Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 9,991 articles for you...
202
security advisorybuffer overflowimportantopenSUSE libyang Important Buffer Overflow Advisory 2026-2381-1
An update that solves one vulnerability can now be installed.. # Security update for libyang Announcement ID: SUSE-SU-2026:2381-1 Release Date: 2026-06-12T06:50:59Z Rating: important References: * bsc#1265330 Cross-References: * CVE-2026-44673 CVSS scores: * CVE-2026-44673 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-44673 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-44673 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves one vulnerability can now be installed. ## Description: This update for libyang fixes the following issue * CVE-2026-44673: integer overflow in `lyb_read_string()` of `src/parser_lyb.c` leads to heap buffer overflow when parsing a maliciously crafted LYB binary blob (bsc#1265330). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2026-2381=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2381=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2381=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2381=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2381=1 ##Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * libyang-devel-1.0.184-150300.3.9.1 * yang-tools-debuginfo-1.0.184-150300.3.9.1 * yang-tools-1.0.184-150300.3.9.1 * libyang-cpp-devel-1.0.184-150300.3.9.1 * libyang-extentions-debuginfo-1.0.184-150300.3.9.1 * libyang1-debuginfo-1.0.184-150300.3.9.1 * python3-yang-1.0.184-150300.3.9.1 * python3-yang-debuginfo-1.0.184-150300.3.9.1 * libyang-debuginfo-1.0.184-150300.3.9.1 * libyang-extentions-1.0.184-150300.3.9.1 * libyang-cpp1-1.0.184-150300.3.9.1 * libyang-cpp1-debuginfo-1.0.184-150300.3.9.1 * libyang1-1.0.184-150300.3.9.1 * libyang-debugsource-1.0.184-150300.3.9.1 * openSUSE Leap 15.3 (noarch) * libyang-doc-1.0.184-150300.3.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libyang-extentions-debuginfo-1.0.184-150300.3.9.1 * libyang1-debuginfo-1.0.184-150300.3.9.1 * libyang-debuginfo-1.0.184-150300.3.9.1 * libyang-extentions-1.0.184-150300.3.9.1 * libyang1-1.0.184-150300.3.9.1 * libyang-debugsource-1.0.184-150300.3.9.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libyang-extentions-debuginfo-1.0.184-150300.3.9.1 * libyang1-debuginfo-1.0.184-150300.3.9.1 * libyang-debuginfo-1.0.184-150300.3.9.1 * libyang-extentions-1.0.184-150300.3.9.1 * libyang1-1.0.184-150300.3.9.1 * libyang-debugsource-1.0.184-150300.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libyang-extentions-debuginfo-1.0.184-150300.3.9.1 * libyang1-debuginfo-1.0.184-150300.3.9.1 * libyang-debuginfo-1.0.184-150300.3.9.1 * libyang-extentions-1.0.184-150300.3.9.1 * libyang1-1.0.184-150300.3.9.1 * libyang-debugsource-1.0.184-150300.3.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libyang-extentions-debuginfo-1.0.184-150300.3.9.1 * libyang1-debuginfo-1.0.184-150300.3.9.1 *libyang-debuginfo-1.0.184-150300.3.9.1 * libyang-extentions-1.0.184-150300.3.9.1 * libyang1-1.0.184-150300.3.9.1 * libyang-debugsource-1.0.184-150300.3.9.1 ## References: * https://www.suse.com/security/cve/CVE-2026-44673.html * https://bugzilla.suse.com/show_bug.cgi?id=1265330 . Important update for openSUSE fixing integer overflow in libyang leading to buffer overflow vulnerability.. openSUSE libyang security important integer overflow buffer overflow. . Severity: Important. LinuxSecurity.com Team
Jun 12, 2026
•Important
OpenSUSE
172
security advisorydenial of serviceremote code executionUbuntu 16.04 LTS GStreamer Base Plugins Critical DoS CVE-2026-2921
GStreamer Base Plugins could be made to crash or run programs if it opened a specially crafted file.. ========================================================================== Ubuntu Security Notice USN-8130-3 June 10, 2026 gst-plugins-base1.0 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 LTS Summary: GStreamer Base Plugins could be made to crash or run programs if it opened a specially crafted file. Software Description: - gst-plugins-base1.0: GStreamer plugins Details: USN-8130-1 fixed a vulnerability in GStreamer Base Plugins. This update provides the corresponding update for Ubuntu 16.04 LTS. Original advisory details: It was discovered that GStreamer Base Plugins incorrectly handled certain AVI media files. A remote attacker could use this issue to cause GStreamer Base Plugins to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS gstreamer1.0-plugins-base 1.8.3-1ubuntu0.3+esm4 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8130-3 https://ubuntu.com/security/notices/USN-8130-2 https://ubuntu.com/security/notices/USN-8130-1 CVE-2026-2921 . GStreamer Base Plugins on Ubuntu 16.04 LTS face a critical update to prevent potential denial of service and code execution risks.. GStreamer Base Plugins, Ubuntu 16.04, security advisory, denial of service, code execution. . Severity: Important. LinuxSecurity.com Team
