Linux Compatible

Mesa 26.1.3 Fixes Intel Xe Crashes and Radeon VRAM Leaks for Stable Linux Gaming

Software 44476 Published 2026-06-18 14:47 by Philipp Esselbach 0

Mesa 26.1.3 disables concurrent binning by default to stop Intel Xe stuttering and patches compressed local memory crashes on newer chips. I have seen VRAM usage climb steadily during long gaming sessions until the system choked, so Radeon users will appreciate these critical fixes for Vulkan ray tracing leaks. Display server interactions get cleaner pageflip handling and better timestamp accuracy, which eliminates black screen glitches and frame pacing hiccups across most monitor setups. Mobile graphics and translation layers like Zink also receive stability tweaks, making this a solid maintenance release that trades risky performance gains for actual reliability.

Tails 7.9 Release Fixes Hardware Drops and Adds Secure Flatpak Support Behind a Feature Flag

Tails 92 Published 2026-06-18 14:39 by Philipp Esselbach 0

Tails 7.9 pushes Tor Browser up to version 15.0.16 and refreshes firmware packages so newer Wi-Fi and graphics adapters actually stop dropping connections mid-session. Flatpak app installation finally arrives but stays locked behind a feature flag until operators explicitly enable it, keeping stream isolation tight and preventing accidental DNS leaks. The release also silences those persistent Secure Boot certificate warnings that used to clutter the boot screen and hardens the automated test suite with proper loading delays. It is a straightforward stability update that keeps the system lean while quietly fixing the hardware quirks that usually trip up field operators.

XASTRA Cooler, ViewSonic OLED Monitor, Elliot RPG, SteelSeries Headset, and ASUS Motherboard Review

Reviews 52667 Published 2026-06-18 08:56 by Philipp Esselbach 0

Today's tech roundup covers essential upgrades across several categories, beginning with EnosTech highlighting the XASTRA LZ360 cooler for its unique pixel screen and reliable thermal output. ViewSonic brings affordable OLED technology to mainstream buyers according to Tom's Hardware, which praises the VX2738-2K monitor for delivering rapid refresh rates and rich color accuracy at a highly accessible price point. Action RPG fans will appreciate The Adventures of Elliot: The Millennium Tales as a charming homage to classic Nintendo titles that stumbles slightly on execution but remains highly entertaining throughout its campaign. Computer builders and audio enthusiasts can also explore the SteelSeries Arctis Nova Pro Wireless OMNI headset with its improved noise cancellation and replaceable power cells, plus the ASUS TUF Gaming B850-Pro motherboard that packs Wi-Fi 7 connectivity and PCIe Gen 5 support into a well rounded mid tier package.

Cooling: XASTRA Astra LZ360 ARGB Black Review: Nostalgic Pixel Display!
Displays: ViewSonic VX2738-2K 27-inch OLED review: An OLED value play
Gaming: The Adventures of Elliot: The Millennium Tales Review - Channeling Zelda and Secret of Mana with Flawed Precision

NVIDIA Linux x64 Display Driver 595.84 Fixes Suspend Hangs and Game Black Screens

Drivers 3036 Published 2026-06-18 08:43 by Philipp Esselbach 0

NVIDIA Linux x64 Display Driver 595.84 patches the runtime power management glitch that routinely bricks systems during sleep cycles on both laptops and desktops. The update clears up stubborn black screens and hangs across a long list of titles including Elden Ring and Assassin's Creed Origins by tightening the rendering pipeline instead of relying on quick game profile workarounds. Vulkan semaphore handling gets cleaned up to kill stutter in multi threaded apps while X11 users stop fighting black screens after refresh rate switches or overlay toggles. DKMS compilation chains are restored and busted monitor timing regressions from earlier releases get reversed so custom resolutions and adaptive sync settings stay intact without manual reconfiguration.

