Advisories
Scouring the Web for those critical security advisories and updates? Find the information you need for your favorite open source distribution all in one place on our Advisories page.
ArchLinux
202403-1: xz: arbitrary code execution
The package xz before version 5.6.1-2 is vulnerable to arbitrary ...
202210-4: linux-zen: multiple issues
The package linux-zen before version 6.0.1.zen2-1 is vulnerable t...
202210-3: linux-lts: multiple issues
The package linux-lts before version 5.15.73-3 is vulnerable to m...
202210-2: linux: multiple issues
The package linux before version 6.0.1.arch2-1 is vulnerable to m...
202210-1: linux-hardened: multiple issues
The package linux-hardened before version 5.19.15.hardened2-1 is ...
202204-9: python-django: sql injection
The package python-django before version 4.0.4-1 is vulnerable to...
202204-8: xz: arbitrary command execution
The package xz before version 5.2.5-3 is vulnerable to arbitrary ...
202204-7: gzip: arbitrary command execution
The package gzip before version 1.12-1 is vulnerable to arbitrary...
202204-6: libtiff: multiple issues
The package libtiff before version 4.3.0-2 is vulnerable to multi...
CentOS
CESA-2024-1498: Moderate CentOS 7 thunderbird
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-1486: Critical CentOS 7 firefox
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-1249: Important CentOS 7 kernel
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0957: Important CentOS 7 thunderbird
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0976: Important CentOS 7 firefox
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0857: Important CentOS 7 python-pillow
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2023-5616: Important CentOS 7 python-reportlab
Upstream details at : https://access.redhat.com/errata/RHSA-2023:...
CESA-2024-0753: Moderate CentOS 7 linux-firmware
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0629: Important CentOS 7 tigervnc
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0013: Important CentOS 7 gstreamer1-plugins-bad-free
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
Debian
DSA-5661-1: php8.2 Security Advisory Updates
Multiple security issues were found in PHP, a widely-used open so...
DSA-5660-1: php7.4 Security Advisory Updates
Multiple security issues were found in PHP, a widely-used open so...
DSA-5659-1: trafficserver Security Advisory Updates
Bartek Nowotarski discovered that Apache Traffic Server, a revers...
DSA-5658-1: linux Security Advisory Updates
Several vulnerabilities have been discovered in the Linux kernel ...
DSA-5657-1: xorg-server Security Advisory Updates
Several vulnerabilities were discovered in the Xorg X server, whi...
DSA-5656-1: chromium Security Advisory Updates
Security issues were discovered in Chromium, which could result i...
DSA-5655-1: cockpit security update
It was discovered that Cockpit, a web console for Linux servers, ...
DSA-5654-1: chromium security update
Security issues were discovered in Chromium, which could result i...
DSA-5653-1: gtkwave security update
Claudio Bozzato discovered multiple security issues in gtkwave, a...
DSA-5652-1: py7zr security update
A directory traversal vulnerability was discovered in py7zr, a li...
Debian LTS
DLA-3787-1: xorg-server Security Advisory Updates
Multiple vulnerabilities have been fixed in the Xorg X server. CV...
DLA-3786-1: pillow Advisory Security Update
A buffer overflow in _imagingcms.c was fixed in Pillow, an image ...
DLA-3785-1: gtkwave security update
Multiple security issues have been fixed in the waveform viewer G...
DLA-3783-1: expat security update
Expat, an XML parsing C library has been found to have an vulnera...
DLA-3782-1: util-linux security update
CVE-2024-28085 Skyler Ferrante discovered that the wall(1) utilit...
DLA-3784-1: libcaca security update
Two issues have been found in libcaca, a colour ASCII art library...
DLA-3781-1: libgd2 security update
Several issues have been found in libgd2, a GD Graphics Library. ...
DLA-3780-1: jetty9 security update
Jetty 9 is a Java based web server and servlet engine. It was dis...
DLA-3779-1: tomcat9 security update
Two security vulnerabilities have been discovered in the Tomcat s...
DLA-3778-1: libvirt security update
Multiple vulnerabilities were found in libvirt, a C toolkit to in...