Jun 12, 2026
•Important
Ubuntu
202
security advisorysecurity issueremote accessopenSUSE NetworkManager-libreswan Important Security Update CVE-2024-9050
An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for NetworkManager-libreswan ______________________________________________________________________________ Announcement ID: openSUSE-SU-2026:0200-1 Rating: important References: #1232040 Cross-References: CVE-2024-9050 Affected Products: openSUSE Backports SLE-15-SP7 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for NetworkManager-libreswan fixes the following issues: - Update to version 1.2.24 (boo#1232040): + Fixed formatting of ipsec.conf snippet. This is a security issue with severity of "Important." (CVE-2024-9050). + Added support for "require-id-on-certificate" setting. + Updated translations. - Changes from version 1.2.22: + Add IPv6 support. - Changes from version 1.2.20: + Support setting "leftmodecfgclient" to "no" + Support for the "type", "hostaddrfamily" and "clientaddrfamily", "leftsubnet" and "rightcert" parameters. - Changes from version 1.2.18: + Drop libnm-glib compatibility (NetworkManager < 1.0). + Add support for the "authby", "dpdaction", "dpddelay", "dpdtimeout", "ipsec-interface" parameters. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP7: zypper in -t patch openSUSE-2026-200=1 Package List: - openSUSE Backports SLE-15-SP7 (aarch64 i586 ppc64le s390x x86_64): NetworkManager-libreswan-1.2.24-bp157.3.3.1 NetworkManager-libreswan-gnome-1.2.24-bp157.3.3.1 - openSUSE Backports SLE-15-SP7 (noarch): NetworkManager-libreswan-lang-1.2.24-bp157.3.3.1 References: https://www.suse.com/security/cve/CVE-2024-9050.html https://bugzilla.suse.com/1232040 . openSUSE Security Update addresses an important security issue in NetworkManager-libreswan with CVE-2024-9050.. openSUSE, NetworkManager-libreswan, security update, important fix. . Severity: Important. LinuxSecurity.com Team
Jun 12, 2026
•Important
OpenSUSE
202
security advisoryimportantOpenSUSEopenSUSE 2025 0367 1 Chromium Important Type Confusion Heap Buffer Overflow
An update that fixes four vulnerabilities is now available.. openSUSE Security Update: Security update for chromium ______________________________________________________________________________ Announcement ID: openSUSE-SU-2025:0367-1 Rating: important References: #1249999 Cross-References: CVE-2025-10500 CVE-2025-10501 CVE-2025-10502 CVE-2025-10585 Affected Products: openSUSE Backports SLE-15-SP7 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: Chromium was updated to 140.0.7339.185 (stable released 2025-09-17) boo#1249999 Security issues fixed: * CVE-2025-10585: Type Confusion in V8 * CVE-2025-10500: Use after free in Dawn * CVE-2025-10501: Use after free in WebRTC * CVE-2025-10502: Heap buffer overflow in ANGLE Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP7: zypper in -t patch openSUSE-2025-367=1 Package List: - openSUSE Backports SLE-15-SP7 (aarch64 x86_64): chromedriver-140.0.7339.185-bp157.2.52.1 chromium-140.0.7339.185-bp157.2.52.1 References: https://www.suse.com/security/cve/CVE-2025-10500.html https://www.suse.com/security/cve/CVE-2025-10501.html https://www.suse.com/security/cve/CVE-2025-10502.html https://www.suse.com/security/cve/CVE-2025-10585.html https://bugzilla.suse.com/1249999 . OpenSUSE updates Chromium fixing four important security issues including use after free and heap buffer overflow.. openSUSE Security, Chromium Update, CVE-2025-10500, Important Patch, Vulnerability Fix. . Severity: Important. LinuxSecurity.com Team
Jun 12, 2026
•Important
OpenSUSE
202
security advisorybuffer overflowsoftware patchopenSUSE Chromium Important Four Issues Fixed Vuln 2024-0302-1
