Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 9,991 articles for you...
100
security advisorydenial of servicecriticalopenSUSE HPLIP Critical Escalation DoS Advisory SUSE-2026-2380-1
An update that solves three vulnerabilities and has five security fixes can now be installed.. # Security update for hplip Announcement ID: SUSE-SU-2026:2380-1 Release Date: 2026-06-11T16:15:35Z Rating: critical References: * bsc#1209401 * bsc#1234745 * bsc#1245358 * bsc#1250481 * bsc#1257529 * bsc#1266023 * bsc#1266024 * bsc#1266031 Cross-References: * CVE-2025-43023 * CVE-2026-8631 * CVE-2026-8632 CVSS scores: * CVE-2025-43023 ( SUSE ): 7.5 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-43023 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-43023 ( NVD ): 5.9 CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-43023 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-8631 ( SUSE ): 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8631 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8631 ( NVD ): 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8631 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8632 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8632 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8632 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8632 ( NVD ): 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities and has five security fixes can now be installed. ## Description: This update for hplip fixes the following issues Update to HPLIP 3.26.4: Security issues: * CVE-2025-43023: weak code signing DSA key used to generate package signatures can lead to key spoofing and malicious software installation (bsc#1266031). * CVE-2026-8631: escalation of privileges and/or arbitrary code execution via an integer overflow in the hpcups processing path (bsc#1266023). * CVE-2026-8632: escalation of privileges and/or arbitrary code execution via operating system command injection (bsc#1266024). * unauthenticated remote (LAN) denial-of-service in the SLP parser (ReDoS) (bsc#1245358). * URI parameter injection via unsanitized USB serial number (bsc#1209401). Non security issues: * Can't set up fax for HP OfficeJet 3830 (bsc#1257529). * hplip requires foomatic-filters which does not exist in Leap 16 (bsc#1250481). Changes: * Add support for the following new printers: * HP LaserJet Pro MFP 3106sdw * HP LaserJet Pro MFP 3105sdw * HP Envy 6500e series * HP Envy 6500 series * HP OfficeJet Pro 9730 Series * HP OfficeJet Pro 9730e Series * HP OfficeJet Pro 9720 Series * HPOfficeJet Pro 9720e Series * HP OfficeJet Pro 8130e All-in-One series * HP OfficeJet Pro 8130 All-in-One series * HP OfficeJet 8130e All-in-One series * HP OfficeJet 8130 All-in-One series * HP OfficeJet Pro 8120e All-in-One series * HP OfficeJet Pro 8120 All-in-One series * HP OfficeJet 8120e All-in-One series * HP OfficeJet 8120 All-in-One series * HP DeskJet Ink Advantage ultra 5800 All-in-One Printer series * HP DeskJet Ink Advantage ultra 5100 All-in-One Printer series * HP DeskJet 4300e All-in-One Printer series * HP DeskJet Ink Advantage 4300 All-in-One Printer series * HP DeskJet 4300 All-in-One Printer series * HP DeskJet 2900e All-in-One Printer series * HP DeskJet Ink Advantage 2900 All-in-One Printer series * HP DeskJet 2900 All-in-One Printer series * HP LaserJet Enterprise Flow MFP 8601z * HP LaserJet Enterprise 5501 * HP LaserJet Enterprise MFP 5601dn * HP LaserJet Enterprise 6500dn * HP LaserJet Enterprise 5501n * HP LaserJet Enterprise MFP 5601 * HP LaserJet Enterprise 6500 * HP LaserJet Enterprise 5502dn * HP LaserJet Enterprise MFP 5602dn * HP LaserJet Enterprise 6500n * HP LaserJet Enterprise 5502 * HP LaserJet Enterprise MFP 5602f * HP LaserJet Enterprise 6501dn * HP LaserJet Enterprise X50452dn * HP LaserJet Enterprise Flow MFP 5602zfw * HP LaserJet Enterprise 6501 * HP LaserJet Enterprise X50452 * HP LaserJet Enterprise MFP 5602 * HP LaserJet Enterprise X60257dn * HP LaserJet Enterprise MFP X53052dn * HP LaserJet Enterprise Flow MFP X530 * HP LaserJet Enterprise X60257 * HP LaserJet Enterprise MFP X53052 * HP LaserJet Enterprise X60357dn * HP LaserJet Enterprise X60357 * HP LaserJet Enterprise MFP 6600dn * HP LaserJet Enterprise Flow MFP 6600zfw * HP LaserJet Enterprise MFP 6600 * HP LaserJet Enterprise Flow MFP 6600zfsw * HP LaserJet Enterprise MFP X62757dn * HP LaserJet Enterprise Flow MFP X62757zs * HP LaserJet Enterprise MFP X62757 * DEX D50452dn * DEX MFP D53052dn * HP LaserJet ProMFP M126a plus * HP LaserJet Pro MFP M126nw plus * HP LaserJet Pro MFP M126snw plus * HP Envy Photo 7200 series * HP Envy Photo 7900 