Fedora Linux 44-20260616 Updated ISOs Slash Post-Install Updates With Pre-Patched Live Images

Fedora Linux 9388 Published 2026-06-18 08:35 by Philipp Esselbach 0

The Respin SIG just released Fedora Linux 44 20260616 Live images that ship with Kernel 7.0.12 and a heavily updated package set straight out of the box. Fresh Workstation installations will skip roughly one gigabyte of post-install downloads since months of standard repository updates are already baked into the live environment. Users can choose from GNOME, KDE Plasma, Xfce, MATE, Budgie, LXQt, or i3 depending on their hardware limits and desktop preferences. These community respins work best for quick workstation setups where immediate usability matters more than strict upstream release schedules.

Zen Browser 1.21.2b Update Patches Critical Security Flaws and Fixes Tab Routing Bugs

Software 44476 Published 2026-06-18 08:25 by Philipp Esselbach 0

Zen Browser 1.21.2b drops a necessary security update that patches multiple high severity memory corruption and sandbox escape flaws inherited from the Firefox 152 engine. The release finally resolves persistent tab routing bugs that previously overwrote active windows and forced background tabs to steal focus during multitasking. Users on Windows and Linux will appreciate the new context menu option for copying links directly from the tab bar, while finer zoom increments give better control over page scaling. Inline downloads like PDFs now open in background tabs instead of hijacking the current view, which keeps research sessions intact without constant navigation loss.

Postfix 3.11.4, 3.10.11, 3.9.12, and 3.8.18 Released: Updates Fix SMTP Client Crashes and Tighten Input Limits

Software 44476 Published 2026-06-18 08:17 by Philipp Esselbach 0

Postfix 3.11.4 patches five low-impact bugs that can quietly crash the SMTP client or drain server memory under heavy load. The update specifically targets TLSA record parsing flaws that trigger null pointer reads and assertion failures when DANE authentication encounters malformed DNS responses. Three additional fixes tighten input handling for oversized SMTP command lines and BDAT chunks to prevent resource exhaustion from misbehaving clients. Mail administrators should apply the patch immediately on systems using unbound or Cloudflare resolvers while relying on rate limiting and DNSBL services to block distributed abuse.

Node.js 26.3.1, 24.17.0 LTS, and 22.23.0 LTS Security Updates: Patch TLS and Memory Flaws Across All Versions

Software 44476 Published 2026-06-18 08:09 by Philipp Esselbach 0

Node.js versions 26.3.1, 24.17.0 LTS, and 22.23.0 LTS drop with critical security patches that target core networking and cryptographic modules. The release fixes high severity flaws in TLS hostname validation and WebCrypto output handling to stop buffer overflows and certificate mismatches. Medium priority changes redact proxy credentials from error logs and cap HTTP/2 origin tracking to prevent unbounded memory growth. Teams should apply the patch immediately since low severity permission model adjustments will break legacy scripts that rely on unrestricted file and network access.

Linux Kernel, Go, and more updates for Ubuntu

Ubuntu 7123 Published 2026-06-18 07:58 by Philipp Esselbach 0

Ubuntu released a major batch of security notices to address critical vulnerabilities across the Linux kernel and several widely used software packages. Attackers could exploit these flaws to escalate privileges, execute arbitrary code remotely, or trigger denial of service attacks on affected systems running from Ubuntu 16.04 through 26.04 LTS. The updates specifically target weaknesses in packet socket handling, cryptographic module operations, SSH key validation, and media parsing routines within tools like GStreamer and kitty. System administrators should apply the recommended package upgrades immediately and reboot their machines to ensure all kernel changes take effect properly.

