Gentoo Linux has released a series of important security updates as of June 12, 2025, addressing vulnerabilities in various software packages, including YAML-LibYAML, File-Find-Rule, OpenImageIO, Node.js, Python, PyPy, Qt, GTK+ 3, X.Org X server, XWayland, LibreOffice, GStreamer, GStreamer Plugins, and Emacs. Several advisories (GLSAs) have been issued detailing these vulnerabilities, many of which could lead to severe security risks such as arbitrary code execution or shell injection.

Key vulnerabilities include:

1. YAML-LibYAML: A shell injection vulnerability due to the use of legacy file operations. Users are advised to upgrade to version 0.903.0 or higher.
2. File-Find-Rule: Similar shell injection issues requiring an upgrade to version 0.350.0 or higher.
3. OpenImageIO: Multiple vulnerabilities, with the worst allowing arbitrary code execution. Users should upgrade to version 2.5.4.0 or later.
4. Node.js: Multiple vulnerabilities, including risks of arbitrary code execution, necessitating an upgrade to version 22.13.1 or higher.
5. Python and PyPy: Multiple vulnerabilities with potential for privilege escalation, requiring users to upgrade to various safe versions depending on their specific installations.
6. Qt: Multiple high-severity vulnerabilities, demanding upgrades to specific versions of Qt packages.
7. GTK+ 3: A search path vulnerability that could allow arbitrary code execution, with upgrades required to version 3.24.48 or higher.
8. X.Org X server and XWayland: Multiple vulnerabilities that may allow privilege escalation, prompting upgrades to specific versions.
9. LibreOffice: Several vulnerabilities could lead to user-assisted code execution, requiring an upgrade to specified versions.
10. GStreamer and GStreamer Plugins: Vulnerabilities with risks of code execution, necessitating upgrades to version 1.24.10 or later.
11. Emacs: Multiple vulnerabilities could allow arbitrary code execution, with users advised to upgrade to the latest versions.

For each package, no known workarounds exist, emphasizing the need for prompt upgrades. Gentoo continues to prioritize user security, encouraging individuals with security concerns to contact their support channels or report issues through their bug tracking system.

In addition to addressing these vulnerabilities, Gentoo's proactive approach to security includes regular updates and advisories, ensuring that users have access to the latest information and patches. This ongoing commitment is essential in maintaining the integrity and security of systems running Gentoo Linux

YAML-LibYAML, File-Find-Rule, OpenImageIO, and more updates for Gentoo

The latest security updates for Gentoo Linux include YAML-LibYAML, File-Find-Rule, OpenImageIO, Node.js, Python, PyPy, Qt, GTK+ 3, X.Org X server, XWayland, LibreOffice, GStreamer, GStreamer Plugins, and Emacs, addressing various vulnerabilities:

[ GLSA 202506-11 ] YAML-LibYAML: Shell injection
[ GLSA 202506-10 ] File-Find-Rule: Shell Injection
[ GLSA 202506-09 ] OpenImageIO: Multiple Vulnerabilities
[ GLSA 202506-08 ] Node.js: Multiple Vulnerabilities
[ GLSA 202506-07 ] Python, PyPy: Multiple Vulnerabilities
[ GLSA 202506-06 ] Qt: Multiple Vulnerabilities
[ GLSA 202506-05 ] GTK+ 3: Search path vulnerability
[ GLSA 202506-04 ] X.Org X server, XWayland: Multiple Vulnerabilities
[ GLSA 202506-03 ] LibreOffice: Multiple Vulnerabilities
[ GLSA 202506-02 ] GStreamer, GStreamer Plugins: Multiple Vulnerabilities
[ GLSA 202506-01 ] Emacs: Multiple Vulnerabilities

YAML-LibYAML, File-Find-Rule, OpenImageIO, and more updates for Gentoo @ Linux Compatible