series * HP OfficeJet Pro 9110 Series * HP OfficeJet 9120 Series * HP OfficeJet Pro 9120 Series * HP OfficeJet Pro 9130 Series * HP LaserJet Enterprise Flow MFP 8601z+ * HP LaserJet Enterprise MFP 8601dn * HP Color LaserJet Enterprise MFP 8801dn * HP Color LaserJet Enterprise Flow MFP 8801z * HP Color LaserJet Enterprise Flow MFP 8801z+ * HP LaserJet Enterprise 8501dn * HP LaserJet Enterprise 8501x * HP LaserJet Enterprise 8501x+ * DEX MFP D826 * DEX MFP D82640 * DEX MFP D82650 * DEX MFP D82660 * DEX D50145 * DEX MFP D42540 * DEX MFP D52645 * DEX Color D55745 * DEX Color MFP D57945 * DEX Color MFP D677 * DEX Color MFP D67755 * DEX Color MFP D67765 * DEX Color MFP D877 * DEX Color MFP D87740 * DEX Color MFP D87750 * DEX Color MFP D87760 * DEX Color MFP D87770 * DEX Color MFP D786 * DEX Colour MFP D78625 * DEX Color MFP D78630 * DEX Color MFP D78635 * DEX MFP D731 * DEX MFP D73130 * DEX MFP D73135 * DEX MFP D73140 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2380=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2380=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2380=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2380=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2380=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patchSUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2380=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2380=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2380=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2380=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-scan-utils-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-scan-utils-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 *hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 ## References: * https://www.suse.com/security/cve/CVE-2025-43023.html * https://www.suse.com/security/cve/CVE-2026-8631.html * https://www.suse.com/security/cve/CVE-2026-8632.html * https://bugzilla.suse.com/show_bug.cgi?id=1209401 * https://bugzilla.suse.com/show_bug.cgi?id=1234745 * https://bugzilla.suse.com/show_bug.cgi?id=1245358 * https://bugzilla.suse.com/show_bug.cgi?id=1250481 * https://bugzilla.suse.com/show_bug.cgi?id=1257529 * https://bugzilla.suse.com/show_bug.cgi?id=1266023 * https://bugzilla.suse.com/show_bug.cgi?id=1266024 * https://bugzilla.suse.com/show_bug.cgi?id=1266031 . Critical security update for HPLIP in openSUSE addressing three vulnerabilities with multiple fixes available.. HPLIP update, openSUSE patch, critical vulnerabilities, privilege escalation, DoS threat. . Severity: Critical. LinuxSecurity.com Team
Jun 12, 2026
•Critical
SuSE
202
security advisorydenial of servicecriticalopenSUSE HPLIP Severe Code Execution Denial of Service 2026-2380-1
An update that solves three vulnerabilities and has five security fixes can now be installed.. # Security update for hplip Announcement ID: SUSE-SU-2026:2380-1 Release Date: 2026-06-11T16:15:35Z Rating: critical References: * bsc#1209401 * bsc#1234745 * bsc#1245358 * bsc#1250481 * bsc#1257529 * bsc#1266023 * bsc#1266024 * bsc#1266031 Cross-References: * CVE-2025-43023 * CVE-2026-8631 * CVE-2026-8632 CVSS scores: * CVE-2025-43023 ( SUSE ): 7.5 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-43023 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-43023 ( NVD ): 5.9 CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-43023 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-8631 ( SUSE ): 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8631 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8631 ( NVD ): 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8631 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8632 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8632 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8632 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8632 ( NVD ): 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities and has five security fixes can now be installed. ## Description: This update for hplip fixes the following issues Update to HPLIP 3.26.4: Security issues: * CVE-2025-43023: weak code signing DSA key used to generate package signatures can lead to key spoofing and malicious software installation (bsc#1266031). * CVE-2026-8631: escalation of privileges and/or arbitrary code execution via an integer overflow in the hpcups processing path (bsc#1266023). * CVE-2026-8632: escalation of privileges and/or arbitrary code execution via operating system command injection (bsc#1266024). * unauthenticated remote (LAN) denial-of-service in the SLP parser (ReDoS) (bsc#1245358). * URI parameter injection