Product
Last Report

Click here to browse the Windows compatibility database

Click here to browse the Linux compatibility database

Click here to browse the macOS compatibility database

Date: 2026-05-06 12:20 | Last update:



2026-05-06

Software 44344 Published by Philipp Esselbach 0

Fish Shell 4.7.0 finally patches the exact bugs that make terminal work feel like a chore, including history corruption from abrupt shutdowns and theme variables leaking into background scripts. Interactive users will notice smoother completion paging, properly sorted directory lists, and private mode history that actually stays isolated. Developers get cleaner config path handling, modernized translation workflows, and fixed man page completions for newer coreutils versions. Long-standing regressions like broken vi mode editing and double command execution on failures finally disappear, making the upgrade worth the restart.

Reviews 52630 Published by Philipp Esselbach 0

Here is a roundup of today's reviews. Cougar steps away from conventional designs with the CFV235 Vision case, swapping traditional layouts for a central floating ventilation setup and an integrated LCD panel that catches the eye. On the laptop front, reviewers praise the Lenovo Yoga Slim 7i Aura Edition for prioritizing a lightweight chassis and impressive battery life over raw processing power. Budget builders will appreciate several other picks, including the CPS PCCOOLER RT720 TC air cooler that balances cooling performance with a clean aesthetic alongside the EPOMAKER TH108 Pro keyboard equipped with Creamy Jade switches. The roundup concludes by highlighting the MSI Z890 GAMING PLUS WIFI6E motherboard as an accessible platform for Intel Core Ultra processors while pointing to the Inland QN450 SSD as a highly efficient storage drive that beats rivals on value.

Casing: Cougar CFV235 Vision Review – Floating Design Meets Display
Computers: Lenovo Yoga Slim 7i Aura Edition (2026) Review: Vibrant display, lightweight design, and an endurance champ
Cooling: CPS PCCOOLER RT720 TC Review
Input: EPOMAKER TH108 Pro Review
Motherboards: MSI Z890 GAMING PLUS WIFI6E Motherboard Review
Storage: Inland QN450 1TB SSD Review: Maximum efficiency, minimum spend

Software 44344 Published by Philipp Esselbach 0

PHP 8.5.6 drops a necessary cleanup batch that patches multiple security vulnerabilities and squashes persistent memory leaks across the core runtime and popular extensions. Server admins should upgrade immediately since the update fixes critical CVEs in MBString, SOAP, and Standard modules that could easily trigger crashes or expose injection risks under heavy load. The release also stabilizes Opcache by resolving JIT assertion failures and branch optimization bugs that previously caused random segfaults during complex script execution. Windows developers get improved Curl compression support while various other extensions receive targeted memory management fixes without introducing unnecessary bloat, so just grab the update and keep your error logs quiet.

Ubuntu 7074 Published by Philipp Esselbach 0

Ubuntu issued an emergency update for nghttp2 after discovering that flawed session termination checks could let remote attackers crash the HTTP/2 library and cause service outages. Django developers patched three separate weaknesses in the Python web framework, including cookie caching errors that risked session theft, malformed ASGI requests that drained system resources, and cache middleware bugs capable of leaking confidential data. Mako also needed a quick fix since improperly handled double slashes inside URIs could trick the template engine into revealing sensitive network information. Container users must apply new Docker releases to stop BuildKit from bypassing directory restrictions through weak path validation and Git URL fragment checks.

[USN-8233-1] nghttp2 vulnerability
[USN-8232-1] Django vulnerabilities
[USN-8234-1] Mako vulnerability
[USN-8230-1] Docker vulnerabilities

SUSE 5638 Published by Philipp Esselbach 0

SUSE has released a batch of moderate security updates to patch multiple vulnerabilities across several key software packages. The fixes target widely used tools such as Xen, curl, Firefox, Grafana, and Prometheus on openSUSE Tumbleweed, Leap 15.4, and SUSE Linux Enterprise Micro systems. These patches resolve specific cross-referenced CVEs that could potentially allow local privilege escalation or denial of service attacks. Administrators need to apply the updates right away through zypper or YaST, and they must reboot any machines running Xen to complete the process.

