a0e7a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . YARA enhances cybersecurity research capabilities within Fedora through timely security patches, boosting accuracy in identification and categorization.. YARA Update, Fedora Security, Malware Detection, Bugfix Release. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 09, 2019 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorabugfix

Fedora: 2017-1d46019681 Critical: Yara Bugfix for Malware Detection

bump to 3.6.3 release - bugfix CVE-2017-11328. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-1d46019681 2017-07-24 17:29:46.085217 --------------------------------------------------------------------------------Name : yara Product : Fedora 25 Version : 3.6.3 Release : 1.fc25 URL : https://virustotal.github.io/yara/ Summary : Pattern matching Swiss knife for malware researchers Description : YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or whatever you want to describe) based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strings and a Boolean expression which determine its logic. --------------------------------------------------------------------------------Update Information: bump to 3.6.3 release - bugfix CVE-2017-11328 --------------------------------------------------------------------------------References: [ 1 ] Bug #1471490 - yara-3.6.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1471490 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade yara' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian 9.2 kernel upgrade announcement featuresimprovements for CVE-2017-12345, boosting system stability.. Fedora Updates, Malware Research, Yara Tool, Security Fixes. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 25, 2017 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 25: 2017-fa52efdf32 Critical: yara Buffer Over-Read

Security fix for CVE-2017-9304, CVE-2017-9465. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-fa52efdf32 2017-07-11 18:56:33.226328 --------------------------------------------------------------------------------Name : yara Product : Fedora 25 Version : 3.6.2 Release : 1.fc25 URL : https://virustotal.github.io/yara/ Summary : Pattern matching Swiss knife for malware researchers Description : YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or whatever you want to describe) based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strings and a Boolean expression which determine its logic. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2017-9304, CVE-2017-9465 --------------------------------------------------------------------------------References: [ 1 ] Bug #1459490 - CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function https://bugzilla.redhat.com/show_bug.cgi?id=1459490 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade yara' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Thelatest Yara patch for Fedora 25 tackles urgent vulnerabilities, significantly improving threat identification mechanisms.. Fedora Yara Update, Malware Detection Tool, Security Notification. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 12, 2017 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycritical issueFedora

Fedora 24: Security Fix for Yara Critical Buffer Over-Read

Security fix for CVE-2017-9304, CVE-2017-9465. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-47487b1223 2017-07-11 18:56:33.205627 --------------------------------------------------------------------------------Name : yara Product : Fedora 24 Version : 3.6.2 Release : 1.fc24 URL : https://virustotal.github.io/yara/ Summary : Pattern matching Swiss knife for malware researchers Description : YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or whatever you want to describe) based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strings and a Boolean expression which determine its logic. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2017-9304, CVE-2017-9465 --------------------------------------------------------------------------------References: [ 1 ] Bug #1459490 - CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function https://bugzilla.redhat.com/show_bug.cgi?id=1459490 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade yara' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. .Investigate the Fedora 24 Yara security patch addressing severe buffer over-read vulnerabilities and additional enhancements in malware identification utilities.. Fedora 24 Update, Yara Security Patch, Malware Research Tools. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 12, 2017 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorabuffer overflow

Fedora 26 2017-156d12fa2f Critical: Yara Buffer Overflow Fix

Security fix for CVE-2017-9304, CVE-2017-9465. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-156d12fa2f 2017-07-11 18:55:55.744367 --------------------------------------------------------------------------------Name : yara Product : Fedora 26 Version : 3.6.2 Release : 1.fc26 URL : https://virustotal.github.io/yara/ Summary : Pattern matching Swiss knife for malware researchers Description : YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or whatever you want to describe) based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strings and a Boolean expression which determine its logic. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2017-9304, CVE-2017-9465 --------------------------------------------------------------------------------References: [ 1 ] Bug #1459490 - CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function https://bugzilla.redhat.com/show_bug.cgi?id=1459490 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade yara' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Discover the Debian 9 security patchtargeting severe vulnerabilities to improve cybersecurity analysis frameworks.. Fedora Yara Update, Malware Analysis, Security Enhancement, Buffer Overflow, Threat Detection. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 11, 2017 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderatefedora

Fedora 25: FEDORA-2017-926e11c76e Moderate: YARA Security Fixes

Update to a bugfix release of yara.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-926e11c76e 2017-06-17 19:40:29.228745 --------------------------------------------------------------------------------Name : yara Product : Fedora 25 Version : 3.6.0 Release : 1.fc25 URL : https://virustotal.github.io/yara/ Summary : Pattern matching Swiss knife for malware researchers Description : YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or whatever you want to describe) based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strings and a Boolean expression which determine its logic. --------------------------------------------------------------------------------Update Information: Update to a bugfix release of yara. --------------------------------------------------------------------------------References: [ 1 ] Bug #1440739 - CVE-2016-10210 CVE-2016-10211 CVE-2017-5923 CVE-2017-5924 yara: Multiple security issues [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1440739 [ 2 ] Bug #1451383 - CVE-2017-8929 yara: Use-after-free in sized_string_cmp function [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1451383 [ 3 ] Bug #1451384 - CVE-2017-8929 yara: Use-after-free in sized_string_cmp function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1451384 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade yara' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Critical patch for YARA in Fedora 25 released, resolving several vulnerabilities. Details on the update process provided.. YARA Update, Fedora Security, Malware Detection, Security Fixes. . LinuxSecurity.com Team

Calendar 2 Jun 18, 2017 Fedora
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here