via unsanitized USB serial number (bsc#1209401). Non security issues: * Can't set up fax for HP OfficeJet 3830 (bsc#1257529). * hplip requires foomatic-filters which does not exist in Leap 16 (bsc#1250481). Changes: * Add support for the following new printers: * HP LaserJet Pro MFP 3106sdw * HP LaserJet Pro MFP 3105sdw * HP Envy 6500e series * HP Envy 6500 series * HP OfficeJet Pro 9730 Series * HP OfficeJet Pro 9730e Series * HP OfficeJet Pro 9720 Series * HPOfficeJet Pro 9720e Series * HP OfficeJet Pro 8130e All-in-One series * HP OfficeJet Pro 8130 All-in-One series * HP OfficeJet 8130e All-in-One series * HP OfficeJet 8130 All-in-One series * HP OfficeJet Pro 8120e All-in-One series * HP OfficeJet Pro 8120 All-in-One series * HP OfficeJet 8120e All-in-One series * HP OfficeJet 8120 All-in-One series * HP DeskJet Ink Advantage ultra 5800 All-in-One Printer series * HP DeskJet Ink Advantage ultra 5100 All-in-One Printer series * HP DeskJet 4300e All-in-One Printer series * HP DeskJet Ink Advantage 4300 All-in-One Printer series * HP DeskJet 4300 All-in-One Printer series * HP DeskJet 2900e All-in-One Printer series * HP DeskJet Ink Advantage 2900 All-in-One Printer series * HP DeskJet 2900 All-in-One Printer series * HP LaserJet Enterprise Flow MFP 8601z * HP LaserJet Enterprise 5501 * HP LaserJet Enterprise MFP 5601dn * HP LaserJet Enterprise 6500dn * HP LaserJet Enterprise 5501n * HP LaserJet Enterprise MFP 5601 * HP LaserJet Enterprise 6500 * HP LaserJet Enterprise 5502dn * HP LaserJet Enterprise MFP 5602dn * HP LaserJet Enterprise 6500n * HP LaserJet Enterprise 5502 * HP LaserJet Enterprise MFP 5602f * HP LaserJet Enterprise 6501dn * HP LaserJet Enterprise X50452dn * HP LaserJet Enterprise Flow MFP 5602zfw * HP LaserJet Enterprise 6501 * HP LaserJet Enterprise X50452 * HP LaserJet Enterprise MFP 5602 * HP LaserJet Enterprise X60257dn * HP LaserJet Enterprise MFP X53052dn * HP LaserJet Enterprise Flow MFP X530 * HP LaserJet Enterprise X60257 * HP LaserJet Enterprise MFP X53052 * HP LaserJet Enterprise X60357dn * HP LaserJet Enterprise X60357 * HP LaserJet Enterprise MFP 6600dn * HP LaserJet Enterprise Flow MFP 6600zfw * HP LaserJet Enterprise MFP 6600 * HP LaserJet Enterprise Flow MFP 6600zfsw * HP LaserJet Enterprise MFP X62757dn * HP LaserJet Enterprise Flow MFP X62757zs * HP LaserJet Enterprise MFP X62757 * DEX D50452dn * DEX MFP D53052dn * HP LaserJet ProMFP M126a plus * HP LaserJet Pro MFP M126nw plus * HP LaserJet Pro MFP M126snw plus * HP Envy Photo 7200 series * HP Envy Photo 7900 series * HP OfficeJet Pro 9110 Series * HP OfficeJet 9120 Series * HP OfficeJet Pro 9120 Series * HP OfficeJet Pro 9130 Series * HP LaserJet Enterprise Flow MFP 8601z+ * HP LaserJet Enterprise MFP 8601dn * HP Color LaserJet Enterprise MFP 8801dn * HP Color LaserJet Enterprise Flow MFP 8801z * HP Color LaserJet Enterprise Flow MFP 8801z+ * HP LaserJet Enterprise 8501dn * HP LaserJet Enterprise 8501x * HP LaserJet Enterprise 8501x+ * DEX MFP D826 * DEX MFP D82640 * DEX MFP D82650 * DEX MFP D82660 * DEX D50145 * DEX MFP D42540 * DEX MFP D52645 * DEX Color D55745 * DEX Color MFP D57945 * DEX Color MFP D677 * DEX Color MFP D67755 * DEX Color MFP D67765 * DEX Color MFP D877 * DEX Color MFP D87740 * DEX Color MFP D87750 * DEX Color MFP D87760 * DEX Color MFP D87770 * DEX Color MFP D786 * DEX Colour MFP D78625 * DEX Color MFP D78630 * DEX Color MFP D78635 * DEX MFP D731 * DEX MFP D73130 * DEX MFP D73135 * DEX MFP D73140 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2380=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2380=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2380=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2380=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2380=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patchSUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2380=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2380=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2380=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2380=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-scan-utils-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-scan-utils-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 *hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * hplip-debugsource-3.26.4-150400.3.22.1 * hplip-devel-3.26.4-150400.3.22.1 * hplip-sane-debuginfo-3.26.4-150400.3.22.1 * hplip-sane-3.26.4-150400.3.22.1 * hplip-udev-rules-3.26.4-150400.3.22.1 * hplip-hpijs-3.26.4-150400.3.22.1 * hplip-3.26.4-150400.3.22.1 * hplip-debuginfo-3.26.4-150400.3.22.1 * hplip-hpijs-debuginfo-3.26.4-150400.3.22.1 ## References: * https://www.suse.com/security/cve/CVE-2025-43023.html * https://www.suse.com/security/cve/CVE-2026-8631.html * https://www.suse.com/security/cve/CVE-2026-8632.html * https://bugzilla.suse.com/show_bug.cgi?id=1209401 * https://bugzilla.suse.com/show_bug.cgi?id=1234745 * https://bugzilla.suse.com/show_bug.cgi?id=1245358 * https://bugzilla.suse.com/show_bug.cgi?id=1250481 * https://bugzilla.suse.com/show_bug.cgi?id=1257529 * https://bugzilla.suse.com/show_bug.cgi?id=1266023 * https://bugzilla.suse.com/show_bug.cgi?id=1266024 * https://bugzilla.suse.com/show_bug.cgi?id=1266031 . Critical update for openSUSE hplip resolves three security issues including escalation of privileges and service denial.. openSUSE security patch, hplip critical update, denial of service fix, code execution vulnerability. . Severity: Critical. LinuxSecurity.com Team
Jun 12, 2026
•Critical
OpenSUSE
202
security advisorydenial of servicecriticalopenSUSE Rclone Critical Security Update CVE-2026-25680 CVE-2026-25681
An update that fixes 27 vulnerabilities is now available.. openSUSE Security Update: Security update for rclone ______________________________________________________________________________ Announcement ID: openSUSE-SU-2026:0199-1 Rating: critical References: #1266210 #1267869 Cross-References: CVE-2026-25680 CVE-2026-25681 CVE-2026-27136 CVE-2026-27145 CVE-2026-33809 CVE-2026-39821 CVE-2026-39824 CVE-2026-39827 CVE-2026-39828 CVE-2026-39829 CVE-2026-39830 CVE-2026-39831 CVE-2026-39832 CVE-2026-39833 CVE-2026-39834 CVE-2026-39835 CVE-2026-42500 CVE-2026-42502 CVE-2026-42504 CVE-2026-42506 CVE-2026-42507 CVE-2026-42508 CVE-2026-44740 CVE-2026-46595 CVE-2026-46597 CVE-2026-46598 CVE-2026-49980 CVSS scores: CVE-2026-25680 (SUSE): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-25681 (SUSE): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N CVE-2026-27136 (SUSE): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N CVE-2026-27145 (SUSE): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-39821 (SUSE): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N CVE-2026-39827 (SUSE): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-39828 (SUSE): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N CVE-2026-39829 (SUSE): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-39830 (SUSE): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-39831 (SUSE): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N CVE-2026-39832 (SUSE): 6.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N CVE-2026-39833 (SUSE): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N CVE-2026-39834 (SUSE): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-39835 (SUSE): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-42502 (SUSE): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N CVE-2026-42504 (SUSE): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-42506 (SUSE): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N CVE-2026-42507 (SUSE): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N CVE-2026-42508 (SUSE): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N CVE-2026-44740 (SUSE): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-46595 (SUSE): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N CVE-2026-46597 (SUSE): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-46598 (SUSE): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Backports SLE-15-SP7 ______________________________________________________________________________ An update that fixes 27 vulnerabilities is now available. Description: This update for rclone fixes the following issues: - Update to version 1.74.3: (boo#1267869) - Bug Fixes - rc - Fix unauthenticated command execution via --rc-serve inline remotes CVE-2026-49980 (Nick Craig-Wood) - Stop global.* connection string options changing config CVE-2026-49980 (Nick Craig-Wood) - build: Fix multiple CVEs byupgrading to go1.26.4 (Nick Craig-Wood) - CVE-2026-42504: mime: quadratic complexity in WordDecoder.DecodeHeader - CVE-2026-42507: net/textproto: arbitrary input are included in errors without any escaping - CVE-2026-27145: crypto/x509: split candidate hostname only once - log: Fix wrong source file:line in JSON logs from release builds (Nick Craig-Wood) - mount2: Fix empty directory listings on re-read (Janne Beate Bakeng) - serve s3: Fix multipart ListParts pagination returning wrong part numbers (Nick Craig-Wood) - serve sftp - Fix file corruption when a client resumes an upload (Nick Craig-Wood) - Fix truncate request being silently ignored (Nick Craig-Wood) - Local - Fix getXattr returning empty