Fedora
chromium 2024-fe9a675a37Security Advisory Updates
update to 123.0.6312.122 * High CVE-2024-3157: Out of bounds wri...
chromium 2024-f94660c56dSecurity Advisory Updates
update to 123.0.6312.122 * High CVE-2024-3157: Out of bounds wri...
kernel 2024-a56a47ef1bSecurity Advisory Updates
The 6.8.5 stable kernel update contains a number of important fix...
libopenmpt 2024-85b6c6fa92Security Advisory Updates
Bring all current releases from either version 0.7.3 or 0.6.12 to...
libopenmpt 2024-90b3798199Security Advisory Updates
Bring all current releases from either version 0.7.3 or 0.6.12 to...
kernel 2024-6d35739db7Security Advisory Updates
The 6.8.5 stable kernel update contains a number of important fix...
kernel 2024-33a9ea72d1Security Advisory Updates
The 6.8.5 stable kernel update contains a number of important fix...
rust-h2 2024-638f25a317Security Advisory Updates
Update to version 0.3.26. Addresses RUSTSEC-2024-0332....
rust-h2 2024-c5b42e6462Security Advisory Updates
Update to version 0.3.26. Addresses RUSTSEC-2024-0332....
rust 2024-6bc17db348Security Advisory Updates
Security fix for CVE-2024-24576 (Windows command injection)...
Gentoo
GLSA-202403-04: XZ utils: Backdoor in release tarballs
A backdoor has been discovered in XZ utils that could lead to rem...
GLSA-202403-03: UltraJSON: Multiple Vulnerabilities
Multiple vulnerabilities have been discovered in UltraJSON, the w...
GLSA-202403-02: Blender: Multiple Vulnerabilities
Multiple vulnerabilities have been discovered in Blender, the wor...
GLSA-202403-01: Tox: Remote Code Execution
A vulnerability has been discovered in Tox which may lead to remo...
GLSA-202402-33: PyYAML: Arbitrary Code Execution
A vulnerability has been found in PyYAML which can lead to arbitr...
GLSA-202402-32: btrbk: Remote Code Execution
A vulnerability has been discovered in btrbk which can lead to re...
GLSA-202402-31: GNU Aspell: Heap Buffer Overflow
A vulnerability has been discovered in GNU Aspell which leads to ...
GLSA-202402-30: Glances: Arbitrary Code Execution
A vulnerability has been found in Glances which may lead to arbit...
GLSA-202402-29: LibreOffice: Multiple Vulnerabilities
Multiple vulnerabilities have been found in LibreOffice, the wors...
GLSA-202402-27: Glade: Denial of Service
A vulnerability has been discovered in Glade which can lead to a ...
Mageia
python-pillow Security Advisory Updates
CVE-2023-44271 Denial of Service that uncontrollably allocates me...
ruby-rack Security Advisory Updates
Carefully crafted content type headers can cause Rackâs media t...
x11-server, x11-server-xwayland & tigervnc Security Advisory Updates
Heap buffer overread/data leakage in ProcXIGetSelectedEvents. (CV...
chromium-browser-stable security update
The chromium-browser-stable package has been updated to the 123.0...
Oracle
ELSA-2024-1786: httpd:2.4/mod_http2 Important Security Advisory Updates
The following updated rpms for Oracle Linux 8 have been uploaded ...
ELSA-2024-1751: unbound security Important Security Advisory Updates
The following updated rpms for Oracle Linux 8 have been uploaded ...
ELSA-2024-1781: bind9.16 security Important Security Advisory Updates
The following updated rpms for Oracle Linux 8 have been uploaded ...
ELSA-2024-1782: bind and dhcp Important Security Advisory Updates
The following updated rpms for Oracle Linux 8 have been uploaded ...
ELSA-2024-1607: kernel security, bug fix, and enhancement Important Security Advisory Updates
The following updated rpms for Oracle Linux 8 have been uploaded ...
ELSA-2024-1719: rear security Moderate Security Advisory Updates
The following updated rpms for Oracle Linux 8 have been uploaded ...
ELSA-2024-1789: bind security Important Security Advisory Updates
The following updated rpms for Oracle Linux 9 have been uploaded ...
ELSA-2024-1750: unbound security Important Security Advisory Updates
The following updated rpms for Oracle Linux 9 have been uploaded ...
ELSA-2024-1787: squid security Important (aarch64) Security Advisory Updates
The following updated rpms for Oracle Linux 7 have been uploaded ...
ELSA-2024-1785: X.Org server Important (aarch64) Security Advisory Updates
The following updated rpms for Oracle Linux 7 have been uploaded ...
openSUSE
Red Hat
RHSA-2023-5534:01 Important: libvpx security update
An update for libvpx is now available for Red Hat Enterprise Linu...
