Menu



Latest articles

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. For Debian 11 bullseye, these problems have been fixed in version 6.1.170-1~deb11u1.
May 2, 2026
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. For Debian 11 bullseye, these problems have been fixed in version 5.10.251-3.
May 2, 2026
Brace for the patch tsunami: AI is unearthing decades of buried code debt
May 2, 2026
This update provides various security fixes. Buffer overflow in scanf %mc (CVE-2026-5450) ns_sprintrrf buffer overreads (CVE-2026-6238) ns_sprintrrf buffer overflow in TSIG record processing (CVE-2026-5435) Memory corruption in ungetwc (CVE-2026-5928)
May 2, 2026
Fix NegoEx parsing vulnerabilities (CVE-2026-40355, CVE-2026-40356) Add upstream patches to build against openssl 4.0 Make configure.ac work with autoconf 2.73
May 2, 2026
Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, GHSA-7545-fcxq-7j24, and GHSA-v87r-6q3f-2j67.
May 2, 2026
oxenstored keeps quota related use counts across domain destruction [XSA-483, CVE-2026-23556] Xenstored DoS via XS_RESET_WATCHES command [XSA-484, CVE-2026-23557] grant table v2 race in status page mapping [XSA-486, CVE-2026-23558] x86: Floating Point Divider State Sampling [XSA-488, CVE-2025-54505]
May 2, 2026
https://security-tracker.debian.org/tracker/DSA-6244-1
May 2, 2026
https://security-tracker.debian.org/tracker/DSA-6238-1
May 1, 2026
This month in security with Tony Anscombe – April 2026 edition Warnings about helpdesk impersonation scams and Iran-linked hackers targeting critical sectors in the US, plus the most damaging scams of 2025 – here’s some of what made the headlines this month
May 1, 2026
Enterprise Spotlight: Transforming software development with AI
May 1, 2026
Seccomp, AppArmor, SELinux: Where Linux Security Controls Fall Short
May 1, 2026
Ubuntu Copy Fail High Local Privilege Escalation Threat Advisory 2026-31431
May 1, 2026
First reports come in of victims of critical cPanel vuln as ‘millions’ of sites potentially exposed
May 1, 2026
Why Memory Safety Is Becoming a Core Requirement in Modern Software
May 1, 2026
Three security vulnerabilities were discovered in libexif, a library to reads and writes EXIF metainformation from and to images files, that can causes crashes or information leaks. CVE-2026-32775 If the exif_mnote_data_get_value function in MakerNotes gets passed
May 1, 2026
Important: libtiff security update
May 1, 2026
Important: xorg-x11-server-Xwayland security update
May 1, 2026
Important: yggdrasil-worker-package-manager security update
May 1, 2026
Important: yggdrasil security update
May 1, 2026
Important: vim security update
May 1, 2026
OpenAI locks GPT-5.5-Cyber behind velvet rope despite slamming Anthropic for doing exactly that
May 1, 2026
Pro-Iran crew turns DDoS into shakedown as Ubuntu.com stays down
May 1, 2026
Passport to £££: Home Office adds £216M to travel doc contract before a single bid’s been placed
May 1, 2026
Running AI in the cloud is easy – and expensive
May 1, 2026
Are we ready to give AI agents the keys to the cloud? Cloudflare thinks so
May 1, 2026
https://security-tracker.debian.org/tracker/DSA-6239-1
May 1, 2026
https://security-tracker.debian.org/tracker/DSA-6197-3
May 1, 2026
https://security-tracker.debian.org/tracker/DSA-6240-1
May 1, 2026
https://security-tracker.debian.org/tracker/DSA-6242-1
May 1, 2026
https://security-tracker.debian.org/tracker/DSA-6243-1
May 1, 2026
The never-ending supply chain attacks worm into SAP npm packages, other dev tools
April 30, 2026
Bot her emails: most modern phishing campaigns are AI-enabled
April 30, 2026
FBI cyber boss: China’s hacker-for-hire ecosystem ‘out of control’
April 30, 2026
Google’s fix for critical Gemini CLI bug might break your CI/CD pipelines
April 30, 2026
French prosecutors link 15-year-old to mega-breach at state’s secure document agency
April 30, 2026
Redefining security data: Red Hat’s new VEX experience heading to Red Hat Summit 2026
April 30, 2026
Important: vim security update
April 30, 2026
Important: PackageKit security update
April 30, 2026
Important: xorg-x11-server security update
April 30, 2026
Nearly half of UK businesses pwned last year as phishing keeps doing the job like it’s 2005
April 30, 2026
What type of ‘C2 on a sleep cycle’ do they leave behind? Novel Chinese spy group found in critical networks in Poland, Asia
April 30, 2026
Bug of the year (so far): Nasty cPanel vulnerability probably exploited as a 0-day
April 30, 2026
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure or sandbox escape. For Debian 11 bullseye, these problems have been fixed in version 140.10.1esr-1~deb11u1.
April 30, 2026
SAP npm package attack highlights risks in developer tools and CI/CD pipelines
April 30, 2026
Harness teams of agentic coders with Squad
April 30, 2026
Making AI work for databases
April 30, 2026
Britain’s £6B armoured sickener Ajax cleared for duty despite injuring troops
April 30, 2026
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:
April 30, 2026
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
April 30, 2026