Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 9,991 articles for you...
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderateuser access

openSUSE Leap 16.0 NetworkManager Moderate CVE-2025-9615 Advisory

An update that solves one vulnerability and has 2 bug fixes can now be installed.. openSUSE security update: security update for networkmanager ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20911-1 Rating: moderate References: * bsc#1257359 * bsc#1257366 Cross-References: * CVE-2025-9615 CVSS scores: * CVE-2025-9615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has 2 bug fixes can now be installed. Description: This update for NetworkManager fixes the following issues: Security fixes: - CVE-2025-9615: Fixed non-admin user using others' certificates (bsc#1257359). Other fixes: - Accept localhost hostnames if static (bsc#1257366) Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-896=1 Package List: - openSUSE Leap 16.0: NetworkManager-1.52.0-160000.4.1 NetworkManager-bluetooth-1.52.0-160000.4.1 NetworkManager-branding-upstream-1.52.0-160000.4.1 NetworkManager-cloud-setup-1.52.0-160000.4.1 NetworkManager-config-server-1.52.0-160000.4.1 NetworkManager-devel-1.52.0-160000.4.1 NetworkManager-lang-1.52.0-160000.4.1 NetworkManager-ovs-1.52.0-160000.4.1 NetworkManager-pppoe-1.52.0-160000.4.1 NetworkManager-tui-1.52.0-160000.4.1 NetworkManager-wwan-1.52.0-160000.4.1 libnm0-1.52.0-160000.4.1 typelib-1_0-NM-1_0-1.52.0-160000.4.1 References: * https://www.suse.com/security/cve/CVE-2025-9615.html . This openSUSE advisory covers a moderate security fix for NetworkManager with CVE-2025-9615 addressing certificate issues.. openSUSE security, NetworkManager fix, CVE-2025-9615, moderate update, Linux advisory. .Severity: moderate. LinuxSecurity.com Team

Calendar 2 Jun 08, 2026 moderate OpenSUSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisoryimportantOpenSUSE

openSUSE Leap 16.0 perl-XML-LibXML Major Heap Memory Update 2026-20908-1

An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for perl-xml-libxml ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20908-1 Rating: important References: * bsc#1264715 Cross-References: * CVE-2026-8177 CVSS scores: * CVE-2026-8177 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for perl-XML-LibXML fixes the following issue - CVE-2026-8177: read out-of-bounds heap memory when parsing XML node names containing truncated UTF-8 byte sequences (bsc#1264715). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-893=1 Package List: - openSUSE Leap 16.0: perl-XML-LibXML-2.0210-160000.3.1 References: * https://www.suse.com/security/cve/CVE-2026-8177.html . Critical update for openSUSE Leap 16.0 addressing CVE-2026-8177 impacting perl-XML-LibXML.. openSUSE security patch perl XML-LibXML CVE-2026-8177. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 08, 2026 Important OpenSUSE
Banner 1 1028x280 1708121660 1771599717
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderateOpenSUSE

openSUSE Leap 16.0 uriparser Moderate Unbounded Recursion CVE-2025-67899

An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for uriparser ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20910-1 Rating: moderate References: * bsc#1255000 Cross-References: * CVE-2025-67899 CVSS scores: * CVE-2025-67899 ( SUSE ): 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-67899 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for uriparser fixes the following issue: - CVE-2025-67899: unbounded recursion and stack consumption (bsc#1255000). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-895=1 Package List: - openSUSE Leap 16.0: liburiparser1-0.9.8-160000.4.1 uriparser-0.9.8-160000.4.1 uriparser-devel-0.9.8-160000.4.1 uriparser-doc-0.9.8-160000.4.1 References: * https://www.suse.com/security/cve/CVE-2025-67899.html . Update available for openSUSE addressing moderate security issue in uriparser related to stack consumption.. openSUSE, uriparser, unbounded recursion, security update. . Severity: moderate. LinuxSecurity.com Team