map instead of nil (Leon Brocard) - Drime - Fix server-side copy and move failing with Cloudflare 520 error (Nick Craig-Wood) - Fix files being uploaded to the wrong directory (Nick Craig-Wood) - Remove duplicate upload_cutoff config option (Nick Craig-Wood) - Fix directory rename leaving the renamed folder empty in VFS (Nick Craig-Wood) - Drive - Fix server-side move failing on shared drives with duplicate dirs (Nick Craig-Wood) - Iclouddrive - Fix ADP/PCS cookie acquisition for iCloud Drive (Yakov Till) - Fix "Index has invalid data" error listing iCloud Photos (Nick Craig-Wood) - Update to version 1.74.2: (boo#1266210) - Bug Fixes - build - Update golang.org/x/net to v0.55.0 to address: - CVE-2026-42506: html: incorrect handling of namespaced elements in foreign content - CVE-2026-39821: idna: failure to reject ASCII-only Punycode-encoded labels - CVE-2026-42502: html: incorrect handling of HTML elements in foreign content - CVE-2026-25680: html: denial of service when parsing arbitrary HTML -CVE-2026-25681: html: incorrect handling of character references in DOCTYPE nodes - CVE-2026-27136: html: duplicate attributes can cause XSS - Update golang.org/x/crypto to v0.52.0 to address: - CVE-2026-46598: ssh/agent: pathological inputs can lead to client panic - CVE-2026-46597: ssh: byte arithmetic causes underflow and panic - CVE-2026-39828: ssh: bypass of certificate restrictions - CVE-2026-39835: ssh: server panic during CheckHostKey/Authenticate - CVE-2026-39833: ssh/agent: key constraints not enforced - CVE-2026-39832: ssh/agent: agent constraints dropped when forwarding keys - CVE-2026-39827: ssh: memory leak when rejecting channels can lead to DoS - CVE-2026-39830: ssh: client can cause server deadlock on unexpected responses - CVE-2026-39829: ssh: pathological RSA/DSA parameters may cause DoS - CVE-2026-39831: ssh: bypass of FIDO/U2F security keys physical interaction - CVE-2026-39834: ssh: infinite loop on large channel writes - CVE-2026-42508: ssh/knownhosts: auth bypass via unenforced @revoked status - CVE-2026-46595: ssh: VerifiedPublicKeyCallback permissions skip enforcement - update golang.org/x/image to v0.41.0 to address: - CVE-2026-42500: bmp: panic when reading out of bound palette index - CVE-2026-33809: tiff: excessive resource consumption in PackBits decompression - Update golang.org/x/sys to version v0.45.0 to address: - CVE-2026-39824: windows: integer overflow in NewNTUnicodeString - Update github.com/go-git/go-billy/v5 to 5.9.0 to fix CVE-2026-44740 - bisync: Fix --conflict-loser pathname with --conflict-resolve newer (nielash) - gui: Update embedded release to 1.1.8 (Nick Craig-Wood) - lib/http: Replace deprecated h2c.NewHandler with http.Server.Protocols (Nick Craig-Wood) -rc: Remove duplicate metrics_addr option registration (Nick Craig-Wood) - vfs/vfscache: Fix silent write failure when mounting with remote:. (Lucky945H) - doc fixes (FTCHD, Iizuki, Leon Brocard, Nick Craig-Wood) - Drime - Fix file doesn't exists error when trying to delete (John Volk) - Fix 500 errors when listing shared folders (Alvinwylim) - Jottacloud - Support whitelabel service Phonero Sky (Tore Anderson) - Protondrive - Fix corrupted on transfer: sha1 hashes differ (William Tange) - S3 - Add new MEGA S4 endpoints on megas4.com including Asia-Pacific region (Nick Craig-Wood) - WebDAV - Honour auth_redirect on listAll PROPFIND (Sai Asish Y) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP7: zypper in -t patch openSUSE-2026-199=1 Package List: - openSUSE Backports SLE-15-SP7 (aarch64 i586 ppc64le s390x x86_64): rclone-1.74.3-bp157.2.9.1 - openSUSE Backports SLE-15-SP7 (noarch): rclone-bash-completion-1.74.3-bp157.2.9.1 rclone-zsh-completion-1.74.3-bp157.2.9.1 References: https://www.suse.com/security/cve/CVE-2026-25680.html https://www.suse.com/security/cve/CVE-2026-25681.html https://www.suse.com/security/cve/CVE-2026-27136.html https://www.suse.com/security/cve/CVE-2026-27145.html https://www.suse.com/security/cve/CVE-2026-33809.html https://www.suse.com/security/cve/CVE-2026-39821.html https://www.suse.com/security/cve/CVE-2026-39824.html https://www.suse.com/security/cve/CVE-2026-39827.html https://www.suse.com/security/cve/CVE-2026-39828.html https://www.suse.com/security/cve/CVE-2026-39829.html https://www.suse.com/security/cve/CVE-2026-39830.html https://www.suse.com/security/cve/CVE-2026-39831.html https://www.suse.com/security/cve/CVE-2026-39832.html https://www.suse.com/security/cve/CVE-2026-39833.html https://www.suse.com/security/cve/CVE-2026-39834.html https://www.suse.com/security/cve/CVE-2026-39835.html