Anonymous
2025-08-15 09:51
2025-08-15 09:51
Product
Last Report
Anonymous
2024-07-07 07:01
2024-07-07 07:01
Anonymous
2024-02-07 19:23
2024-02-07 19:23
Anonymous
2026-05-02 06:47
2026-05-02 06:47
Anonymous
2026-04-12 07:56
2026-04-12 07:56
Ralf
2026-03-04 15:08
2026-03-04 15:08
Anonymous
2019-11-27 17:19
2019-11-27 17:19
Anonymous
2019-11-11 09:02
2019-11-11 09:02
Anonymous
2019-07-21 13:03
2019-07-21 13:03
2026-05-10
Ondřej Surý has pushed a comprehensive set of PHP security updates to the Sury repository, patching critical vulnerabilities across every supported branch from version 5.6 through 8.5.6. These releases specifically target Debian GNU/Linux 11 (Bullseye) LTS, 12 (Bookworm), and 13 (Trixie), ensuring both modern stacks and legacy applications receive essential fixes for issues like cross-site scripting, memory corruption, and SQL injection. Administrators can quickly apply the patches by adding the official repository key, updating their package index, and running a standard system upgrade without risking version mismatches across different Debian releases. Keeping these backported updates current is the most reliable way to protect production servers until legacy frameworks are fully migrated to actively supported branches.
This week brings a massive wave of critical security patches across major Linux distributions, with urgent fixes targeting sudo privilege escalation risks and the newly flagged CopyFail vulnerability. Administrators managing Red Hat derivatives need to prioritize kernel and OpenSSH updates while verifying boot configurations after installation. Debian and Ubuntu users should carefully apply timezone database refreshes alongside cloud-specific kernel packages to prevent silent script failures or hardware mismatches. Running your distribution's package manager immediately is essential since delaying these installations leaves enterprise networks and edge devices wide open to exploitation.
Recent updates for openSUSE Tumbleweed address moderate security vulnerabilities across six different packages on the general availability media. These patches resolve multiple common vulnerability identifiers across libtree-sitter, copacetic, redis, libexif-devel, semaphore, and Django, with severity ratings that span from low to high impact. System administrators should apply these package upgrades as soon as possible to eliminate the identified attack vectors. Keeping your infrastructure current with these fixes will help maintain a secure baseline while avoiding unnecessary downtime during deployment.
openSUSE-SU-2026:10715-1: moderate: libtree-sitter0_26-0.26.8-2.1 on GA media
openSUSE-SU-2026:10716-1: moderate: copacetic-0.14.0-1.1 on GA media
openSUSE-SU-2026:10711-1: moderate: redis-8.6.3-1.1 on GA media
openSUSE-SU-2026:10717-1: moderate: libexif-devel-0.6.26-1.1 on GA media
openSUSE-SU-2026:10712-1: moderate: semaphore-2.18.1-1.1 on GA media
openSUSE-SU-2026:10708-1: moderate: python311-Django4-4.2.30-2.1 on GA media
openSUSE-SU-2026:10715-1: moderate: libtree-sitter0_26-0.26.8-2.1 on GA media
openSUSE-SU-2026:10716-1: moderate: copacetic-0.14.0-1.1 on GA media
openSUSE-SU-2026:10711-1: moderate: redis-8.6.3-1.1 on GA media
openSUSE-SU-2026:10717-1: moderate: libexif-devel-0.6.26-1.1 on GA media
openSUSE-SU-2026:10712-1: moderate: semaphore-2.18.1-1.1 on GA media
openSUSE-SU-2026:10708-1: moderate: python311-Django4-4.2.30-2.1 on GA media
Fedora has rolled out a series of critical security updates across versions 42, 43, and 44 to patch dangerous vulnerabilities in widely used software packages. The releases target applications like Nextcloud, .NET runtime, Exim mail server, Prosody XMPP server, Python requests library, and rclone cloud storage tool. Each update resolves multiple critical flaws ranging from remote code execution and cross-site scripting attacks to denial of service exploits and unauthorized access issues. System administrators should run the standard dnf upgrade command immediately to apply these patches before attackers can exploit the unpatched weaknesses.
