INFOSEC – USERSPACE.ORG :

[Linux Security]

OS: Mageia

Mageia 9 haproxy Important Request Smuggling Vulnerability MGASA-2026-0146

MGASA-2026-0146 - Updated haproxy packages fix security vulnerability

Mageia 9 Firefox Moderate LZ4 NULL Pointer Issues Fix MGASA-2026-0145

MGASA-2026-0145 - Updated firefox & thunderbird packages fix security vulnerabilities

Mageia 9 dpkg Critical Denial of Service Advisory MGASA-2026-0144

MGASA-2026-0144 - Updated dpkg packages fix security vulnerabilities

Mageia 9 golang Important Security Fix for Threats in MGASA-2026-0143

MGASA-2026-0143 - Updated golang packages fix security vulnerabilities

OS: Slackware

Slackware 15.0 Kernel Significant Process Trace Weakness Notice-2026-135-03

New kernel packages are available for Slackware 15.0 and -current to fix a security issue.

Slackware 15.0 dnsmasq Important security update 2026-135-01

New dnsmasq packages are available for Slackware 15.0 and -current to fix security issues.

Slackware 15.0 expat Important Denial of Service Resolution SSA-2026-132-02

New expat packages are available for Slackware 15.0 and -current to fix a security issue.

Slackware 15.0 Mozilla-Thunderbird Vital Buffer Overflow Patch 2026-128-02

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues.

OS: Gentoo

Gentoo DTrace Arbitrary File Creation Normal Risk 202604-04

A DTrace component, dtprobed, allows arbitrary file creation through crafted USDT provider names.

Gentoo FUSE Security Advisory Highlights Key Vulnerabilities GLSA 202604-03

Multiple vulnerabilities have been found in FUSE, the worst of which can lead to code execution.

Gentoo Commons-BeanUtils High Risk Arbitrary Code Exec GLSA 202601-05

A vulnerability has been discovered in Commons-BeanUtils, which can lead to execution of arbitrary code.

Gentoo Asterisk High Code Execution Risks GLSA-202601-04

Multiple vulnerabilities have been discovered in Asterisk, the worst of which can lead to arbitrary code execution.

OS: Debian LTS

Debian 11 Linux DLA-4587-1 Critical Escalation Info Leak CVE-2026-46333

A vulnerability has been discovered in the Linux kernel that may lead to information leaks or local privilege escalation. For Debian 11 bullseye, this problem has been fixed in version 5.10.251-5. We recommend that you upgrade your linux packages.

Debian 11 php7.4 Important Remote Code Exec Denial of Service DLA-4586-1

Multiple security issues were found in PHP, a widely-used open source general purpose scripting language, which could result in remote code execution, information disclosure, denial of service. CVE-2026-6722 A use-after-free issue was discovered in the SOAP extension which

Debian 11 Firewalld Important Unauthorized Access DLA-4585-1 CVE-2026-4948

A flaw was found in firewalld where a local unprivileged user can modify the runtime firewall state without proper authentication, leading to unauthorized changes in network security configurations. For Debian 11 bullseye, this problem has been fixed in version 0.9.3-2+deb11u1.

Debian 11 DLA-4584-1 OpenSSH Important Remote Access Risks CVE-2025-61984

Several vulnerabilities have been discovered in OpenSSH, an implementation of the SSH protocol suite. CVE-2025-61984 ssh allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a

OS: Debian

Debian DSA-6279-1 Redis Important CVE-2025-67733 DoS Risk

Brief introduction CVE-2025-67733 A flaw in the Lua scripting error path allowed an authenticated user to embed CR/LF byte sequences in an error reply produced via redis.error_reply() or the Lua error() function. Because RESP uses

Debian Bookworm nginx Denial of Service Fix DSA-6278-1 CVE-2026-40701

Multiple vulnerabilities were discoverd in Nginx, a high-performance web and reverse proxy server, which could result in bypass of authorisation rules or rate limits, denial of service or memory disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 1.22.1-9+deb12u7.