[USN-8361-3] Linux kernel vulnerability
[USN-8441-1] Linux kernel vulnerabilities
[USN-8390-2] Linux kernel vulnerability
[USN-8447-1] Go Cryptography vulnerabilities
[USN-8445-1] Config-IniFiles vulnerability
[USN-8446-1] GStreamer Bad Plugins vulnerabilities
[USN-8443-1] web.py vulnerability
[USN-8444-1] Graphite vulnerability
[USN-8425-1] njs vulnerability
[USN-8448-1] Dolibarr vulnerability
[USN-8442-1] kitty vulnerabilities

LibVNCServer, Wireshark, Grafana, Traefik2, and Python Libraries updates for SUSE

SUSE 5681 Published 2026-06-18 07:55 by Philipp Esselbach 0

SUSE recently published several security advisories that tackle known flaws across its enterprise Linux releases and openSUSE Tumbleweed. The highest priority patches address critical weaknesses in LibVNCServer and Wireshark, effectively blocking dangerous memory corruption issues and remote code execution vectors. System administrators should also roll out moderate updates for Grafana, Traefik2, Google ADK, and WebOb documentation to keep their infrastructure secure. Applying these fixes requires running standard zypper commands or launching the YaST online update utility on any impacted SUSE Linux Enterprise machine.

SUSE-SU-2026:2427-1: important: Security update for LibVNCServer
openSUSE-SU-2026:11045-1: moderate: traefik2-2.11.50-1.1 on GA media
openSUSE-SU-2026:11044-1: moderate: python311-google-adk-2.2.0-1.1 on GA media
openSUSE-SU-2026:11041-1: moderate: python-WebOb-doc-1.8.10-1.1 on GA media
openSUSE-SU-2026:11040-1: moderate: grafana-11.6.14+security04-4.1 on GA media
SUSE-SU-2026:2437-1: important: Security update for wireshark

Thunderbird, Firefox, OpenSSL, libidn, and BIND updates for Slackware

Slackware 1269 Published 2026-06-18 07:52 by Philipp Esselbach 0

The Slackware Linux Security Team just rolled out a major security update that patches critical vulnerabilities across five essential packages for both Slackware 15.0 and current development branches. Mozilla Thunderbird and Firefox now ship with updated ESR builds that close dozens of memory safety flaws, while OpenSSL received carefully backported fixes for heap overreads and use-after-free errors. The remaining updates tackle a dangerous out-of-bounds read in libidn alongside a DNS64 response corruption bug that previously allowed corrupted data to reach clients. You can grab the verified packages from official FTP mirrors right now and apply them quickly using standard upgrade commands to keep your systems protected.

mozilla-thunderbird (SSA:2026-168-04)
mozilla-firefox (SSA:2026-168-03)
openssl (SSA:2026-168-05)
libidn (SSA:2026-168-02)
bind (SSA:2026-168-01)

OpenSSL, PostgreSQL, Redis and WebKit2GTK updates for Rocky Linux

Rocky Linux 933 Published 2026-06-18 07:50 by Philipp Esselbach 0

Kernel, Firefox, OpenShift, and Core Packages updates for RHEL

Red Hat 9439 Published 2026-06-18 07:44 by Philipp Esselbach 0

Chromium, Firefox, Nextcloud, Xen, and more updates for Fedora

Fedora Linux 9388 Published 2026-06-18 07:41 by Philipp Esselbach 0

Fedora administrators should immediately apply a comprehensive batch of security patches released for both Fedora 43 and Fedora 44 distributions. These updates address numerous high severity vulnerabilities across widely used software including Chromium, Firefox, Nextcloud, Xen hypervisor, and various networking libraries. Developers have resolved critical flaws ranging from authentication bypasses and path traversal exploits to memory corruption issues and command injection risks that could compromise system integrity. Users can quickly install the corrected packages by running the standard DNF upgrade command with the provided advisory identifiers through their terminal.