RHSA-2023-5529:01 Important: bind security update
An update for bind is now available for Red Hat Enterprise Linux ...
RHSA-2023-5537:01 Important: libvpx security update
An update for libvpx is now available for Red Hat Enterprise Linu...
RHSA-2023-5539:01 Important: libvpx security update
An update for libvpx is now available for Red Hat Enterprise Linu...
RHSA-2023-5533:01 Important: nodejs security, bug fix,
An update for nodejs is now available for Red Hat Enterprise Linu...
RHSA-2023-5538:01 Important: libvpx security update
An update for libvpx is now available for Red Hat Enterprise Linu...
RHSA-2023-5527:01 Important: bind security update
An update for bind is now available for Red Hat Enterprise Linux ...
RHSA-2023-5532:01 Important: nodejs
An update for nodejs is now available for Red Hat Enterprise Linu...
RHSA-2023-5540:01 Important: libvpx security update
An update for libvpx is now available for Red Hat Enterprise Linu...
RHSA-2023-5526:01 Important: bind security update
An update for bind is now available for Red Hat Enterprise Linux ...
RockyLinux
RLSA-2024:1644 grafana-pcp security and bug fix update
Important: grafana-pcp security and bug fix update...
RLSA-2024:1614 kernel-rt security and bug fix update
Important: kernel-rt security and bug fix update...
Slackware
2024-105-01: less Advisory Security Update
New less packages are available for Slackware 15.0 and -current t...
2024-103-01: php Advisory Security Update
New php packages are available for Slackware 15.0 and -current to...
2024-099-01: libarchive Security Update
New libarchive packages are available for Slackware 15.0 and -cur...
2024-096-01: tigervnc Security Update
New tigervnc packages are available for Slackware 15.0 and -curre...
2024-095-02: nghttp2 Security Update
New nghttp2 packages are available for Slackware 15.0 and -curren...
2024-095-01: httpd Security Update
New httpd packages are available for Slackware 15.0 and -current ...
2024-094-01: xorg-server Security Update
New xorg-server packages are available for Slackware 15.0 and -cu...
2024-088-03: coreutils Security Update
New coreutils packages are available for Slackware 15.0 and -curr...
2024-088-01: seamonkey Security Update
New seamonkey packages are available for Slackware 15.0 and -curr...
2024-088-02: util-linux Security Update
New util-linux packages are available for Slackware 15.0 and -cur...
SuSE
2024:1294-1 moderate: emacsSecurity Advisory Updates
* bsc#1222050 * bsc#1222052 * bsc#1222053 Cross-References: ...
2024:1295-1 moderate: xenSecurity Advisory Updates
* bsc#1027519 * bsc#1221984 * bsc#1222302 * bsc#1222453 ...
2024:1296-1 low: texliveSecurity Advisory Updates
* bsc#1222126 Cross-References: * CVE-2023-46048 ...
2024:1298-1 important: the Linux Kernel (Live Patch 22 for SLE 15 SP4)Security Advisory Updates
* bsc#1219078 * bsc#1219296 * bsc#1219432 Cross-References: ...
2024:1299-1 important: the Linux Kernel (Live Patch 11 for SLE 15 SP4)Security Advisory Updates
* bsc#1218613 * bsc#1219078 * bsc#1219296 * bsc#1219432 ...
2024:1287-1 important: vimSecurity Advisory Updates
* bsc#1215005 * bsc#1217316 * bsc#1217320 * bsc#1217321 * bsc#121...
2024:1293-1 important: webkit2gtk3Security Advisory Updates
* bsc#1222010 Affected Products: * SUSE Linux Enterprise High Per...
2024:1288-1 important: the Linux Kernel (Live Patch 16 for SLE 15 SP4)Security Advisory Updates
* bsc#1218613 * bsc#1219078 * bsc#1219296 * bsc#1219432 ...
2024:1292-1 important: the Linux Kernel (Live Patch 19 for SLE 15 SP4)Security Advisory Updates
* bsc#1219078 * bsc#1219296 * bsc#1219432 Cross-References: ...
2024:1280-1 important: the Linux Kernel (Live Patch 23 for SLE 15 SP4)Security Advisory Updates
* bsc#1219296 Cross-References: * CVE-2023-52340 ...