Debian DSA-6277-1 OpenJPEG2 Critical Integer Overflow DoS Risk

An integer overflow has been discovered in OpenJPEG, a JPEG 2000 image compression/decompression library, which could result in denial of service or potentially the execution of arbitrary code if malformed images are opened. For the oldstable distribution (bookworm), this problem has been fixed

Debian Bookworm ffmpeg Critical Arbitrary Code Execution DSA-6276-1

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. For the oldstable distribution (bookworm), this problem has been fixed in version 7:5.1.9-0+deb12u1.

Exploit-DB.com

[local] Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listing
Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listing

[local] Remote Sunrise Helper for Windows 2026.14 - Remote Code Execution
Remote Sunrise Helper for Windows 2026.14 - Remote Code Execution

[local] Windows Snipping Tool - NTLMv2 Hash Hijack
Windows Snipping Tool - NTLMv2 Hash Hijack

[webapps] PJPROJECT 2.16 - Heap Bufferoverflow
PJPROJECT 2.16 - Heap Bufferoverflow

OS: Scientific

Scientific Linux 7 SLSA-2023:6885 Critical: Python TLS Handshake Bypass

python: TLS handshake bypass (CVE-2023-40217) --- This content is derived from https://access.redhat.com/errata/RHSA-2023:6885 SL7 srpm python-0:2.7.5-94.el7_9.src x86_64 python-0:2.7.5-94.el7_9.x86_64 i386 python-libs-0:2.7.5-94.el7_9.i686 - Scientific Linux Development Team

SciLinux: SLSA-2023:6886 Critical: Plexus-Archiver File Creation Risk

plexus-archiver: Arbitrary File Creation in AbstractUnArchiver (CVE-2023-37460) --- This content is derived from https://access.redhat.com/errata/RHSA-2023:6886 SL7 srpm plexus-archiver-0:2.4.2-6.el7_9.src noarch plexus-archiver-0:2.4.2-6.el7_9.noarch - Scientific Linux Development Team

Scientific Linux 7 Advisory SLSA-2023:5691 Critical DoS in BIND

bind: stack exhaustion in control channel code may lead to DoS (CVE-2023-3341) --- This content is derived from https://access.redhat.com/errata/RHSA-2023:5691 SL7 srpm bind-32:9.11.4-26.P2.el7_9.15.src i386 bind-export-libs-32:9.11.4-26.P2.el7_9.15.i686 x86_64 bind-export-libs-32:9.11.4-26.P2.el7_9.15.x86_64 noarch bind-license-32:9.11.4-26.P2.el7_9.15.noarch - Scie [More...]

Scientific Linux SLSA-2023:5615 Moderate Security Issue in libssh2

libssh2: use-of-uninitialized-value in _libssh2_transport_read (CVE-2020-22218) --- This content is derived from https://sso.redhat.com/auth/realms/redhat-external/protocol/saml?SAMLRequest=fZJBT8MwDIX%2FSm85ZWk7yrZonVQxIU0ChDbgwAVlqccipUmJXTb49aQbg3Hh6jy%2F79nOFFVjW1l1tHVLeOsAKakQIZDx7so77BoIKwjvRsPj8qZkW6IWpRBKa0AcBKi3igbaN6L2O2e9qlH0nmJjnLLmE1hSEQWz7giOfsa9fhsuXA37kmUsmUdu1PfQXwSiP%2FdXMaMIoGyD4ljmsCcIESPa4Mlrbw9olizmJXvJ9WgMWmV8qMcTfpGNUq7WxZCvVTEe5dmoUJebKEXsYhAk5ahkeZoXPL3g6eQhHcqikGn2zJInCHhIlg9Sluwb61D2oJJ1wUmv0KB0qgGUpOWqur2RUSjVaY3nLe3%2FPac52Gzaq%2BUhXZh1zmwM1PxnxVNx%2Fjw9HvEu2i3m994a%2FZFU1vrdVVwXQckodPEO1z40iv4P0FdMzTcHqWz7wZHAEROzI%2FPvX5l9AQ%3D%3D&RelayState=https%3A%2F%2Faccess.redhat.com%2Ferrata%2FRHSA-2&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=BrJPc%2FvdbvszAnFEmxMHTWhWO5IJXnU8CNik001PBsM04yezeCS%2B0pETxgMIupFPsrxTbmD1oepOHhERcPL4Byk1qKkm6TtFvfXm74lB8Pui6rdjg%2B8IwVmrenuF4Ph3LD4ZnDeuNW3YO4dDbN5Q4%2F89FIjEkeGKeLLar10vtkiy8GweKEe8cuja3717pxNrVTOi8ckfBHwomdUD8Xw1IE6M1qHI4u6pOMtxqpKQPu%2FZzsAgrME854P7NQqtGaZRI3eqZlBRVyG2FYrR7KFC6QtA%2FdVCYBxBWG4JdxZhXmbM%2Fc%2Bn%2B04WEKPpbhH12qa7URkjktnYMsJNcVF7rtYtn1D6gCyPnuXrwe7qcV0MgnrfuqmW4FoGsGrjhFdp7Eebe40wh78VaLxxAxO9hR%2BrYRDgNjvtewICpUbzYQUm6jzVk3i%2FYjt5Pmr9HesI1zvaI80Jmpgud1snf1z7VWoIqnAXwIZyLlo%2BxyFZs4qDUBgFr9tqrgbnGjBgTzdyJTItq7yFMVJDCt6dy5LjnMgKSMd%2BjjsoDBjssytWMM4ulzlyQHtn4IdVgCe4q4jgLQrHXf4ZucbUIA6q%2Fxgg7favSO%2FZaivTQq%2BoaQQKJ1NXxPiMXw6j354mdaEtz8jK549xaCEZi2OiF3l8Qrzc%2B7JikRXQ8wlX1gh8SbiNHfo6ZcE%3D 023:5615 SL7 srpm libssh2-0:1.8.0-4.el7_9.1.src i386 libssh2-0:1.8.0-4.el7_9.1.i686 x86_64 libssh2-0:1.8.0-4.el7_9.1.x86_64 noarch libssh2-docs-0:1.8.0- 4.el7_9.1.noarch - Scientific Linux Development Team

