Examining BootHole: Security Software Under Threat From Exploits
Recent BootHole vulnerabilities reconfirm that security functions require additional scrutiny to protect users and systems from dangerous exploits.
Security Vulnerabilities - Page 19
Langflow 1.9.0 Advisory CVE-2026-5027 High File Write Threat
Attackers are actively exploiting a high-severity vulnerability in Langflow, an open-source platform used to build and run AI workflows. ...
Actively Exploited Chromium V8 Zero-Day: What Linux Admins Need to Know
CISA added CVE-2026-11645 to its Known Exploited Vulner...
IronWorm Supply Chain Threat from Linux Credential Theft
IronWorm steals credentials and uses them to spread bey...
Discover Security Vulnerabilities News
Zoom: Researcher Mazin Ahmed Exposes Multiple Vulnerabilities at DEF CON 28
Security researcher Mazin Ahmed demonstrated multiple serious vulnerabilities in the popular Zoom app, two of which impact Linux users, at DEF CON 28.
Debian & Ubuntu: GRUB2 Boot Issues Resolved Following BootHole Fixes
The recent GRUB2 patches that were released to mitigate critical BootHole vulnerabilities also caused boot failure issues for some users. Luckily, fixes for these regressions have started appearing for some distros, including Debian and Ubuntu.
NSA: BootHole Guidance On Mitigating Buffer Overflow Risk On Linux
The NSA has issued mitigation guidance for a recently-discovered BootHole vulnerability impacting Linux and Windows systems.
Red Hat and CentOS: Boot Issues Due to BootHole Security Patch
Patches issued to fix a recent BootHole vulnerability have rendered RedHat and CentOS systems unbootable.
KDE: ARK Tool Flaw Allows Hackers To Execute Code Remotely
A dangerous vulnerability has been discovered in the default Linux KDE extraction utility called ARK that allows malicious actors to overwrite files or execute code on victims' computers by tricking them into downloading an archive and extracting it.
BootHole Vulnerability Alert: Secure Boot Impacting Linux And Windows
A dangerous new vulnerability has been discovered in Secure Boot that affects a huge number of Linux and Windows systems that use the UEFI specification during boot.
Google Chrome Urgent Update: CERT-In Advises To Avoid DoS Attacks
CERT-In is urging Google Chrome users to upgrade immediately to the new version of the Chrome browser to protect sensitive information on their machines and prevent contact spoofing and denial of service (DoS) attacks exploiting Chrome vulnerabilities.
Bluetooth Reconnection Flaw: Spoofing Risk for IoT Devices
Purdue University security researchers recently discovered a vulnerability affecting IoT devices running Bluetooth which could lead to spoofing attacks. The vulnerability has a broad impact on mainstream platforms that support BLE communications, including Linux, Android and iOS.
Rust: Crates.io Token Revocation Due To Serious Security Flaw
The project behind the Rust programming language has revoked all API keys from its package web app. These API keys were not randomly generated and were being stored in plain text.
Home Router Security Report: Critical Flaws Detected Across Vendors
A new report reveals that common home routers from Netgear, Linksys, D-Link and other vendors contain serious security vulnerabilities that even updates don’t fix. While Linux can be a very secure OS in theory, researchers have found that many of these vulnerable routers are powered by very old versions of Linux that lack support and are riddled with security issues as a result.
Identifying Serious Security Vulnerabilities Present in Home Routers
Did you know that your router could be the biggest security hole in your network?
F5: BIG-IP Security Advisory Critical Severity Patch Required
Have you heard that F5 has patched a severe security vulnerability in its BIG-IP product? The bug can be exploited by attackers over the Internet to gain access to the TMUI component, which runs on top of a Tomcat server on BIG-IP's Linux-based operating system.
Nvidia Driver Update: Six Bugs Resolved, Including Code Execution Risk
Nvidia has released a set of security updates to remove six vulnerabilities in the Nvidia GPU Display Driver impacting both Linux and Windows machines.
VLC Media Player 3.0.11: Critical Security Fix For Remote Code Execution
Have you heard that VideoLAN has released a new version of VLC Media Player to resolve a critical security vulnerability that could eventually allow for remote code execution?
Two Distinct Exploits Target Intel SGX: Threats to Crypto Keys and Data
For the past two years, Intel CPUs have been under siege by an unending series of attacks that make it possible for cybercriminals to pluck passwords, encryption keys, and other secrets out of silicon-resident memory. New security research reveals that Intel's speculative execution flaws go deeper and are even harder to fix than we initially thought.
Linus Torvalds Rejects AWS Patch For Intel CPU Snoop Attack
After much debate, Linus Torvalds has rejected a controversial patch to address potential leaks of secrets from a CPU's cores.
Firefox: Latest Update Resolves Critical Data Leakage Issue
Have you heard about the cryptographic data leakage in Firefox's latest security update? It has now been fixed. Learn how to check if you have the update - and be sure to install it immediately if you do not.
Discovery of 26 USB Bugs in Linux, Windows, macOS and FreeBSD
A new fuzzing tool, USBFuzz, has identified 18 USB bugs impacting Linux. Eleven have already been patched.
Huawei Denies Involvement In Insecure Linux Kernel Patch Submission
Huawei has denied having any official involvement in an insecure patch submitted to the Linux kernel project over the weekend, which introduced a "trivially exploitable" vulnerability. According to the tech giant, an employee submitted code as part of a personal project, not on behalf of the company.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!