SUSE-SU-2026:1692-1: moderate: Security update for xen
openSUSE-SU-2026:10676-1: moderate: golang-github-prometheus-prometheus-3.11.3-1.1 on GA media
openSUSE-SU-2026:10675-1: moderate: dpkg-1.22.22-1.1 on GA media
openSUSE-SU-2026:10674-1: moderate: curl-8.20.0-1.1 on GA media
openSUSE-SU-2026:10673-1: moderate: coredns-1.14.3-1.1 on GA media
openSUSE-SU-2026:10670-1: moderate: avahi-0.8-43.1 on GA media
openSUSE-SU-2026:10677-1: moderate: grafana-11.6.14+security01-2.1 on GA media
openSUSE-SU-2026:10671-1: moderate: bubblewrap-0.11.2-1.1 on GA media
openSUSE-SU-2026:10668-1: moderate: MozillaFirefox-150.0.1-1.1 on GA media
openSUSE-SU-2026:10669-1: moderate: alloy-1.16.0-2.1 on GA media
openSUSE-SU-2026:10672-1: moderate: cmctl-2.5.0-1.1 on GA media

Slackware 1257 Published by Philipp Esselbach 0

Slackware users need to upgrade hunspell to version 1.7.3 across both the stable release and current development branches to patch critical security vulnerabilities. The updated binaries are available on official FTP servers hosted by the OSU Open Source Lab, so you can grab them directly from your preferred mirror. Make sure to download the correct build for your system architecture and verify the provided MD5 signatures before installing anything. A quick root command using upgradepkg will handle the rest and keep your spelling tools running securely.

hunspell (SSA:2026-125-01)

Red Hat 9405 Published by Philipp Esselbach 0

Red Hat has issued a batch of security advisories targeting multiple packages across its enterprise Linux distribution. The updates primarily focus on critical components like the kernel, sudo, and Firefox, while also addressing libraries such as LibRaw and nginx. Most of these patches carry an Important severity rating, though a handful are classified as Moderate based on their potential impact. Administrators managing RHEL versions six through ten should apply these fixes promptly to maintain system stability and protect against known vulnerabilities.

RHSA-2026:13582: Important: firefox security update
RHSA-2026:13577: Important: kernel security update
RHSA-2026:13578: Important: kernel-rt security update
RHSA-2026:13857: Important: dovecot security update
RHSA-2026:13860: Important: LibRaw security update
RHSA-2026:13854: Important: LibRaw security update
RHSA-2026:13839: Important: nginx security update
RHSA-2026:13845: Important: webkit2gtk3 security update
RHSA-2026:13812: Important: updated RHEL-8 based Middleware Containers container images
RHSA-2026:13830: Important: dovecot security update
RHSA-2026:13750: Important: openssh security update
RHSA-2026:13692: Important: python3.11 security update
RHSA-2026:13680: Important: nginx security update
RHSA-2026:13673: Moderate: corosync security update
RHSA-2026:13682: Important: firefox security update
RHSA-2026:13664: Important: kernel security update
RHSA-2026:13665: Important: firefox security update
RHSA-2026:13734: Important: kernel security update
RHSA-2026:13731: Important: sudo security update
RHSA-2026:13693: Important: .NET 8.0 security update
RHSA-2026:13677: Moderate: systemd security update
RHSA-2026:13672: Important: fence-agents security update
RHSA-2026:13671: Important: image-builder security update
RHSA-2026:13670: Moderate: python-tornado security update
RHSA-2026:13683: Important: firefox security update
RHSA-2026:13657: Moderate: corosync security update
RHSA-2026:13681: Important: kernel security update
RHSA-2026:13644: Moderate: corosync security update
RHSA-2026:13651: Moderate: systemd security update
RHSA-2026:13643: Important: osbuild-composer security update
RHSA-2026:13642: Important: image-builder security update
RHSA-2026:13641: Moderate: python-tornado security update
RHSA-2026:13634: Important: nginx security update
RHSA-2026:13631: Important: Red Hat Build of Apache Camel 4.14 for Quarkus 3.27 update is now available (RHBQ 3.27.3.SP1)
RHSA-2026:13600: Important: firefox security update
RHSA-2026:13583: Important: firefox security update
RHSA-2026:13596: Important: firefox security update
RHSA-2026:11721: Important: Red Hat build of Quarkus 3.27.3.SP1 security update
RHSA-2026:13902: Important: resource-agents security update
RHSA-2026:13889: Important: sudo security update
RHSA-2026:13895: Important: sudo security update
RHSA-2026:13888: Important: sudo security update
RHSA-2026:13891: Important: sudo security update
RHSA-2026:13896: Important: sudo security update
RHSA-2026:13892: Important: sudo security update
RHSA-2026:13887: Important: kernel security update
RHSA-2026:13870: Important: LibRaw security update
RHSA-2026:13868: Important: LibRaw security update
RHSA-2026:13867: Important: rh-podman-desktop security update