Fedora 44 Update: nss-3.124.0-1.fc44
Fedora 44 Update: firefox-152.0-1.fc44
Fedora 44 Update: tig-2.6.1-1.fc44
Fedora 44 Update: chromium-149.0.7827.114-1.fc44
Fedora 44 Update: xen-4.21.1-4.fc44
Fedora 44 Update: ldns-1.9.2-1.fc44
Fedora 44 Update: librabbitmq-0.16.0-1.fc44
Fedora 44 Update: vorbis-tools-1.4.3-5.fc44
Fedora 44 Update: bird-3.3.1-1.fc44
Fedora 44 Update: nextcloud-33.0.5-1.fc44
Fedora 44 Update: perl-Protocol-HTTP2-1.13-1.fc44
Fedora 44 Update: openslide-4.0.0-14.fc44
Fedora 43 Update: tig-2.6.1-1.fc43
Fedora 43 Update: bird-3.3.1-1.fc43
Fedora 43 Update: nextcloud-33.0.5-1.fc43
Fedora 43 Update: perl-Protocol-HTTP2-1.13-1.fc43
Fedora 43 Update: openslide-4.0.0-14.fc43
Fedora 43 Update: ack-3.10.0-1.fc43

LibreOffice, Nginx, Firefox ESR, and Atril updates for Debian

Debian 10957 Published 2026-06-18 07:34 by Philipp Esselbach 0

Debian administrators should immediately apply a fresh batch of security patches released to protect their systems from multiple critical flaws across popular open source applications. LibreOffice and Nginx received urgent fixes for memory corruption and remote execution vulnerabilities that could allow attackers to crash software or take full control of affected machines through malicious files or network requests. Firefox ESR faces numerous sandbox escape and privilege escalation risks while Atril contains a dangerous command injection bug triggered by specially crafted PDF documents.

[DLA 4633-1] libreoffice security update
[DLA 4634-1] nginx security update
[DSA 6350-1] firefox-esr security update
[DSA 6349-1] atril security update

Kernel, OpenSSL, Rsync, and Xwayland updates for AlmaLinux

AlmaLinux 2585 Published 2026-06-18 07:33 by Philipp Esselbach 0

AlmaLinux released a major security update to patch critical vulnerabilities across numerous system packages. The errata addresses severe memory corruption bugs and command injection flaws inside the Linux kernel, OpenSSL toolkit, and PostgreSQL database engine. Administrators need to apply these fixes right away since outdated systems face serious exposure to remote code execution and privilege escalation threats. Detailed vulnerability reports plus direct installation guides for AlmaLinux 8 and 10 are available through the official tracking portal.

ALSA-2026:26532: dracut security update (Important)
ALSA-2026:26562: xorg-x11-server-Xwayland security, bug fix, and enhancement update (Important)
ALSA-2026:26408: rsync security update (Important)
ALSA-2026:26352: opencryptoki security update (Moderate)
ALSA-2026:26181: postgresql:15 security update (Important)
ALSA-2026:26335: hplip security update (Important)
ALSA-2026:26275: openssl security update (Important)
ALSA-2026:26354: libxml2 security update (Low)
ALSA-2026:26347: libpng15 security update (Moderate)
ALSA-2026:26348: libpng12 security update (Moderate)
ALSA-2026:26428: kernel-rt security update (Important)
ALSA-2026:26355: libxslt security update (Moderate)
ALSA-2026:26427: kernel security update (Important)
ALSA-2026:26332: rsync security, bug fix, and enhancement update (Important)

Zed Editor 1.7.2 Update: Cuts AI Context Bloat and Tightens Git Workflow for Faster Editing

Software 44476 Published 2026-06-17 19:50 by Philipp Esselbach 0

Zed 1.7.2 finally addresses the growing context bloat in AI coding assistants by introducing automatic and manual compaction that keeps token usage from spiraling out of control. Git operations get a serious quality boost with a new context menu for custom branch commands, a tree view for commit history, and smoother worktree navigation. The editor runs leaner through patched LSP memory leaks, faster large buffer handling, and finally clickable terminal links that actually work. This patch also quietly fixes several platform-specific crashes and race conditions that routinely broke remote agent sessions, making it a necessary step for anyone running heavy workloads.

