Find the information you need for your favorite open source distribution.
An update that fixes three vulnerabilities is now available.
The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed:
This update for libcryptopp fixes the following issues: CVE-2023-50981: Fixed a potential denial of service issue via crafted DER public key data (bsc#1218222).
This update for pam fixes the following issues: CVE-2024-22365: Fixed a local denial of service during PAM login due to a missing check during path manipulation (bsc#1218475).
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed:
An update that fixes one vulnerability is now available.
An update that fixes one vulnerability is now available.
This update for gstreamer-plugins-rs fixes the following issues: CVE-2022-31394: Fixed a potential denial of service in the HTTP/2 implementation (bsc#1208556).
This update for hawk2 fixes the following issues: Fixed HttpOnly secure flag by default (bsc#1216508). Fixed CSRF in errors_controller.rb protection (bsc#1216571).
This update for MozillaThunderbird fixes the following issues: Firefox Extended Support Release 115.6.0 ESR (bsc#1217974): CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM
This update for eclipse-jgit, jsch fixes the following issues: Security fix: \- CVE-2023-4759: Fixed an arbitrary file overwrite which might have occurred with a specially crafted git repository and a case-insensitive
This update for wireshark fixes the following issues: Updated to Wireshark 3.6.20:
This update for python-aiohttp fixes the following issues: CVE-2023-49081: fixed an HTTP header injection via a crafted version (bsc#1217684).
This update for python-aiohttp fixes the following issues: CVE-2023-49081: fixed an HTTP header injection via a crafted version (bsc#1217684).
This update for python-paramiko fixes the following issues: CVE-2023-48795: Fixed prefix truncation breaking ssh channel integrity aka Terrapin Attack (bsc#bsc#1218168).
This update for libcryptopp fixes the following issues: CVE-2023-50980: Fixed DoS via malformed DER public key file (bsc#1218219).
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