Calendar 2 Jun 08, 2026 moderate OpenSUSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderatedenial of service

openSUSE Leap 16.0 dpkg Moderate DoS Vulnerability Fix 2026-20909-1

An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for dpkg ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20909-1 Rating: moderate References: * bsc#1259385 Cross-References: * CVE-2026-2219 CVSS scores: * CVE-2026-2219 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-2219 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for dpkg fixes the following issue: - CVE-2026-2219: dpkg-deb: malformed .deb archives can cause a denial of service (bsc#1259385). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-894=1 Package List: - openSUSE Leap 16.0: dpkg-1.22.21-160000.3.1 dpkg-devel-1.22.21-160000.3.1 dpkg-lang-1.22.21-160000.3.1 update-alternatives-1.22.21-160000.3.1 References: * https://www.suse.com/security/cve/CVE-2026-2219.html . Install openSUSE's latest security update for dpkg addressing a moderate issue and improving system stability. . openSUSE security, dpkg update, denial of service, moderate security fix. . Severity: moderate. LinuxSecurity.com Team

Calendar 2 Jun 08, 2026 moderate OpenSUSE
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicedebian

Debian Tomcat11 Moderate DDoS Bypass Sensitive Info Vuln DSA-6329-1

Multiple security vulnerabilities have been discovered in Tomcat 11, a Java based web server, servlet and JSP engine which may result in a denial of service, authentication bypass or the disclosure of sensitive information. Although we are not aware of any problems, new upstream versions may introduce new options, limits or code changes which may or may not affect your existing. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6329-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Markus Koschany June 08, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : tomcat11 CVE ID : CVE-2026-24734 CVE-2026-24880 CVE-2026-25854 CVE-2026-29129 CVE-2026-29145 CVE-2026-29146 CVE-2026-32990 CVE-2026-34483 CVE-2026-34487 CVE-2026-34500 CVE-2026-41284 CVE-2026-41293 CVE-2026-42498 CVE-2026-43512 CVE-2026-43513 CVE-2026-43514 CVE-2026-43515 Multiple security vulnerabilities have been discovered in Tomcat 11, a Java based web server, servlet and JSP engine which may result in a denial of service, authentication bypass or the disclosure of sensitive information. Although we are not aware of any problems, new upstream versions may introduce new options, limits or code changes which may or may not affect your existing web applications. We recommend to consult the Tomcat 11 documentation for further information. For the stable distribution (trixie), these problems have been fixed in version 11.0.22-1~deb13u1. We recommend that you upgrade your tomcat11 packages. For the detailed security status of tomcat11 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/tomcat11 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be foundat: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Critical updates for Tomcat 11 address multiple security issues, including DDoS risks and authentication flaws. Upgrade recommended.. Tomcat 11 Security, Debian Updates, Java Security Patches, DDoS Risks, Authentication Bypass. . Severity: moderate. LinuxSecurity.com Team

Calendar 2 Jun 08, 2026 moderate Debian
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicecritical

Debian Tomcat10 Critical Denial Of Service Auth Bypass Vuln DSA-6328-1

Multiple security vulnerabilities have been discovered in Tomcat 10, a Java based web server, servlet and JSP engine which may result in a denial of service, authentication bypass or the disclosure of sensitive information. Although we are not aware of any problems, new upstream versions may introduce new options, limits or code changes which may or may not affect your existing. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6328-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Markus Koschany June 08, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : tomcat10 CVE ID : CVE-2026-24880 CVE-2026-25854 CVE-2026-29129 CVE-2026-29145 CVE-2026-29146 CVE-2026-32990 CVE-2026-34483 CVE-2026-34487 CVE-2026-34500 CVE-2026-41284 CVE-2026-41293 CVE-2026-42498 CVE-2026-43512 CVE-2026-43513 CVE-2026-43514 CVE-2026-43515 Multiple security vulnerabilities have been discovered in Tomcat 10, a Java based web server, servlet and JSP engine which may result in a denial of service, authentication bypass or the disclosure of sensitive information. Although we are not aware of any problems, new upstream versions may introduce new options, limits or code changes which may or may not affect your existing web applications. We recommend to consult the Tomcat 10 documentation for further information. For the oldstable distribution (bookworm), these problems have been fixed in version 10.1.55-1~deb12u1. For the stable distribution (trixie), these problems have been fixed in version 10.1.55-1~deb13u1. We recommend that you upgrade your tomcat10 packages. For the detailed security status of tomcat10 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/tomcat10 Further information about Debian Security Advisories, how toapply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Tomcat 10 vulnerabilities might cause DoS, authentication bypass, or sensitive info disclosures. Update recommended.. Tomcat 10 vulnerabilities, Debian security, denial of service, authentication bypass, sensitive data. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 08, 2026 Critical Debian
Banner 1 1028x280 1708121660 1771599717
197
Ls Advisories Debianlts Esm H240
Price Tag 1security advisorycriticaldebian