BIND 9.18.50, 9.20.24, 9.21.23 releases: Upgrade to 9.20 before 9.18 reaches end of life

Software 44476 Published 2026-06-17 19:45 by Philipp Esselbach 0

The latest BIND 9 releases drop today with three version tracks, and the most important detail is that 9.18.50 marks the absolute end of the line for the older branch. Administrators should pivot to the 9.20.24 stable track immediately since the bind-esv repository shifts versions before July and leaves 9.18 users without future security patches. Operators should verify cryptographic signatures on the downloaded tarballs because skipping that step is how production DNS gets poisoned during routine updates. The 9.21.23 experimental branch belongs strictly on test benches, while waiting for official ISC container images prevents broken dependency chains on live servers.

Nginx 1.31.2 Update Fixes Critical Memory Flaws and Improves Proxy Reliability

Software 44476 Published 2026-06-17 19:38 by Philipp Esselbach 0

The Nginx 1.31.2 mainline update patches three critical memory corruption flaws that could crash public-facing proxies or leak data through malformed HTTP/3 and gRPC traffic. Administrators should prioritize this release because the fixes close real attack vectors while quietly improving request tracing and TLS negotiation visibility. The release also corrects access log formatting errors and updates the Windows OpenSSL dependency to keep builds stable. Rolling out the patch now prevents silent degradation and keeps upstream routing reliable under heavy load.

Visual Studio Code 1.125 Brings Secure Remote Browsing and Smarter Extension Updates

Software 44476 Published 2026-06-17 19:34 by Philipp Esselbach 0

Visual Studio Code 1.125 fixes the remote browser proxy so web traffic routes securely through SSH without breaking local port forwarding. Extension updates now respect disabled packages and let admins set a two hour delay to stop surprise breakages during active work. Enterprise teams get native MDM support for GitHub Copilot policies, which locks compliance settings across devices without forcing individual user accounts. The update also streamlines language model discovery and bumps the language server protocol to version 3.18 for smoother extension development.

Amarok 3.3.3 Fixes Layout Saving and Playback Suspend Bugs

KDE 1740 Published 2026-06-17 19:30 by Philipp Esselbach 0

Amarok 3.3.3 arrives as a focused bugfix update that finally patches the stubborn window layout saving and context applet height persistence issues. The release also restores reliable system suspend inhibition during playback and updates the Wikipedia context panel to handle modern page syntax. Distro package managers and Flatpak will deliver the update soon, making the installation process straightforward for most Linux users. Since the release contains only maintenance patches rather than new features, users should install it only if the current bugs are actively disrupting their listening workflow.

KDE neon 20260616 Released: Plasma 6.7 Finally Solves Multi Monitor Chaos and Flatpak Tray Bugs

KDE 1740 Published 2026-06-17 08:47 by Philipp Esselbach 0

KDE neon 20260616 ships Plasma 6.7 with per screen virtual desktops that finally stop windows from jumping between displays when switching workspaces. The update also patches system tray ghosting for Flatpak apps, adds a built in microphone tester, and routes notifications to the nearest screen edge instead of spawning randomly over active workspaces. Users get continuous KDE software updates on a stable Ubuntu 24.04 base, though they must rely on Discover or run apt full upgrade to avoid broken dependencies. The distribution targets technically minded users who want bleeding edge desktop features without waiting for traditional release cycles, while explicitly leaving proprietary driver troubleshooting and outdated repository apps behind.

Noctua AIO Coolers, RTX 5070 GPU, PCIe 5.0 SSDs, and Favorite Keyboards

Reviews 52667 Published 2026-06-17 08:01 by Philipp Esselbach 0

Here is a roundup of today's reviews and articles where tech enthusiasts can explore detailed reviews covering premium liquid coolers like the Noctua NL-LC1 series alongside an affordable MSI alternative that balances quiet operation with solid performance. The new NVIDIA GeForce RTX 5070 Founders Edition receives a thorough evaluation that highlights its reliance on advanced AI rendering features rather than raw raster performance. Two rapid PCIe 5.0 storage drives also hit the market, offering massive capacity options for users who prioritize raw transfer rates over premium pricing tiers. Finally, veteran keyboard testers share their personal favorites after years of rigorous testing, highlighting how specific layouts and polling rates continue to dominate daily workspaces.