https://www.suse.com/security/cve/CVE-2026-42500.html https://www.suse.com/security/cve/CVE-2026-42502.html https://www.suse.com/security/cve/CVE-2026-42504.html https://www.suse.com/security/cve/CVE-2026-42506.html https://www.suse.com/security/cve/CVE-2026-42507.html https://www.suse.com/security/cve/CVE-2026-42508.html https://www.suse.com/security/cve/CVE-2026-44740.html https://www.suse.com/security/cve/CVE-2026-46595.html https://www.suse.com/security/cve/CVE-2026-46597.html https://www.suse.com/security/cve/CVE-2026-46598.html https://www.suse.com/security/cve/CVE-2026-49980.html https://bugzilla.suse.com/1266210 https://bugzilla.suse.com/1267869 . Critical openSUSE update for rclone addresses 27 high-risk issues with potential exploits, enhancing system security.. openSUSE security, rclone update, critical vulnerabilities, Linux administration. . Severity: Critical. LinuxSecurity.com Team
Jun 12, 2026
•Critical
OpenSUSE
89
security advisoryfedoracriticalFedora 44 OpenSSL Critical Fixes CVE-2026-45447 228373a496
Rebase to OpenSSL 3.5.7 Fixes CVE-2026-45447 Fixes CVE-2026-34182 Fixes CVE-2026-34183 Fixes CVE-2026-42764. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-228373a496 2026-06-12 00:58:37.608052+00:00 -------------------------------------------------------------------------------- Name : openssl Product : Fedora 44 Version : 3.5.7 Release : 1.fc44 URL : http://www.openssl.org/ Summary : Utilities from the general purpose cryptography library with TLS implementation Description : The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols. -------------------------------------------------------------------------------- Update Information: Rebase to OpenSSL 3.5.7 Fixes CVE-2026-45447 Fixes CVE-2026-34182 Fixes CVE-2026-34183 Fixes CVE-2026-42764 Fixes CVE-2026-45445 Fixes CVE-2026-7383 Fixes CVE-2026-9076 Fixes CVE-2026-34180 Fixes CVE-2026-34181 Fixes CVE-2026-42766 Fixes CVE-2026-42767 Fixes CVE-2026-42768 Fixes CVE-2026-42769 Fixes CVE-2026-42770 Fixes CVE-2026-45446 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 10 2026 Dmitry Belyavskiy - 1:3.5.7-1 - Rebase to OpenSSL 3.5.7 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-228373a496' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jun 11, 2026
•Critical
Fedora
89
security advisorydenial of serviceunauthorized accessFedora 44 Vaultwarden Critical Security Fix from 2026-e14ea170b6
update to 1.36.0. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-e14ea170b6 2026-06-12 00:58:37.608023+00:00 -------------------------------------------------------------------------------- Name : vaultwarden Product : Fedora 44 Version : 1.36.0 Release : 1.fc44 URL : https://github.com/dani-garcia/vaultwarden Summary : Unofficial Bitwarden compatible server Description : Unofficial Bitwarden compatible server. -------------------------------------------------------------------------------- Update Information: update to 1.36.0 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 3 2026 Jonathan Wright - 1.36.0-1 - update to 1.36.0 rhbz#2368636 - Fix bitwarden mobile app not working rhbz#2437599 - Fix CVE-2025-58160 vaultwarden: Tracing log pollution - Fix CVE-2026-25537 vaultwarden: jsonwebtoken has Type Confusion that leads to potential authorization bypass - Fix CVE-2026-25727 vaultwarden: time affected by a stack exhaustion denial of service attack - Fix CVE-2026-26012 vaultwarden: Information disclosure due to bypassed collection permissions - Fix CVE-2026-27898 vaultwarden: Information disclosure via API partial update - Fix CVE-2026-27803 vaultwarden: Unauthorized collection management operations due to improper access control - Fix CVE-2026-27801 vaultwarden: Two-factor authentication bypass allows unauthorized access and data deletion -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-e14ea170b6' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project canbe found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jun 11, 2026
•Critical
Fedora
172
security advisorycriticalUbuntuUbuntu 26.04 Kylin Software Center Critical Privilege Escalation USN-8424-1