Fedora Linux 9340 Published by Philipp Esselbach 0

Fedora 44 users need to install three security updates released this week to fix critical flaws across essential networking software. The pyOpenSSL library reaches version 26.1.0 after patching a bug that allowed NUL bytes to silently truncate certificate fields and break data consistency. Squid advances to its seventh major release by addressing two distinct security flaws tied to ICP traffic processing. PowerDNS also receives a major bump to 5.0.4, which closes a file descriptor exhaustion exploit, stops database corruption from malformed records, and blocks information leaks caused by unsafe LDAP queries.

Fedora 44 Update: pyOpenSSL-26.1.0-1.fc44
Fedora 44 Update: squid-7.5-1.fc44
Fedora 44 Update: pdns-5.0.4-1.fc44

Debian 10891 Published by Philipp Esselbach 0

Debian LTS has released security patches for libarchive and pyjwt to address multiple critical flaws across several supported distributions. The libarchive update fixes four separate vulnerabilities that could trigger infinite loops, leak sensitive memory data, crash applications, or allow arbitrary code execution on older architectures. A separate advisory corrects a pyjwt specification violation where the library improperly accepted JSON Web Tokens containing unrecognized critical header parameters. Administrators managing Debian 11 or older extended support releases should upgrade these packages immediately to close these security gaps.

[DLA 4563-1] libarchive security update
[DLA 4564-1] pyjwt security update
ELA-1707-1 pyjwt security update

AlmaLinux 2556 Published by Philipp Esselbach 0

AlmaLinux released a batch of security advisories to patch critical vulnerabilities across multiple system packages. Most notifications carry an Important severity rating and cover essential tools such as the Linux kernel, Thunderbird, TigerVNC, LibRaw, Dovecot, systemd, and image builder. Engineers addressed a wide array of dangerous flaws including memory corruption issues, privilege escalation risks, and information disclosure bugs that could compromise system stability. Administrators need to install these updates quickly because the patches also fix denial of service vulnerabilities in several widely deployed services.

ALSA-2026:13578: kernel-rt security update (Important)
ALSA-2026:13537: thunderbird security update (Important)
ALSA-2026:13414: tigervnc security update (Important)
ALSA-2026:13577: kernel security update (Important)
ALSA-2026:13284: LibRaw security update (Important)
ALSA-2026:13677: systemd security update (Moderate)
ALSA-2026:13671: image-builder security update (Important)
ALSA-2026:13830: dovecot security update (Important)
ALSA-2026:3839: image-builder security update (Important)
2026-05-05

Software 44344 Published by Philipp Esselbach 0

Node.js 26 launches with the Temporal API enabled by default, giving developers a modern and reliable way to handle dates and timezones without third-party libraries. The V8 engine updates to version 14.6 and Undici moves to 8.0, which tightens garbage collection and improves HTTP client stability under heavy loads. Legacy code paths get a hard cleanup, with http.writeHeader, old stream modules, and experimental transform flags fully removed or pushed to runtime deprecation. Teams building from source must now use GCC 13.2, drop Python 3.9, and recompile native addons for the bumped module version before the official October LTS release.

Software 44344 Published by Philipp Esselbach 0

PHP 8.4.21 arrives exactly when developers need it, patching security holes and stopping the engine from tripping over routine edge cases. The update fixes memory leaks in session and Phar handling, corrects a JIT assertion failure, and patches a trait versus enum clash that has already nuked production deployments. Windows teams get brotli and zstd support in Curl, which trims API response times without forcing a full stack rewrite. Push this through staging before touching production, since a patched runtime beats chasing untested features every single time.