Fedora 42 Update: nextcloud-33.0.3-1.fc42
Fedora 42 Update: dotnet10.0-10.0.107-1.fc42
Fedora 42 Update: exim-4.99.2-1.fc42
Fedora 42 Update: prosody-13.0.5-1.fc42
Fedora 43 Update: exim-4.99.2-1.fc43
Fedora 43 Update: prosody-13.0.5-1.fc43
Fedora 44 Update: python-pulp-glue-0.37.0-5.fc44
Fedora 44 Update: python-requests-2.33.1-1.fc44
Fedora 44 Update: nextcloud-33.0.3-1.fc44
Fedora 44 Update: dotnet10.0-10.0.107-1.fc44
Fedora 44 Update: rclone-1.74.0-2.fc44
Fedora 44 Update: exim-4.99.2-1.fc44
Fedora 44 Update: prosody-13.0.5-1.fc44
Fedora 42 Update: nextcloud-33.0.3-1.fc42
Fedora 42 Update: dotnet10.0-10.0.107-1.fc42
Fedora 42 Update: exim-4.99.2-1.fc42
Fedora 42 Update: prosody-13.0.5-1.fc42
Fedora 43 Update: exim-4.99.2-1.fc43
Fedora 43 Update: prosody-13.0.5-1.fc43
Fedora 44 Update: python-pulp-glue-0.37.0-5.fc44
Fedora 44 Update: python-requests-2.33.1-1.fc44
Fedora 44 Update: nextcloud-33.0.3-1.fc44
Fedora 44 Update: dotnet10.0-10.0.107-1.fc44
Fedora 44 Update: rclone-1.74.0-2.fc44
Fedora 44 Update: exim-4.99.2-1.fc44
Fedora 44 Update: prosody-13.0.5-1.fc44
Debian issued a series of security patches on May 9 that address critical flaws across several widely used software packages including the Linux kernel, OpenJDK, Firefox ESR, PyJWT, and libpng1.6. These updates fix vulnerabilities that could allow attackers to escalate privileges locally, execute arbitrary code, leak sensitive information, or bypass authentication mechanisms. System administrators should apply these upgrades right away since unpatched systems remain exposed to serious exploitation risks. The fixes cover both current stable releases and older support branches to keep a wide range of Debian environments secure.
ELA-1715-1 linux-6.1 security update
ELA-1714-1 openjdk-8 security update
[DLA 4575-1] firefox-esr security update
[DLA 4574-1] linux-6.1 security update
[DSA 6259-1] pyjwt security update
[DLA 4573-1] libpng1.6 security update
[DSA 6258-1] linux security update
ELA-1715-1 linux-6.1 security update
ELA-1714-1 openjdk-8 security update
[DLA 4575-1] firefox-esr security update
[DLA 4574-1] linux-6.1 security update
[DSA 6259-1] pyjwt security update
[DLA 4573-1] libpng1.6 security update
[DSA 6258-1] linux security update
2026-05-09
Today's roundup highlights hardware reviews spanning desktop cases, displays, and gaming peripherals. The Maingear MG-1 tower prioritizes airflow and supports top-tier components, though you will pay a premium. Meanwhile, enthusiasts can explore the Gigabyte QHD monitor, Valve's refreshed Steam Controller, and the high-performance ASUS ROG Harpe II Ace mouse. Storage and diagnostic tools round out the list with a practical M.2 docking station, a capable four-bay NAS system, and a compact thermal imaging camera.
Casing: Maingear MG-1 (2026) review: Fast and clean, for a price
Displays: Gigabyte GO27Q24G Review - Borderless by Design, Gaming by Nature
Gaming: Steam Controller Review - It Just Works...Most of the Time
Graphics Cards: COLORFUL iGame GeForce RTX 5070 Ultra OC Review - When Style and Performance Meet
Input: ASUS ROG Harpe II Ace Mouse Review
Storage: FIDECO 4 Bay M.2 SSD Docking Station With Offline Clone Review, Ugreen NASync DXP4800 Pro 4-bay NAS Review
Video: Thermal Master P4 Review - Mobile infrared camera with fixed focus in use
The latest KDE Plasma 6.7 development update skips flashy new features in favor of essential technical fixes that keep the desktop running smoothly. Users can finally apply ICC color profiles during HDR sessions and disable the annoying purple tint caused by AMD laptop backlight modulation. Interface tweaks clean up Discover’s Flatpak duplicates, let you drag favorites out of Kickoff without right-clicking, and add print job badges to the system tray. Meanwhile, critical patches resolve multi-GPU stutters, restore control over partially hidden windows, and optimize CPU rendering for better battery life across most Qt applications.