Ubuntu Kylin Software Center could be made to run programs as an administrator if it received specially crafted input via its D-Bus service.. ========================================================================== Ubuntu Security Notice USN-8424-1 June 11, 2026 ubuntu-kylin-software-center vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS Summary: Ubuntu Kylin Software Center could be made to run programs as an administrator if it received specially crafted input via its D-Bus service. Software Description: - ubuntu-kylin-software-center: Software maintenance management tools Details: It was discovered that Ubuntu Kylin Software Center incorrectly handled user-supplied input in its D-Bus service. A local attacker could possibly use this issue to gain administrative privileges. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS ubuntu-kylin-software-center 4.5.77.1ubuntu0.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8424-1 https://launchpad.net/bugs/2154543 Package Information: https://launchpad.net/ubuntu/+source/ubuntu-kylin-software-center/4.5.77.1ubuntu0.1 . Ubuntu Kylin Software Center faced a critical issue allowing admin access through D-Bus, needing urgent action.. Ubuntu Kylin Security, Administrator Privilege Issue, D-Bus Service Risk. . Severity: Critical. LinuxSecurity.com Team
Jun 11, 2026
•Critical
Ubuntu
203
security advisorydenial of servicecriticalMageia 9 RoundCube Webmail Critical Security Issues CVE-2026-48849
Security update. Publication date: 11 Jun 2026 URL: https://advisories.mageia.org/MGASA-2026-0194.html Type: security Affected Mageia releases: 9 CVE: CVE-2026-48842, CVE-2026-48843, CVE-2026-48844, CVE-2026-48845, CVE-2026-48846, CVE-2026-48847, CVE-2026-48848, CVE-2026-48849 Description: Multiple security vulnerabilities were discovered in RoundCube Webmail, which could result in cross-site scripting, SQL injection, SSRF bypass, information disclosure, denial of service or code injection. References: - https://bugs.mageia.org/show_bug.cgi?id=35599 - https://roundcube.net/news/2026/05/24/security-updates-1.6.16-and-1.7.1 - https://lists.debian.org/debian-security-announce/2026/msg00212.html - https://lists.fedoraproject.org/archives/list/
Jun 10, 2026
•Critical
Mageia
217
security advisorycriticalimportantOracle Linux 9 ELSA-2026-50304 Major Kernel Security Update Available
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-50304 http://linux.oracle.com/errata/ELSA-2026-50304.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: kernel-uek-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-core-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-core-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-devel-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-modules-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-modules-core-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-modules-deprecated-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-modules-desktop-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-modules-extra-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-modules-extra-netfilter-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-modules-usb-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-debug-modules-wireless-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-devel-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-doc-6.12.0-203.76.7.3.el9uek.noarch.rpm kernel-uek-modules-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-modules-core-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-modules-deprecated-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-modules-desktop-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-modules-extra-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-modules-extra-netfilter-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-modules-usb-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-modules-wireless-6.12.0-203.76.7.3.el9uek.x86_64.rpm kernel-uek-tools-6.12.0-203.76.7.3.el9uek.x86_64.rpm aarch64: kernel-uek-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-core-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-core-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-devel-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-modules-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-modules-core-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-modules-deprecated-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-modules-desktop-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-modules-extra-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-modules-extra-netfilter-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-modules-usb-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-debug-modules-wireless-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-devel-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-doc-6.12.0-203.76.7.3.el9uek.noarch.rpm