Software 44344 Published by Philipp Esselbach 0

PHP 8.2.31 finally brings brotli and zstd compression to Windows Curl while patching a cluster of security flaws that could easily compromise live servers. The release squashes cross-site scripting in the FPM status page, closes a SQL injection vector in PDO_Firebird, and fixes multiple memory corruption bugs in SOAP and MBString that attackers love to exploit. Developers running newer OpenSSL 4.0 libraries will see smoother compatibility, and Windows environments can finally drop workarounds for modern compression standards. Swap out the old binaries before automated scanners start knocking, and test your custom SOAP integrations since the underlying parsing changes might catch legacy code off guard.

Manjaro Linux 169 Published by Philipp Esselbach 0

Manjaro Linux 26.1 preview finally updates the desktop environments to match modern display standards while fixing long-standing usability headaches. GNOME 50 delivers polished fractional scaling, hardware-accelerated remote streaming, and actual parental controls that do not break under pressure. Plasma 6.6 lets users save custom layouts as switchable themes and adds practical accessibility filters without cluttering the settings menu. The release wraps everything in Kernel 7.0 for fresh hardware support while keeping older LTS kernels available for machines that refuse to upgrade.

Software 44344 Published by Philipp Esselbach 0

PHP 8.3.31 lands today with a heavy dose of security patches across FPM, MBString, SOAP, and the Standard library, plus native brotli and zstd compression finally making its way to Curl on Windows. Server admins should install this immediately since leaving older versions running is basically handing attackers a free pass to exploit cross-site scripting, SQL injection, and memory corruption flaws. The update also patches up OpenSSL 4.0 handshake failures and seals a null byte injection hole in the Firebird PDO driver that could easily leak database records. Skipping this upgrade just guarantees you will spend your weekend debugging preventable crashes instead of actually shipping code.

Reviews 52630 Published by Philipp Esselbach 0

Today's roundup gathers a selection of technology reviews covering everything from everyday laptops to specialized desktop components. Budget-friendly 2-in-1 machines earn praise for their quiet operation while newer gaming models focus on OLED displays and modest processor bumps. The collection also explores low-profile keyboards, Wi-Fi 7 motherboards, and compact power supplies designed for specific builds. Each review ultimately weighs performance upgrades against practical pricing to help shoppers navigate a crowded market without overspending.

Computers: Ninkear YBOOK 15 Review - Budget 2-in-1 with Caveats, Alienware 16 Area-51 review: OLED screen update, HP OmniBook 7 (Panther Lake) 16" Laptop Review
Displays: Philips Brilliance 27E3U7903 Review: Extremely Sharp, Unusually Rich in Color, and With a Weakness That Should Not Be Ignored
Input: IQUNIX MQ80 Keyboard Review, be quiet! Dark Perk Mice Review,
Motherboards: ASRock B850 Rock WiFi 7 Motherboard Review
Power: NZXT C850 SFX Gold Power Supply Review - Sufficient Power with a Platinum Rating for Small Cases
Software: UL Procyon Essentials Review - Proper Browser Benchmarking
Video: Reolink Solar Floodlight Security Camera (F310B) review

AlmaLinux 2556 Published by Philipp Esselbach 0

AlmaLinux 10.2 Beta Lavender Lion has arrived across all supported architectures, bringing a major refresh to the development stack with Python 3.14, PHP 8.4, Ruby 4.0, PostgreSQL 18, and MariaDB 11.8. The release restores legacy i686 userspace packages for older applications while updating core virtualization and container tools like Podman, QEMU-KVM, and libvirt. Security gets a noticeable upgrade through refreshed OpenSSL, OpenSSH, SELinux policies, and an early patch for the Copy Fail flaw tracked as CVE-2026-31431. Because this is strictly a beta build, system administrators should only validate it in isolated test environments and never push it to production until the stable version officially launches.

Software 44344 Published by Philipp Esselbach 0

Python 3.14.5rc1 drops ahead of the May 8 final release, packing around 113 fixes and a major memory management pivot that rolls back the incremental garbage collector to the proven generational model after production environments started choking on RAM. The update also swaps out PGP verification for Sigstore, introduces a fresh Windows install manager, and bundles several performance tweaks from the broader 3.14 series like faster UUID generation and remote debugging support. Developers should run their test suites against this candidate to catch any lingering regressions, especially around memory handling or extension compatibility. Hold off on pushing it to live servers until the official stable build lands next week.