OS: Redhat

Red Hat: RHSA-2023-5538-01 Important: libvpx Heap Overflow and Crash

An update for libvpx is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

Red Hat Enterprise Linux 8.2 RHSA-2023-5527 Important: Bind DoS Risk

An update for bind is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions.

Red Hat Enterprise Linux 8.2 RHSA-2023-5534-01 Important: libvpx Issues

An update for libvpx is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions.

Important Advisory RHSA-2023-5539-01 for libvpx Crash and Heap Overflow

An update for libvpx is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

NIST Vulnerability Database

CVE-2023-36409
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-36769
Microsoft OneNote Spoofing Vulnerability

CVE-2023-47004
Buffer Overflow vulnerability in Redis RedisGraph v.2.x through v.2.12.8 and fixed in v.2.12.9 allows an attacker to execute arbitrary code via the code logic after valid authentication.

CVE-2023-45556
Cross Site Scripting vulnerability in Mybb Mybb Forums v.1.8.33 allows a local attacker to execute arbitrary code via the theme Name parameter in the theme management component.

OS: OpenSuse

openSUSE Tumbleweed java-25-openj9 Moderate CVE-2026-1188 Security Patch

An update that solves one vulnerability can now be installed.

openSUSE Tumbleweed kernel-devel Moderate Security Issues Vuln 2026-10793-1

An update that solves 35 vulnerabilities can now be installed.

openSUSE Tumbleweed java-1_8_0-openj9 Moderate Security Issue CVE-2026-1188

An update that solves one vulnerability can now be installed.

openSUSE Tumbleweed openJ9 Moderate Security Update Announcement 2026-10791

An update that solves one vulnerability can now be installed.

OS: Ubuntu

Ubuntu 26.04 LTS Avahi Critical DoS Fix USN-8269-1 CVE-2026-24401

Several security issues were fixed in Avahi.

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

nginx could be made to crash or run programs if it received specially crafted network traffic.

Ubuntu 26.04 Dnsmasq Critical DoS Risk Advisory USN-8268-1 CVE-2026-2291

Several security issues were fixed in Dnsmasq.

Ubuntu 26.04 LTS Exim Major DoS Vulnerability Risk USN-8270-1

Exim could be made to crash or run programs if it received specially crafted network traffic.

OS: Fedora

Fedora 42 pgbouncer 1.25.2 Auth Query Connection Issue Fix

Update to 1.25.2.

