Security Vulnerabilities 
security advisory critical
security advisory critical A newly disclosed FFmpeg vulnerability, known as PixelSmash ( CVE-2026-8461 ), affects the MagicYUV decoder and can be triggered by specially crafted video files. . Researchers demonstrated remote code execution against Jellyfin under specific conditions and found multiple Linux applications that could be exposed through normal media processing workflows. Even where code execution is not practical, the vulnerability can still be used to crash affected applications. What Is FFmpeg? FFmpeg is...
Jun 23, 2026 
Security Trends security advisory data protection
security advisory data protection Today, organizations rely heavily on technology for their operations, to secure important information and provide services in a digital world. Digital transformation opens up new opportunities, but also poses an increasing challenge for businesses and institutions in the field of cybersecurity. Data breaches, financial losses, reputational damage, and compliance issues are ongoing challenges for organizations in all industries due to security weaknesses and regulatory shortcomings. . With the...
Jun 23, 2026 
GovernmentEuropean Commission public sector
European Commission public sector Some of the software the world depends on most is maintained by people most users will never know by name. The project might be sitting inside Linux distributions, enterprise software, cloud platforms, and government systems without most users ever realizing it is there. . The problem is not difficult to find. Critical software components can end up supporting thousands of products and services while being maintained by small teams with limited resources. By the time a vulnerability,...
Jun 19, 2026 
Server Securitysecurity advisory privilege escalation
security advisory privilege escalation The recent Keystone advisory is unusual because the vulnerabilities are scattered across several features but keep affecting the same class of security controls. Application credentials, trusts, RBAC enforcement, project ownership validation, token expiration. Different code paths. Similar failures. . Most require authentication already. The concern is what happens after access exists. Several of the disclosed vulnerabilities affect how Keystone validates identity, ownership, delegation, and...
Jun 19, 2026 
Security Vulnerabilities security advisory authentication bypass
security advisory authentication bypass Fortinet has confirmed active exploitation of three FortiSandbox vulnerabilities . One allows attackers to bypass login controls, while the other two enable command execution directly on the appliance. Combined, they create a path from unauthenticated access to direct interaction with a system many organizations trust to analyze suspicious content. . In many environments, FortiSandbox sits between incoming content and the systems responsible for making security decisions about it. Before a...
Jun 18, 2026 
Refine news
X Clear Filters Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
Does sandboxing completely stop hackers?
Loading...
Explore Latest Linux Security news
We found -3 articles for you...
210
security updatekernel patchIntelRetbleed Issue Resolved: Linux Kernel 5.19 Release Delayed Due To Testing
Linus Torvalds says Retbleed has been addressed in the Linux kernel, but code complexity means the release will be delayed by a week to give more time for testing. . Linux kernel developers have successfully addressed Retbleed, the latest Spectre-like speculative execution attack against older AMD and Intel processors, Linus Torvalds wrote in a message to the Linux Kernel Mailing List on Sunday. However, the difficult repair process means there will be a delay of the release for Linux version 5.19 by a week. "I think we've got the retbleed fallout all handled (knock wood)," Torvalds wrote . The complexity of the fix wasn't the only reason for the release; there were two other development trees that independently asked for an extension. The other trees that needed the extension involve the btrfs filesystems and firmware for Intel GPU controllers. . Kernel engineers successfully addressed the Retbleed issue but postponed the release for additional testing because of the intricate nature of the fixes and additional components required.. Retbleed Fix, Linux Kernel Update, Speculative Attack Mitigation. . Brittany Day
Jul 19, 2022 •
Security Vulnerabilities 210
security advisoryRed Hatred hatLinux Kernel 5.11.8: Spectre Attack Mitigations Bypass Advisory
Cybersecurity researchers have identified two new vulnerabilities in Linux-based OSes that, if successfully exploited, could enable attackers to bypass mitigations for speculative attacks such as Spectre and obtain sensitive information from kernel memory. . Discovered by Piotr Krysiuk of Symantec's Threat Hunter team, the flaws — tracked as CVE-2020-27170 and CVE-2020-27171 (CVSS scores: 5.5) — impact all Linux kernels prior to 5.11.8. Patches for the security issues were released on March 20, with Ubuntu, Debian, and Red Hat deploying fixes for the vulnerabilities in their respective Linux distributions. While CVE-2020-27170 can be abused to reveal content from any location within the kernel memory, CVE-2020-27171 can be used to retrieve data from a 4GB range of kernel memory. The link for this article located at The Hacker News is no longer available. . Newly discovered weaknesses could enable cybercriminals to circumvent Spectre defenses on Linux platforms, raising issues of data privacy.. Linux Kernel Security,Spectre Attack,Kernel Mitigation Bypass,Red Hat Fix. . Brittany Day
Mar 29, 2021 • Security Vulnerabilities 
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
Does sandboxing completely stop hackers?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More