Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 3 hours 51 min ago

Fedora 35: firefox 2022-b6d7185be7

Wednesday 25th of May 2022 09:35:04 PM
- Updated to latest upstream (100.0.2)

Fedora 35: ignition 2022-393948cc9e

Wednesday 25th of May 2022 09:35:00 PM
New upstream release for v2.14.0. See release notes at [NEWS](https://github.com/coreos/ignition/blob/main/NEWS).

Fedora 35: pcre2 2022-a3edad0ab6

Wednesday 25th of May 2022 09:34:24 PM
Rebase to version 10.40

Fedora 34: ignition 2022-7846cac830

Wednesday 25th of May 2022 09:18:19 PM
New upstream release for v2.14.0. See release notes at [NEWS](https://github.com/coreos/ignition/blob/main/NEWS).

Fedora 36: firefox 2022-f7af7914b2

Wednesday 25th of May 2022 09:07:45 PM
- Updated to latest upstream (100.0.2)

Fedora 36: ignition 2022-5df5dc8ec5

Wednesday 25th of May 2022 09:07:38 PM
New upstream release for v2.14.0. See release notes at [NEWS](https://github.com/coreos/ignition/blob/main/NEWS).

SUSE: 2022:1847-1 moderate: kernel-firmware

Wednesday 25th of May 2022 05:18:04 PM
An update that fixes 15 vulnerabilities is now available.

SUSE: 2022:1845-1 moderate: fribidi

Wednesday 25th of May 2022 05:17:11 PM
An update that fixes three vulnerabilities is now available.

SUSE: 2022:1846-1 moderate: kernel-firmware

Wednesday 25th of May 2022 05:16:30 PM
An update that fixes 15 vulnerabilities is now available.

SUSE: 2022:1844-1 moderate: fribidi

Wednesday 25th of May 2022 05:15:37 PM
An update that fixes three vulnerabilities is now available.

Mageia 2022-0207: firefox/thunderbird security update

Wednesday 25th of May 2022 04:47:33 PM
Prototype pollution in Top-Level Await implementation. (CVE-2022-1802) Untrusted input used in JavaScript object indexing, leading to prototype pollution. (CVE-2022-1529)

Mageia 2022-0206: unrar security update

Wednesday 25th of May 2022 04:47:32 PM
RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file. (CVE-2022-30333) References:

SUSE: 2022:1842-1 moderate: redis

Wednesday 25th of May 2022 02:16:02 PM
An update that fixes two vulnerabilities is now available.

Debian LTS: DLA-3022-1: dpkg security update

Wednesday 25th of May 2022 11:46:54 AM
Max Justicz reported a directory traversal vulnerability in Dpkg::Source::Archive in dpkg, the Debian package management system. This affects extracting untrusted source packages in the v2 and v3 source package formats that include a debian.tar.

Debian: DSA-5147-1: dpkg security update

Wednesday 25th of May 2022 11:31:54 AM
Max Justicz reported a directory traversal vulnerability in Dpkg::Source::Archive in dpkg, the Debian package management system. This affects extracting untrusted source packages in the v2 and v3 source package formats that include a debian.tar.

SUSE: 2022:1836-1 important: pcre2

Wednesday 25th of May 2022 11:18:56 AM
An update that fixes one vulnerability is now available.

SUSE: 2022:1840-1 moderate: kernel-firmware

Wednesday 25th of May 2022 11:16:53 AM
An update that fixes 15 vulnerabilities is now available.

Oracle7: ELSA-2022-4730: thunderbird Critical Security Update

Wednesday 25th of May 2022 10:48:46 AM
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

SciLinux: SLSA-2022-4729-1 Critical: firefox on SL7.x x86_64>

Wednesday 25th of May 2022 08:48:46 AM
This update upgrades Firefox to version 91.9.1 ESR. * Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution (CVE-2022-1529) * Mozilla: Prototype pollution in Top-Level Await implementation (CVE-2022-1802) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE SL7 [More...]

SciLinux: SLSA-2022-4730-1 Critical: thunderbird on SL7.x x86_64>

Wednesday 25th of May 2022 08:48:12 AM
This update upgrades Thunderbird to version 91.9.1. * Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution (CVE-2022-1529) * Mozilla: Prototype pollution in Top-Level Await implementation (CVE-2022-1802) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE SL7 [More...]

More in Tux Machines

Type Title Author Repliessort icon Last Post
Story Diamonds are a girl's best friend srlinuxx 10/04/2005 - 11:45pm
Story AMD not out of the Race yet srlinuxx 10/04/2005 - 11:53pm
Story techiemoe rants: srlinuxx 10/08/2009 - 7:01pm
Story More BS from the Evil One. srlinuxx 10/04/2005 - 11:27pm
Story Doom3 for those with little or no PC! srlinuxx 11/04/2005 - 12:49am
Story Linux leaders at open-source summit srlinuxx 10/04/2005 - 11:35pm
Story This months Cosmo srlinuxx 06/02/2005 - 4:03am
Story Mandrake's Clustering Again srlinuxx 11/04/2005 - 4:58pm
Story No Case - No Problem srlinuxx 11/04/2005 - 5:35am
Story ATI has released 64-Bit drivers srlinuxx 10/04/2005 - 11:38pm