An update that fixes four vulnerabilities is now available.. openSUSE Security Update: Security update for chromium ______________________________________________________________________________ Announcement ID: openSUSE-SU-2024:0302-1 Rating: important References: #1230391 Cross-References: CVE-2024-8636 CVE-2024-8637 CVE-2024-8638 CVE-2024-8639 Affected Products: openSUSE Backports SLE-15-SP6 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for chromium fixes the following issues: Chromium 128.0.6613.137 (released 2024-09-10) (boo#1230391) * CVE-2024-8636: Heap buffer overflow in Skia * CVE-2024-8637: Use after free in Media Router * CVE-2024-8638: Type Confusion in V8 * CVE-2024-8639: Use after free in Autofill Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP6: zypper in -t patch openSUSE-2024-302=1 Package List: - openSUSE Backports SLE-15-SP6 (aarch64 x86_64): chromedriver-128.0.6613.137-bp156.2.26.1 chromedriver-debuginfo-128.0.6613.137-bp156.2.26.1 chromium-128.0.6613.137-bp156.2.26.1 chromium-debuginfo-128.0.6613.137-bp156.2.26.1 References: https://www.suse.com/security/cve/CVE-2024-8636.html https://www.suse.com/security/cve/CVE-2024-8637.html https://www.suse.com/security/cve/CVE-2024-8638.html https://www.suse.com/security/cve/CVE-2024-8639.html https://bugzilla.suse.com/1230391 . Update for openSUSE addresses multiple issues in Chromium, ensuring enhanced performance and security. Immediate action recommended.. Chromium update, openSUSE patch, buffer overflow, security update. . Severity: Important.LinuxSecurity.com Team
Jun 12, 2026
•Important
OpenSUSE
202
security advisorybuffer overflowimportantopenSUSE Backports SLE-15-SP6 Doomsday Critical Buffer Overflow Issue
An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for doomsday ______________________________________________________________________________ Announcement ID: openSUSE-SU-2025:0117-1 Rating: important References: #1239917 Cross-References: CVE-2025-2592 CVSS scores: CVE-2025-2592 (SUSE): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Backports SLE-15-SP6 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for doomsday fixes the following issues: - CVE-2025-2592: Use system assimp library to fix a heap-based buffer overflow (boo#1239917) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP6: zypper in -t patch openSUSE-2025-117=1 Package List: - openSUSE Backports SLE-15-SP6 (ppc64le s390x x86_64): doomsday-2.3.1-bp156.4.3.1 References: https://www.suse.com/security/cve/CVE-2025-2592.html https://bugzilla.suse.com/1239917 . An important update for openSUSE doomsday addresses a critical buffer overflow issue. Stay secured with the latest patch.. openSUSE update doomsday buffer overflow security. . Severity: Important. LinuxSecurity.com Team
Jun 12, 2026
•Important
OpenSUSE
197
security advisorylocal privilege escalationdebianDebian libinput Important Code Execution Vulnerability DLA-4626-1
Two vulnerabilities were found in libinput, an input device management and event handling library. CVE-2022-1215 libinput did not properly handled evdev devices, which may potentially be exploited by malicious local users in specific setup to execute arbitrary. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4626-1
Jun 11, 2026
•Important
Debian LTS
202
security advisoryimportantOpenSUSEopenSUSE Backports SLE-15-SP7 Python-Simpleeval Sandbox Access Issue
An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for python-simpleeval ______________________________________________________________________________ Announcement ID: openSUSE-SU-2026:0087-1 Rating: important References: #1259685 Cross-References: CVE-2026-32640 Affected Products: openSUSE Backports SLE-15-SP7 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for python-simpleeval fixes the following issues: - CVE-2026-32640: Objects (including modules) can leak dangerous modules through to direct access inside the sandbox (boo#1259685) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP7: zypper in -t patch openSUSE-2026-87=1 Package List: - openSUSE Backports SLE-15-SP7 (noarch): python311-simpleeval-0.9.13-bp157.2.3.1 References: https://www.suse.com/security/cve/CVE-2026-32640.html https://bugzilla.suse.com/1259685 . An important update for openSUSE fixes a security flaw in python-simpleeval, which allowed module leakage in the sandbox.. openSUSE updates, python-simpleeval security, module leakage fix, sandbox access vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Jun 11, 2026
•Important
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!