Debian 11 Glibc Critical Memory Management Issues DLA-4621-1

Several vulnerabilities have been discovered in the GNU C Library, the C standard library implementation used by Debian. CVE-2025-8058 posix: Fix double-free after allocation failure in regcomp The regcomp function in the GNU C library version from 2.4 to 2.41 is. Debian LTS Advisory DLA-4621-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Arnaud Rebillout June 08, 2026 https://wiki.debian.org/LTS Package : glibc Version : 2.31-13+deb11u14 CVE ID : CVE-2025-8058 CVE-2025-15281 CVE-2026-0861 CVE-2026-0915 CVE-2026-4046 Debian Bug : 1109803 1125678 1125748 1126266 1132499 Several vulnerabilities have been discovered in the GNU C Library, the C standard library implementation used by Debian. CVE-2025-8058 posix: Fix double-free after allocation failure in regcomp The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc failure or by using an interposed malloc that injects random malloc failures. The double free can allow buffer manipulation depending of how the regex is constructed. This issue affects all architectures and ABIs supported by the GNU C library. CVE-2025-15281 posix: Reset wordexp_t fields with WRDE_REUSE Calling wordexp with WRDE_REUSE in conjunction with WRDE_APPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the we_wordv member, which on subsequent calls to wordfree may abort the process. CVE-2026-0861 memalign: reinstate alignment overflow check Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign, aligned_alloc) in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have control over both, the size as well as the alignment arguments of the memalign function to be able to exploit this. The size parameter must be close enough to PTRDIFF_MAX so as to overflow size_t along with the large alignment argument. This limits the malicious inputs for the alignment for memalign to the range [1

Calendar 2 Jun 08, 2026 Critical Debian LTS
197
Ls Advisories Debianlts Esm H240
Price Tag 1security advisorydebianDoS

Debian libxml2 Important Denial of Service Issues DLA-4622-1

Multiple security issues were found in libxml2, the GNOME XML library, which could lead to Denial of Service. CVE-2025-8732 Catalog parsing functions were missing cycle detection. When a catalog file contains a CATALOG directive pointing to itself,. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4622-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Guilhem Moulin June 08, 2026 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : libxml2 Version : 2.9.10+dfsg-6.7+deb11u10 CVE ID : CVE-2025-8732 CVE-2026-0989 CVE-2026-0990 CVE-2026-0992 CVE-2026-1757 Debian Bug : 1125691 1125695 1125696 Multiple security issues were found in libxml2, the GNOME XML library, which could lead to Denial of Service. CVE-2025-8732 Catalog parsing functions were missing cycle detection. When a catalog file contains a CATALOG directive pointing to itself, `xmlExpandCatalog()` and `xmlParseSGMLCatalog()` recursively call each other without bounds until stack overflow. CVE-2026-0989 The RelaxNG parser does not limit the recursion depth when resolving ` ` directives, which may lead to stack overflow on malicious RelaxNG schema file. CVE-2026-0990 Nick Wellnhofer discovered that `xmlCatalogXMLResolveURI()` will recurse infinitely if a catalog has a URI delegate referencing itself, eventually resulting in a call stack overflow. CVE-2026-0992 Nick Wellnhofer discovered that processing a chain of XML catalogs linked with ` ` and having the ` ` element takes exponential time, leading to denial of service via resource exhaustion. CVE-2026-1757 The command parsing logic of the xmllint(1) interactive shell was found to leak memory. In addition, a few other security issues were found for which no CVE ID was assigned yet: * Memoryleak of prefix in `xmlTextWriterStartElementNS()`. * Potential use-after-free issue in `xmlRelaxNGValidateValue()`. * Memory leak in `xmlTextWriterStartAttributeNS()`. * Additional memory leaks on error paths in schematron. * Stack overflow from self-referencing SGML CATALOG entries. For Debian 11 bullseye, these problems have been fixed in version 2.9.10+dfsg-6.7+deb11u10. We recommend that you upgrade your libxml2 packages. For the detailed security status of libxml2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/libxml2 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Multiple security issues in libxml2 could lead to denial of service and impact system stability. Upgrade recommended.. libxml2 security update, Debian DoS vulnerabilities, patch libxml2, XML library security, Debian advisory DLA-4622-1. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 08, 2026 Important Debian LTS
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here