Software 44344 Published by Philipp Esselbach 0

ROCm 7.2.3 finally patches those frustrating idle gaps in vLLM profiling traces that turn latency debugging into a guessing game. MIGraphX gets a solid performance bump for embedding-heavy models through fused gather operations, and ONNX Runtime gains better multi-stream memory handling to keep inference pipelines from choking on themselves. Server admins should double-check their firmware and driver matrices since MI325X KVM users absolutely must skip the 30.20.0 AMD GPU driver. The software stack is also actively retiring legacy profiling tools and ROCm SMI by mid-2026, so teams need to migrate to rocprofv3 and AMD SMI before those support windows close.

Software 44344 Published by Philipp Esselbach 0

UniGetUI 2026.1.8 drops the bundled WinGet CLI and now automatically falls back to a portable Pinget alternative whenever the official tool goes missing or breaks. Windows users get a fresh Avalonia interface they can toggle on demand, while Linux admins finally gain native Flatpak support alongside fixes for Fedora RPM crashes and Chocolatey validation hiccups. The update also shifts branding over to Devolutions and rolls out meaningful accessibility tweaks that actually help screen readers navigate the menus without getting stuck. It is a solid maintenance release that trims unnecessary bloat while keeping package management reliable across different systems.

Ubuntu 7074 Published by Philipp Esselbach 0

Ubuntu released critical security updates to address serious vulnerabilities in curl, exim4, and sed across its supported distributions. The curl patches prevent attackers from stealing credentials or cookies by fixing how the tool reuses network connections under specific configurations. Exim4 gets corrected for dangerous parsing flaws that could allow remote code execution or information disclosure through malformed email headers and authentication inputs. A final fix in sed stops local attackers from overwriting arbitrary files by correcting how the text editor processes symbolic links during modifications.

[USN-8227-1] curl vulnerabilities
[USN-8228-1] Exim vulnerabilities
[USN-8229-1] sed vulnerability

SUSE 5638 Published by Philipp Esselbach 0

SUSE recently pushed a batch of security patches for openSUSE systems that tackle dozens of vulnerabilities across several key packages. MozillaThunderbird and FreeRDP receive the most urgent attention, as their updates resolve severe memory corruption flaws and potential remote execution risks. Additional updates cover moderate and important vulnerabilities in Helm, Trivy, Xen, himmelblau, plus a necessary kernel refresh for Leap 15.6.

openSUSE-SU-2026:10660-1: moderate: xen-4.21.1_04-1.1 on GA media
openSUSE-SU-2026:20657-1: important: Security update for freerdp
openSUSE-SU-2026:20662-1: moderate: Security update for hauler
openSUSE-SU-2026:20664-1: important: Security update for MozillaThunderbird
openSUSE-SU-2026:20659-1: moderate: Security update for libspectre
openSUSE-SU-2026:20655-1: moderate: Security update for helm
openSUSE-SU-2026:20658-1: moderate: Security update for himmelblau
SUSE-SU-2026:1671-2: important: Security update for the Linux Kernel
openSUSE-SU-2026:0163-1: important: Security update for trivy

Slackware 1257 Published by Philipp Esselbach 0

The Slackware Linux Security Team has released updated httpd packages for both the stable 15.0 release and the current development branch to address multiple security flaws in Apache version 2.4.67. These patches fix critical vulnerabilities that could allow attackers to trigger memory disclosures, escalate privileges, or execute arbitrary code through various server modules. Administrators can download the corrected files from official mirrors, verify their integrity using the provided MD5 checksums, and install them with a simple upgradepkg command.

httpd (SSA:2026-124-01)

Red Hat 9405 Published by Philipp Esselbach 0

Red Hat has released a batch of security advisories covering several key software packages across multiple RHEL versions and specialized platforms. The updates target widely used tools like OpenSSH, Thunderbird, the Linux kernel, and Ansible Automation Platform while addressing vulnerabilities rated as important or moderate by product security teams. Administrators should review the detailed CVSS scores linked to each CVE reference before applying these patches to their systems. These releases ensure that critical infrastructure remains protected against newly discovered flaws across both standard enterprise distributions and extended support environments.