Bazzite Linux 44.20260508 pushes the kernel to version 6.19.14-ogc2 and bumps core libraries like SDL3 and ffmpeg to keep frame delivery smooth across handhelds and desktop rigs. The release patches a few annoying quirks by restoring HID-TMFF2 rumble support, fixing OpenTabletDriver paths, and finally ditching that old KDE boot script that kept spamming terminals during startup. ASUS ROG owners get dedicated control center tools through the ujust scripts, while non-Steam launchers like battle.net and EA App integrate more cleanly into Gaming Mode without eating extra RAM behind the scenes. Rolling forward takes a single rollback helper command that handles atomic package swaps safely, so users can skip manual dependency hunting and just keep their gaming setups running.
FEX-2605 delivers major performance gains for legacy x87 and SSE math routines while patching flag and segment register bugs that previously caused game stutters or crashes. The release also fixes a race condition on ARM64ec systems that triggered controller input failures when running WINE or Proton. Early Snapdragon X2 Elite support is included, with developers adjusting for hardware quirks like non-standard cycle counters and disabled RNG features. Most importantly, the update refines split-lock emulation by raising cache line thresholds to prevent SIGBUS crashes during atomic memory operations on Qualcomm processors.
Liquorix Kernel 7.0-5 trades raw throughput and battery efficiency for snappier desktop interactions by tightening scheduler timeslices and adjusting CPU frequency scaling thresholds. The update swaps disk I/O schedulers to kyber or bfq depending on your drive type, which helps random read performance during everyday tasks like launching apps or switching windows. Installing it on Debian or Ubuntu is as simple as running a single curl command, though keeping a fallback live USB handy remains smart since aggressive tuning can occasionally break proprietary driver compatibility. Desktop creators and gamers will likely appreciate the reduced input lag, but servers and battery-powered laptops should probably stick with their distribution stock kernels instead.
Goverlay 1.8.1 finally patches missing interface icons and fixes game card badge anchoring to keep the overlay looking clean during gameplay. The update also migrates vkBasalt to Material Design 3 while resolving a persistent bug that reset DLSS version preferences in global fgmod. A newly added clear configuration button inside the System card lets users quickly reset settings without digging through hidden directories or running terminal commands. AppImage and Flatpak builds will drop later today, giving sandboxed installation options once the patches are fully available.
Zen Browser 1.19.12b swaps its core engine to Firefox 150.0.2 while patching two security vulnerabilities that could let malicious scripts escape standard tab sandboxes. The update smooths out the space swiping mechanic and adds a straightforward keyboard shortcut for launching new workspaces without digging through nested menus. Apple users finally get relief from random popover crashes and menu bar glitches, while Linux distributions receive properly localized desktop entries straight out of the box. It is a solid stability release that keeps memory usage in check and avoids adding unnecessary features to an already polished interface.
Linux kernel versions 5.15.206 and 6.1.172 just shipped a patch that fixes a flag handling bug in the IPsec networking stack. The issue started when a recent commit accidentally wrote to the transmit flags variable instead of the correct state flags during IPv4 packet decryption. That single typo caused silent connection drops and corrupted traffic on any system running active VPNs or encrypted tunnels. Running your standard package manager update pulls the fix straight into your system without needing manual compilation or risky workarounds.
KDE Frameworks 6.26.0 drops this week as a straightforward stability patch that finally tames Baloo memory leaks and fixes file indexing crashes. The update polishes Kirigami interfaces with better touch scrolling, corrected form alignments, and smoother window transitions for mobile-style apps. File handling gets practical upgrades like smarter MIME type detection during paste operations and reliable trash worker support for large directories. Grab it through your regular package manager since the release prioritizes reliability over flashy new features and requires Qt 6.9.0 to build from source.
Godot 4.6.3 RC 1 arrives as a focused maintenance update that prioritizes stability over new features by squashing recent regressions across the engine. The release patches critical issues like memory race conditions, threading deadlocks, and editor interface bugs that could easily break active projects. Platform export pipelines, physics collision handling, and rendering optimizations also receive targeted fixes to prevent common deployment headaches. Developers should test this candidate in isolated environments before trusting it for production builds since early releases can still hide edge case crashes.