Cooling: Noctua NL-LC1-36 Review, MSI MPG Coreliquid P22 360 Review: Low noise, strong performance, budget price, Noctua NL-LC1-36 AIO Review - Very Impressive, Noctua NL-LC1 review: first AIO cooler from the premium Austrian brand, Noctua NL-LC1-36 liquid cooler review, Noctua NL-LC1-24 liquid cooler review
Graphics Cards: NVIDIA GeForce RTX 5070 Founders Edition Graphics Card Review
Input: These are the four keyboards I'm still using after reviewing keyboards for years — How a 500 Hz TKL and a Stream Deck layout dominated my desk
Storage: SanDisk Optimus GX Pro 8100 8TB SSD Review — the undisputed king of high-capacity PCIe 5.0 SSDs, AGI AI858 2TB SSD Review — High-end PCIe 5 speeds on a budget

PHP 8.5.8 RC Fixes Opcache Crashes, Memory Leaks, and Phar Security Bypass Before Stable Release

Software 44476 Published 2026-06-17 07:30 by Philipp Esselbach 0

The PHP 8.5.8 release candidate arrives with critical patches for Opcache crashes, memory leaks in GD and Zlib, and a Phar directory bypass that could expose sensitive files. Core stability improves through fixes for NaN coercion panics, BCMath rounding overflow, and broken DatePeriod recurrence checks that often break scheduled tasks. SOAP handles raw input correctly now while URI error logging stops bleeding validation failures across requests, making debugging noticeably less frustrating. Teams should run the test suite on staging servers immediately to catch these edge cases before the stable build hits production environments.

PHP 8.4.23 Release Candidate Now Available for Testing

Software 44476 Published 2026-06-17 07:25 by Philipp Esselbach 0

The PHP team has released a testing candidate for version 8.4.23 that targets stability improvements across numerous core extensions. This update resolves critical memory leaks in Zlib and Zip modules alongside integer overflow vulnerabilities within the GD image library. Developers will also benefit from corrected validation logic in OpenSSL encryption routines, database query handling, and internationalization functions. Community testers can now evaluate these patches to help finalize a secure and reliable production release.

Ruby FreeRDP, Linux Kernel and OpenStack updates for Ubuntu

Ubuntu 7123 Published 2026-06-17 07:03 by Philipp Esselbach 0

Ubuntu released a batch of security notices that address multiple critical flaws across widely used software packages including Ruby FreeRDP rsync and the Linux kernel. Remote and local attackers might leverage these flaws to bypass authentication controls or trigger system crashes that lead to denial of service conditions. The updates specifically target older LTS releases alongside recent distributions and require administrators to apply standard system upgrades followed by necessary reboots or daemon restarts. Organizations running cloud infrastructure or web proxy services should prioritize these patches immediately to prevent unauthorized access and maintain system integrity.

[USN-8431-1] Ruby vulnerabilities
[USN-8432-1] FreeRDP vulnerabilities
[USN-8349-3] rsync regression
[USN-8437-1] rabbitmq-c vulnerabilities
[USN-8435-1] Squid vulnerabilities
[USN-8436-1] ca-certificates update
[USN-8434-1] Nova vulnerability
[USN-8438-1] OpenImageIO vulnerabilities
[USN-8440-1] Linux kernel (Azure) vulnerabilities
[USN-8426-2] Linux kernel (Azure) vulnerabilities
[USN-8412-2] QEMU regression
[USN-8433-1] OpenStack Keystone vulnerabilities
[USN-8439-1] Linux kernel (Oracle) vulnerabilities

