Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 11 hours 23 min ago

Ubuntu: 2343-1: NSS vulnerability

Tuesday 9th of September 2014 10:37:00 AM
LinuxSecurity.com: NSS could be made to crash or run programs as your login if it processed aspecially crafted certificate.

Debian: 3021-1: file: Summary

Tuesday 9th of September 2014 09:18:00 AM
LinuxSecurity.com: Security Report Summary

Red Hat: 2014:1166-01: jakarta-commons-httpclient: Important Advisory

Monday 8th of September 2014 04:10:00 PM
LinuxSecurity.com: Updated jakarta-commons-httpclient packages that fix one security issue are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security [More...]

Ubuntu: 2342-1: QEMU vulnerabilities

Monday 8th of September 2014 01:52:00 PM
LinuxSecurity.com: Several security issues were fixed in QEMU.

Ubuntu: 2341-1: CUPS vulnerabilities

Monday 8th of September 2014 11:08:00 AM
LinuxSecurity.com: CUPS could be made to expose sensitive information, leading to privilegeescalation.

Red Hat: 2014:1165-01: nss: Critical Advisory

Monday 8th of September 2014 10:49:00 AM
LinuxSecurity.com: Updated nss packages that fix one security issue are now available for Red Hat Enterprise Linux 4 Extended Life Cycle Support. Red Hat Product Security has rated this update as having Critical security [More...]

Ubuntu: 2306-3: GNU C Library regression

Monday 8th of September 2014 07:53:00 AM
LinuxSecurity.com: USN-2306-1 introduced a regression in the GNU C Library.

Mandriva: 2014:179: python-django

Friday 5th of September 2014 09:15:00 AM
LinuxSecurity.com: Updated python-django packages fix security vulnerabilities: These releases address an issue with reverse() generating external URLs (CVE-2014-0480); a denial of service involving file uploads (CVE-2014-0481); a potential session hijacking issue in the remote-user [More...]

Mandriva: 2014:178: ppp

Friday 5th of September 2014 09:13:00 AM
LinuxSecurity.com: Updated ppp packages fix security vulnerability: A vulnerability in ppp before 2.4.7 may enable an unprivileged attacker to access privileged options (CVE-2014-3158). [More...] _______________________________________________________________________

Mandriva: 2014:177: squid

Friday 5th of September 2014 09:12:00 AM
LinuxSecurity.com: Updated squid packages fix security vulnerability: Matthew Daley discovered that Squid 3 did not properly perform input validation in request parsing. A remote attacker could send crafted Range requests to cause a denial of service (CVE-2014-3609). [More...]

Mandriva: 2014:176: libgcrypt

Friday 5th of September 2014 09:09:00 AM
LinuxSecurity.com: Updated libgcrypt packages fix security vulnerability: The libgcrypt library before version 1.5.4 is vulnerable to an ELGAMAL side-channel attack (CVE-2014-5270). [More...] _______________________________________________________________________

Mandriva: 2014:175: glibc

Friday 5th of September 2014 06:18:00 AM
LinuxSecurity.com: Multiple vulnerabilities has been found and corrected in glibc: When converting IBM930 code with iconv(), if IBM930 code which includes invalid multibyte character 0xffff is specified, then iconv() segfaults (CVE-2012-6656). [More...]

Slackware: 2014-247-01: php: Security Update

Thursday 4th of September 2014 08:34:00 PM
LinuxSecurity.com: New php packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. [More Info...]

Slackware: 2014-247-03: mozilla-thunderbird: Security Update

Thursday 4th of September 2014 08:34:00 PM
LinuxSecurity.com: New mozilla-thunderbird packages are available for Slackware 14.1 and -current to fix security issues. [More Info...]

Slackware: 2014-247-02: mozilla-firefox: Security Update

Thursday 4th of September 2014 08:34:00 PM
LinuxSecurity.com: New mozilla-firefox packages are available for Slackware 14.1 and -current to fix security issues. [More Info...]

Debian: 3019-1: procmail: Summary

Thursday 4th of September 2014 04:39:00 PM
LinuxSecurity.com: Security Report Summary

Ubuntu: 2340-1: procmail vulnerability

Thursday 4th of September 2014 02:08:00 PM
LinuxSecurity.com: formail could be made to crash or run programs if it processed speciallycrafted mail.

Mandriva: 2014:174: apache

Thursday 4th of September 2014 10:40:00 AM
LinuxSecurity.com: A vulnerability has been found and corrected in apache (ASF HTTPD): The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass RequestHeader unset directives by placing a header in the trailer portion of data sent with chunked transfer [More...]

Gentoo: 201409-04 MySQL: Multiple vulnerabilities

Thursday 4th of September 2014 04:57:00 AM
LinuxSecurity.com: Multiple vulnerabilities have been found in MySQL, worst of which allows local attackers to escalate their privileges.

Red Hat: 2014:1144-01: firefox: Critical Advisory

Wednesday 3rd of September 2014 06:56:00 PM
LinuxSecurity.com: Updated firefox packages that fix two security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security [More...]

More in Tux Machines

Leftovers: Software

  • diction: The words you choose and why
  • style: Similar idea, different direction
  • SMS based Cosmos Browser for the developing countries
    Browsing the internet has different meaning to different people. While to some the web is a source of entertainment, to others it is a valuable and source of learning. Sadly enough, the internet is not widely available and easily affordable everywhere in the globe. Slow network speed is another problem. Developer Stefan Aleksic of ColdSauce tries to find a solution in an SMS (text) based browser for the third world countries which are yet to see the internet as we know it. He has named it the Cosmos Browser. If you ever used elinks on Linux, you know how efficient and low-bandwidth text only browsing can be. Of course, it is not meant for visiting a website for downloading wallpapers, but it is more than sufficient if you want to read some information from the web. Cosmos will work on text and will not need any data plan or WiFi.
  • Keyboard Modifiers State indicator For Ubuntu: Xkbmod Indicator

today's howtos

Leftovers: Gaming

Sorry, Windows 9 Fans, This Is How Multiple Desktops Should Work – Video

The Linux platform has always taken pride in this cool feature. Having multiple desktops is a great way to increase the productivity and there are numerous means to implement it. Lots of Linux distributions have this option, which is used in various ways. Read more