Kdenlive 26.04.1 drops a critical security patch that blocks remote code execution when opening crafted project files from untrusted sources. The vulnerability only targets external .kdenlive documents, but editors should still upgrade immediately to avoid potential system compromise. Beyond the security fix, this maintenance release smooths out several timeline glitches like frozen playheads and endless resize confirmation loops while fixing macOS microphone permission handling. Grab the update through your package manager or official download page before those workflow bugs ruin a tight editing deadline.
Ubuntu released two security notices that address critical issues in Lua and NASM across different operating system versions. The first notice targets Ubuntu 16.04 LTS by patching a garbage collection flaw in Lua that could allow attackers to crash the system or run unauthorized programs. Developers also needed to reverse a recent NASM patch for Ubuntu 24.04 LTS after discovering that the initial correction actually caused the assembler to crash unexpectedly. Users on both platforms can resolve these problems by running a standard system update or enabling Ubuntu Pro to pull the corrected package versions.
[USN-8262-1] Lua vulnerability
[USN-8248-2] NASM regression
[USN-8262-1] Lua vulnerability
[USN-8248-2] NASM regression
SUSE has issued a wide array of security updates for openSUSE Leap and SUSE Linux Enterprise systems that address numerous vulnerabilities across both critical and moderate severity levels. These patches cover essential software including Wireshark, Django, nginx, and multiple Linux kernel live patches, alongside fixes for graphics libraries, container runtimes, and development tools. The resolved issues primarily involve memory corruption flaws, denial-of-service triggers, and privilege escalation risks that could destabilize systems or leak sensitive information. System administrators are advised to deploy these updates immediately through standard zypper patch commands to maintain a secure computing environment.
openSUSE-SU-2026:20699-1: moderate: Security update for openCryptoki
openSUSE-SU-2026:20704-1: moderate: Security update for python-Django
openSUSE-SU-2026:20697-1: low: Security update for cairo
openSUSE-SU-2026:20692-1: moderate: Security update for python-pytest
openSUSE-SU-2026:20688-1: moderate: Security update for Mesa
openSUSE-SU-2026:20685-1: important: Security update for wireshark
SUSE-SU-2026:1776-1: important: Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 15 SP6)
SUSE-SU-2026:1761-1: important: Security update for nginx
SUSE-SU-2026:1768-1: important: Security update for the Linux Kernel (Live Patch 41 for SUSE Linux Enterprise 15 SP4)
SUSE-SU-2026:1771-1: important: Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP6)
SUSE-SU-2026:1770-1: important: Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP5)
openSUSE-SU-2026:10707-1: moderate: postfix-3.11.2-1.1 on GA media
openSUSE-SU-2026:10706-1: moderate: podman-5.8.2-1.1 on GA media
openSUSE-SU-2026:10705-1: moderate: libpcp-devel-6.3.8-1.1 on GA media
openSUSE-SU-2026:10704-1: moderate: micropython-1.28.0-2.1 on GA media
openSUSE-SU-2026:20699-1: moderate: Security update for openCryptoki
openSUSE-SU-2026:20704-1: moderate: Security update for python-Django
openSUSE-SU-2026:20697-1: low: Security update for cairo
openSUSE-SU-2026:20692-1: moderate: Security update for python-pytest
openSUSE-SU-2026:20688-1: moderate: Security update for Mesa
openSUSE-SU-2026:20685-1: important: Security update for wireshark
SUSE-SU-2026:1776-1: important: Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 15 SP6)
SUSE-SU-2026:1761-1: important: Security update for nginx
SUSE-SU-2026:1768-1: important: Security update for the Linux Kernel (Live Patch 41 for SUSE Linux Enterprise 15 SP4)
SUSE-SU-2026:1771-1: important: Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP6)
SUSE-SU-2026:1770-1: important: Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP5)
openSUSE-SU-2026:10707-1: moderate: postfix-3.11.2-1.1 on GA media
openSUSE-SU-2026:10706-1: moderate: podman-5.8.2-1.1 on GA media
openSUSE-SU-2026:10705-1: moderate: libpcp-devel-6.3.8-1.1 on GA media
openSUSE-SU-2026:10704-1: moderate: micropython-1.28.0-2.1 on GA media
The Slackware Linux Security Team just released critical updates for Firefox, PHP, libgpg error, Thunderbird, and the main kernel across both stable and development branches. These patches address a wide array of serious flaws ranging from dangerous memory corruption bugs to browser based scripting vulnerabilities that could compromise system integrity. Administrators should apply these upgrades right away because several of the reported exploits enable unauthorized privilege escalation on affected machines. You can grab the corrected files from official FTP mirrors and install them using standard root commands before restarting any impacted services or rebooting your system.