RHSA-2026:13414: Important: tigervnc security update
RHSA-2026:13412: Important: thunderbird security update
RHSA-2026:13383: Important: openssh security update
RHSA-2026:13380: Important: openssh security update
RHSA-2026:13342: Important: thunderbird security update
RHSA-2026:13515: Moderate: freeipmi security update
RHSA-2026:13508: Important: Red Hat Ansible Automation Platform 2.6 Product Security and Bug Fix Update
RHSA-2026:13533: Important: thunderbird security update
RHSA-2026:11720: Important: Red Hat build of Quarkus 3.20.6.SP1 security update
RHSA-2026:13571: Critical: Streams for Apache Kafka 3.2.0 release and security update
RHSA-2026:13566: Important: kernel security update
RHSA-2026:13565: Important: kernel security update
RHSA-2026:13537: Important: thunderbird security update
RHSA-2026:13512: Important: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update
RHSA-2026:13498: Important: dovecot security update
RHSA-2026:13381: Important: openssh security update

Oracle Linux 6478 Published by Philipp Esselbach 0

Oracle has rolled out a series of critical security advisories covering Unbreakable Enterprise Kernel updates across Linux versions 8 through 10. These kernel patches primarily target cryptographic vulnerabilities tied to CVE-2026-31431 while also resolving memory overflow issues and correcting processor instruction handling on Zen1 hardware. Administrators managing Oracle Linux 10 will also find important fixes for the libcap library that address a dangerous time-of-check-to-time-of-use race condition. Meanwhile, Thunderbird receives a major version jump to its latest extended support release with comprehensive security hardening applied across dozens of identified flaws.

ELSA-2026-50255 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update: Copy Fail
ELSA-2026-50255 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update: Copy Fail
ELSA-2026-50255 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update: Copy Fail
ELSA-2026-50253 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update: Copy Fail
ELSA-2026-50253 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update: Copy Fail
ELSA-2026-50253 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update: Copy Fail
ELSA-2026-50254 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update: Copy Fail
ELSA-2026-50254 Important: Unbreakable Enterprise kernel security update: Copy Fail
ELSA-2026-12423 Important: Oracle Linux 10 libcap security update
ELSA-2026-12285 Important: Oracle Linux 10 thunderbird security update

Fedora Linux 9340 Published by Philipp Esselbach 0

Fedora administrators should immediately apply a series of security patches released on May 5 to address critical vulnerabilities across multiple core packages in Fedora 43 and 44. The updates target nodejs20, chromium, uriparser, rust-sequoia-git, and insight by fixing dozens of severe flaws that could allow denial of service attacks or unauthorized system access. Many of these issues stem from memory corruption bugs and flawed input validation within widely used networking and rendering libraries. System owners can quickly deploy the fixes through standard package management tools using the specific advisory identifiers provided in each notification.

Fedora 43 Update: nodejs20-20.20.2-3.fc43
Fedora 43 Update: chromium-147.0.7727.137-1.fc43
Fedora 44 Update: uriparser-1.0.1-1.fc44
Fedora 44 Update: rust-sequoia-git-0.6.0-1.fc44
Fedora 44 Update: insight-18.0.50.20260306-3.fc44
Fedora 44 Update: nodejs20-20.20.2-3.fc44

Debian 10891 Published by Philipp Esselbach 0

Debian issued two security advisories to address critical flaws in Thunderbird and LXD. The Thunderbird patch for Debian GNU/Linux 11 (Bullseye) LTS resolves several vulnerabilities that could allow attackers to run arbitrary code on affected systems. A separate update for the LXD container platform for both Debian GNU/Linux 12 (Bookworm) and 13 (Trixie) fixes multiple issues that might otherwise trigger denial of service attacks. System administrators should apply these package upgrades immediately to keep their networks secure.

[DLA 4562-1] thunderbird security update
[DSA 6247-1] lxd security update

AlmaLinux 2556 Published by Philipp Esselbach 0

AlmaLinux released important security updates for multiple system components. The OpenSSH patches cover versions 8 through 10 and fix five separate flaws that could enable privilege escalation or remote code execution. Another notification addresses a race condition in libcap version eight that might allow unauthorized access to file capabilities.

ALSA-2026:13381: openssh security update (Important)
ALSA-2026:13380: openssh security update (Important)
ALSA-2026:13285: libcap security update (Important)
ALSA-2026:13383: openssh security update (Important)

[ Archive ]