Fedora 42 Coturn 4.11.0 Advisory for Fixes on Memory Leak Format-String

Coturn 4.11.0 Fix prometheus response memory leak introduced in 4.10.0 Use constant-time compare for STUN MESSAGE-INTEGRITY HMAC Fix format-string injection in Redis DB driver Abort on malformed allowed/denied-peer-ip at startup

Fedora 42 Valkey Security Issues CVE-2026-23479 Critical Memory Access

Version 8.0.9 Security fixes (CVE-2026-23479) Use-After-Free in unblock client flow (CVE-2026-25243) Invalid Memory Access in RESTORE command (CVE-2026-23631) Use-after-free when full sync occurs during a yielding

Fedora 42 Apptainer Addresses Critical Denial of Service Vulnerability

Update to upstream 1.5.0, fix CVE-2026-32285 and CVE-2026-34986 Update to upstream 1.5.0-rc.2 Update to upstream 1.5.0-rc.1

CVEMAP.ORG: Vulnerabilities & Exposures

Low CVE-2023-0687: GNU Glibc
A vulnerability was found in GNU C Library 2.38. It has been declared as critical. This vulnerability affects the function __monstartup of the file gmon.c of the component Call Graph Monitor. The manipulation leads to buffer overflow. It is recommended to apply a patch to fix this issue. VDB-220246 is the identifier assigned to this vulnerability.

Low CVE-2020-36660: Eve ship replacement program project Eve ship replacement program
A vulnerability was found in paxswill EVE Ship Replacement Program 0.12.11. It has been rated as problematic. This issue affects some unknown processing of the file src/evesrp/views/api.py of the component User Information Handler. The manipulation leads to information disclosure. The attack may be initiated remotely. Upgrading to version 0.12.12 is able to address this issue. The name of the patch is 9e03f68e46e85ca9c9694a6971859b3ee66f0240. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-220211.

Medium CVE-2022-36728: Library management system project Library management system
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /staff/delstu.php.

Low CVE-2021-30071: Hestiacp Hestiacp
A cross-site scripting (XSS) vulnerability in /admin/list_key.html of HestiaCP before v1.3.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

OS: Suse

openSUSE 15.4 openvswitch Moderate Invalid Memory Access Vuln 2026-1871-1

An update that solves one vulnerability can now be installed.

SUSE Firewalld Moderate Threat CVE-2026-4948 Advisory 2026-1872-1

An update that solves one vulnerability can now be installed.

SUSE Linux Enterprise 15 SP7 Kernel Important Security Update 2026-1873-1

An update that solves one vulnerability can now be installed.

SUSE 15.6 mozjs115 Important NULL Pointer Denial of Service 2026-1870-1

An update that solves three vulnerabilities can now be installed.

OS: CentOS

CentOS 7 CESA-2024-1498 Moderate Advisory: Thunderbird Update

Upstream details at : https://access.redhat.com/errata/RHSA-2024:1498

CentOS 7 CESA-2024-1486 Critical: Firefox Security Update

Upstream details at : https://access.redhat.com/errata/RHSA-2024:1486

CentOS 7 CESA-2024-1249 Important: Kernel Critical Update

Upstream details at : https://access.redhat.com/errata/RHSA-2024:1249

CentOS 7 CESA-2024-0957 Critical Thunderbird Security Update

Upstream details at : https://access.redhat.com/errata/RHSA-2024:0957

NIST Vulnerability Database

CVE-2023-36409
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-36769
Microsoft OneNote Spoofing Vulnerability

CVE-2023-45556
Cross Site Scripting vulnerability in Mybb Mybb Forums v.1.8.33 allows a local attacker to execute arbitrary code via the theme Name parameter in the theme management component.

OS: Arch

Fedora: 203105-8 moderate: ruby-on-rails sql injection vulnerability

The package python-django before version 5.1.11-1 is vulnerable to content spoofing.

Ubuntu: 303103-1 medium: gnome-terminal privilege escalation

The package konsole before version 25.04.2-1 is vulnerable to arbitrary code execution.

ArchLinux: ASA-202506-4 medium risk of go certificate bypass issue

The package go before version 1.24.4-1 is vulnerable to multiple issues including certificate verification bypass and information disclosure.

Arch Linux: ASA-202506-3 CVE-2025-0620 low: samba access issue

The package samba before version 4.22.2-1 is vulnerable to access restriction bypass.