mozilla-firefox (SSA:2026-127-02)
php (SSA:2026-127-03)
libgpg-error (SSA:2026-127-01)
kernel (SSA:2026-128-01)
mozilla-thunderbird (SSA:2026-128-02)
mozilla-firefox (SSA:2026-127-02)
php (SSA:2026-127-03)
libgpg-error (SSA:2026-127-01)
kernel (SSA:2026-128-01)
mozilla-thunderbird (SSA:2026-128-02)
Rocky Linux administrators need to apply two urgent security patches right away. The first addresses a git-lfs flaw in version nine, while the second tackles CopyFail, a severe kernel vulnerability that allows unprivileged users to escalate directly to root access. This memory-based exploit completely bypasses traditional file integrity monitoring tools and requires no special privileges to run. Simply refresh your package metadata, update all kernel packages, and restart your machines across supported releases to stay safe.
RLSA-2026:14200: Important: git-lfs security update
CopyFail (CVE-2026-31431): Patches Now Available for Rocky Linux
RLSA-2026:14200: Important: git-lfs security update
CopyFail (CVE-2026-31431): Patches Now Available for Rocky Linux
Red Hat has released updated packages and images for OpenShift Container Platform versions 4.12.88 and 4.12.89. These updates resolve multiple software issues while introducing new features and necessary security patches. The vendor rates the overall security impact of these changes as low across all advisories. Detailed severity information remains available through CVSS scores linked to specific CVE references in each notice.
RHSA-2026:12273: Moderate: OpenShift Container Platform 4.12.88 packages and security update
RHSA-2026:12274: Important: OpenShift Container Platform 4.12.88 bug fix and security update
RHSA-2026:14097: Important: OpenShift Container Platform 4.12.89 bug fix and security update
RHSA-2026:12273: Moderate: OpenShift Container Platform 4.12.88 packages and security update
RHSA-2026:12274: Important: OpenShift Container Platform 4.12.88 bug fix and security update
RHSA-2026:14097: Important: OpenShift Container Platform 4.12.89 bug fix and security update
Oracle has released a series of package updates across versions seven through ten of its Linux operating system to address both stability issues and critical vulnerabilities. Several advisories focus on patching known security flaws in widely used libraries like libpng, freeipmi, corosync, and gstreamer1 plugins by fixing out-of-bounds memory access problems and integer overflows. Other releases provide essential bug fixes and feature enhancements for core system components such as iptables, glibc, and lvm2 while ensuring better compatibility with different kernel flavors and hardware architectures. Administrators can download these updated RPM packages directly from the Unbreakable Linux Network to keep their systems secure and running smoothly.
ELBA-2026-14789 Oracle Linux 10 iptables bug fix and enhancement update
ELSA-2026-14790 Moderate: Oracle Linux 10 libpng security update
ELSA-2026-14819 Moderate: Oracle Linux 9 freeipmi security update
ELSA-2026-14791 Moderate: Oracle Linux 9 libpng security update
ELSA-2026-13673 Moderate: Oracle Linux 9 corosync security update
ELSA-2026-14929 Important: Oracle Linux 8 mingw-libtiff security update
ELBA-2026-13663 Oracle Linux 8 glibc bug fix and enhancement update
ELBA-2026-50256 Oracle Linux 8 lvm2 bug fix update
ELSA-2026-7673 Important: Oracle Linux 7 gstreamer1-plugins-bad-free, gstreamer1-plugins-base, and gstreamer1-plugins-good security update
ELBA-2026-14789 Oracle Linux 10 iptables bug fix and enhancement update
ELSA-2026-14790 Moderate: Oracle Linux 10 libpng security update
ELSA-2026-14819 Moderate: Oracle Linux 9 freeipmi security update
ELSA-2026-14791 Moderate: Oracle Linux 9 libpng security update
ELSA-2026-13673 Moderate: Oracle Linux 9 corosync security update
ELSA-2026-14929 Important: Oracle Linux 8 mingw-libtiff security update
ELBA-2026-13663 Oracle Linux 8 glibc bug fix and enhancement update
ELBA-2026-50256 Oracle Linux 8 lvm2 bug fix update
ELSA-2026-7673 Important: Oracle Linux 7 gstreamer1-plugins-bad-free, gstreamer1-plugins-base, and gstreamer1-plugins-good security update
Fedora 42, 43, and 44 have received a batch of critical security updates covering essential system components like the Linux kernel, ProFTPD, Node.js 22, GnuTLS, and SDL3_image. The kernel releases patch a severe local privilege escalation vulnerability known as dirtyfrag while also introducing hardware support improvements across multiple architectures.Meanwhile, ProFTPD addresses a dangerous SQL injection flaw in its database module, and Node.js 22 resolves over ten distinct issues ranging from memory exhaustion attacks to unauthorized file permission changes. Administrators should run the standard dnf upgrade command promptly to apply these patches before attackers can exploit the documented weaknesses.