OpenSSL, Linux Kernel, Directory Server, and Container Tools updates for SUSE

SUSE 5681 Published 2026-06-17 06:59 by Philipp Esselbach 0

MySQL, PostgreSQL, and fence-agents updates for Rocky Linux

Rocky Linux 933 Published 2026-06-17 06:51 by Philipp Esselbach 0

Rocky Linux administrators should prioritize a new wave of security patches covering MySQL, PostgreSQL, and cluster management utilities. These advisories span multiple operating system releases with important fixes targeting PostgreSQL fifteen through eighteen on version nine systems. Older infrastructure gets moderate database updates while the newest platform receives critical enhancements for fence-agents. Each advisory provides specific CVSS scores so teams can quickly assess which vulnerabilities demand immediate attention.

RLSA-2026:25919: Moderate: mysql:8.0 security update
RLSA-2026:25902: Important: fence-agents security update
RLSA-2026:26203: Important: postgresql:16 security update
RLSA-2026:26204: Important: postgresql:18 security update
RLSA-2026:26181: Important: postgresql:15 security update
RLSA-2026:26180: Moderate: mysql:8.4 security update

Libexif, Rsync, Hplip, Redis, PostgreSQL, and more updates for RHEL

Red Hat 9439 Published 2026-06-17 06:50 by Philipp Esselbach 0

Ksplice for UEKR7 updates for Oracle Linux

Oracle Linux 6497 Published 2026-06-17 06:47 by Philipp Esselbach 0

Oracle Linux administrators managing UEKR7 version 5.15.0 on OL8 and OL9 can now deploy essential kernel patches through Ksplice Uptrack to resolve several critical vulnerabilities. The ELSA-2026-50294 advisory specifically targets dangerous flaws such as null pointer dereferences in the NVMe TCP subsystem, overly permissive Kerberos SPNEGO privilege checks, and persistent memory leaks in network drivers. Users with automatic installation enabled will receive these fixes immediately while others can manually trigger the process using a straightforward terminal command. Meanwhile the ELBA-2026-50317 release requires no attention whatsoever since it introduces changes that do not impact live production environments.

New Ksplice updates for UEKR7 5.15.0 on OL8 and OL9 (ELSA-2026-50294)
ELBA-2026-50317 does not affect running systems

Gsasl, Asterisk, and Atril updates for Debian

Debian 10957 Published 2026-06-17 06:45 by Philipp Esselbach 0

Debian administrators received three urgent security advisories that target serious vulnerabilities in gsasl, Asterisk, and Atril. The GNU SASL library needs a quick patch since its NTLM client lacks proper input sanitizing, which could expose sensitive memory contents to malicious users. Asterisk also demands immediate attention because developers fixed twelve separate issues involving heap overflows, stack underflows, and flawed certificate validation processes. Users running Debian GNU/Linux 11 (Bullseye) LTS or 12 (Bookworm) must upgrade their packages immediately to close these dangerous gaps before attackers can exploit them.

[DSA 6348-1] gsasl security update
[DLA 4631-1] asterisk security update
[DLA 4632-1] atril security update

WebKitGTK, Postfix, and MySQL updates for AlmaLinux

AlmaLinux 2585 Published 2026-06-17 06:41 by Philipp Esselbach 0

AlmaLinux recently distributed essential security patches that resolve numerous flaws within WebKitGTK, Postfix, and MySQL across multiple operating system versions. The updates carry important ratings for the web engine and mail server while addressing moderate database risks tied to recent processor vendor advisories. Malicious actors could leverage these weaknesses to force unexpected application crashes, bypass strict security policies, or steal sensitive user data through specially crafted inputs. Server administrators must install these errata promptly to safeguard their infrastructure against active exploitation attempts.

ALSA-2026:25927: webkit2gtk3 security update (Important)
ALSA-2026:25918: webkit2gtk3 security update (Important)
ALSA-2026:25932: postfix security update (Important)
ALSA-2026:26180: mysql:8.4 security update (Moderate)
ALSA-2026:25919: mysql:8.0 security update (Moderate)

Windows

Linux

macOS

Community