kernel-uek-modules-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-modules-extra-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-modules-core-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-modules-deprecated-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-modules-desktop-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-modules-extra-netfilter-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-modules-usb-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-modules-wireless-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek-tools-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-core-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-devel-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-modules-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-modules-core-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-modules-deprecated-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-modules-desktop-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-modules-extra-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-modules-extra-netfilter-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-modules-usb-6.12.0-203.76.7.3.el9uek.aarch64.rpm kernel-uek64k-modules-wireless-6.12.0-203.76.7.3.el9uek.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/kernel-uek-6.12.0-203.76.7.3.el9uek.src.rpm Related CVEs: CVE-2025-10263 Description of changes: [6.12.0-203.76.7.3] - arm64: errata: Mitigate TLBI errata on various Arm CPUs (Mark Rutland) [Orabug: 39017589] {CVE-2025-10263} - arm64: tlb: Add ARM64_WORKAROUND_REPEAT_TLBI_SYNC (Mark Rutland) [Orabug: 39017589] - arm64: tlb: allow XZR argumentto TLBI ops (Mark Rutland) [Orabug: 39017589] - arm64: cputype: Add C1-Premium definitions (Mark Rutland) [Orabug: 39017589] - arm64: cputype: Add C1-Ultra definitions (Mark Rutland) [Orabug: 39017589] [6.12.0-203.76.7.2] - kabi: update FIPS kABI files (Saeed Mirzamohammadi) [Orabug: 39489008] - KEYS: Reserve key usage values (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: keep FIPS MPI helpers private (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: keep FIPS compression helpers private (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: keep FIPS helper library symbols private (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: tcrypt - clamp num_mb to avoid divide-by-zero (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: tcrypt - stop ahash speed tests when setkey fails (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: add x86 GHASH CLMUL to FIPS module (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: add fixed-time AES to FIPS module (Saeed Mirzamohammadi) [Orabug: 39489008] - fips: add scatterwalk to FIPS module (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: avoid auto-load for arch specific impls (Saeed Mirzamohammadi) [Orabug: 39489008] - arm64/crypto: wire up FIPS aliases and helpers (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: share alg registry between FIPS and base kernel (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: keep crypto_user out of the FIPS module (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: tcrypt - skip retest in FIPS mode (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: skip redundant FIPS self-module signature check (Saeed Mirzamohammadi) [Orabug: 39489008] - scripts: fail cleanly on arm64 boot image formats (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto/hkdf: Skip tests with keys too short in FIPS mode (Saeed Mirzamohammadi) [Orabug: 39489008] - uek-rpm: build module symvers before fips140.ko (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: add crc64_rocksoft_generic to the FIPS module (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: add keywrap to the FIPS module (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: add cts to the FIPS module (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto: convert kdf_sp800108 to CRYPTO_API() (Saeed Mirzamohammadi) [Orabug: 39489008] - fips: drop ansi_cprng and revert ansi_cprng FIPS hooks (Saeed Mirzamohammadi) [Orabug: 39489008] - crypto/testmgr: mark xxhash64 as fips disallowed (Saeed Mirzamohammadi) [Orabug: 39489008] - Revert "fips: add xxhash64-generic to FIPS module" (Saeed Mirzamohammadi) [Orabug: 39489008] - asm-generic/vmlinux.lds.h: remove unreachable FIPS140 branch (Saeed Mirzamohammadi) [Orabug: 39489008] - btrfs: switch to library APIs for checksums (Eric Biggers) [Orabug: 39489008] - lib/crypto: blake2b: Add BLAKE2b library functions (Eric Biggers) [Orabug: 39489008] - byteorder: Add le64_to_cpu_array() and cpu_to_le64_array() (Eric Biggers) [Orabug: 39489008] _______________________________________________ El-errata mailing list
Jun 10, 2026
•Important
Oracle
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!