Fedora 43 Update: proftpd-1.3.9a-1.fc43
Fedora 43 Update: kernel-7.0.4-100.fc43
Fedora 43 Update: nodejs22-22.22.2-2.fc43
Fedora 42 Update: kernel-6.19.14-101.fc42
Fedora 42 Update: proftpd-1.3.9a-1.fc42
Fedora 44 Update: gnutls-3.8.13-1.fc44
Fedora 44 Update: kernel-7.0.4-200.fc44
Fedora 44 Update: proftpd-1.3.9a-1.fc44
Fedora 44 Update: nodejs22-22.22.2-3.fc44
Fedora 44 Update: SDL3_image-3.4.4-1.fc44
Fedora 43 Update: proftpd-1.3.9a-1.fc43
Fedora 43 Update: kernel-7.0.4-100.fc43
Fedora 43 Update: nodejs22-22.22.2-2.fc43
Fedora 42 Update: kernel-6.19.14-101.fc42
Fedora 42 Update: proftpd-1.3.9a-1.fc42
Fedora 44 Update: gnutls-3.8.13-1.fc44
Fedora 44 Update: kernel-7.0.4-200.fc44
Fedora 44 Update: proftpd-1.3.9a-1.fc44
Fedora 44 Update: nodejs22-22.22.2-3.fc44
Fedora 44 Update: SDL3_image-3.4.4-1.fc44
Several Debian security bulletins released address critical flaws in widely deployed software including Apache HTTP Server, PHP versions 8.2 and 8.4, Firefox ESR, the Linux kernel, Postorius, and Little CMS. These vulnerabilities could allow malicious actors to execute arbitrary code, escalate system privileges, crash services, or expose sensitive information. Each advisory lists exact version numbers for various Debian releases alongside older stable distributions that require immediate patching. Administrators ought to prioritize these installations right away since the combined threat landscape remains quite active across multiple platforms.
[DLA 4571-1] apache2 security update
[DSA 6257-1] postorius security update
[DSA 6256-1] php8.4 security update
[DSA 6255-1] php8.2 security update
[DLA 4572-1] linux security update
[DSA 6254-1] firefox-esr security update
[DSA 6253-1] linux security update
ELA-1713-1 linux-5.10 security update
ELA-1709-1 lcms2 security update
[DLA 4571-1] apache2 security update
[DSA 6257-1] postorius security update
[DSA 6256-1] php8.4 security update
[DSA 6255-1] php8.2 security update
[DLA 4572-1] linux security update
[DSA 6254-1] firefox-esr security update
[DSA 6253-1] linux security update
ELA-1713-1 linux-5.10 security update
ELA-1709-1 lcms2 security update
AlmaLinux distributed a series of security patches for operating system versions 8 through 10. These updates address critical flaws across several key packages including the Linux kernel, mingw-libtiff, corosync, and freeipmi that could otherwise enable remote code execution or cause service disruptions.
ALSA-2026:14929: mingw-libtiff security update (Important)
ALSA-2026:A007: kernel-rt security update (Important)
ALSA-2026:A004: kernel security update (Important)
ALSA-2026:A006: kernel security update (Important)
ALSA-2026:A005: kernel security update (Important)
ALSA-2026:13673: corosync security update (Moderate)
ALSA-2026:14819: freeipmi security update (Moderate)
ALSA-2026:14929: mingw-libtiff security update (Important)
ALSA-2026:A007: kernel-rt security update (Important)
ALSA-2026:A004: kernel security update (Important)
ALSA-2026:A006: kernel security update (Important)
ALSA-2026:A005: kernel security update (Important)
ALSA-2026:13673: corosync security update (Moderate)
ALSA-2026:14819: freeipmi security update (Moderate)
[ Archive ]
