Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 9 hours 50 min ago

Gentoo: 201412-28 Ruby on Rails: Multiple vulnerabilities

Sunday 14th of December 2014 03:35:00 PM
LinuxSecurity.com: Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code.

Mandriva: 2014:249: qemu

Sunday 14th of December 2014 03:00:00 PM
LinuxSecurity.com: Updated qemu packages fix security vulnerabilities: During migration, the values read from migration stream during ram load are not validated. Especially offset in host_from_stream_offset() and also the length of the writes in the callers of the said function. A [More...]

Mandriva: 2014:248: graphviz

Sunday 14th of December 2014 02:33:00 PM
LinuxSecurity.com: Updated graphviz packages fix security vulnerability: Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vector, [More...]

Mandriva: 2014:247: jasper

Sunday 14th of December 2014 01:33:00 PM
LinuxSecurity.com: Updated jasper packages fix security vulnerability: Josh Duart of the Google Security Team discovered heap-based buffer overflow flaws in JasPer, which could lead to denial of service (application crash) or the execution of arbitrary code (CVE-2014-9029). [More...]

Mandriva: 2014:246: openvpn

Sunday 14th of December 2014 01:21:00 PM
LinuxSecurity.com: Updated openvpn packages fix security vulnerability: Dragana Damjanovic discovered that OpenVPN incorrectly handled certain control channel packets. An authenticated attacker could use this issue to cause an OpenVPN server to crash, resulting in a denial of [More...]

Mandriva: 2014:245: mutt

Sunday 14th of December 2014 01:06:00 PM
LinuxSecurity.com: Updated mutt packages fix security vulnerability: A flaw was discovered in mutt. A specially crafted mail header could cause mutt to crash, leading to a denial of service condition (CVE-2014-9116). [More...]

Ubuntu: 2448-1: Linux kernel vulnerabilities

Friday 12th of December 2014 03:52:00 AM
LinuxSecurity.com: Several security issues were fixed in the kernel.

Ubuntu: 2447-1: Linux kernel (Utopic HWE) vulnerabilities

Friday 12th of December 2014 02:58:00 AM
LinuxSecurity.com: Several security issues were fixed in the kernel.

Ubuntu: 2446-1: Linux kernel vulnerabilities

Friday 12th of December 2014 02:58:00 AM
LinuxSecurity.com: Several security issues were fixed in the kernel.

Ubuntu: 2444-1: Linux kernel (OMAP4) vulnerabilities

Friday 12th of December 2014 02:58:00 AM
LinuxSecurity.com: Several security issues were fixed in the kernel.

Ubuntu: 2442-1: Linux kernel (EC2) vulnerabilities

Friday 12th of December 2014 02:58:00 AM
LinuxSecurity.com: Several security issues were fixed in the kernel.

Ubuntu: 2445-1: Linux kernel (Trusty HWE) vulnerabilities

Friday 12th of December 2014 02:57:00 AM
LinuxSecurity.com: Several security issues were fixed in the kernel.

Ubuntu: 2443-1: Linux kernel vulnerabilities

Friday 12th of December 2014 02:57:00 AM
LinuxSecurity.com: Several security issues were fixed in the kernel.

Ubuntu: 2441-1: Linux kernel vulnerabilities

Friday 12th of December 2014 02:57:00 AM
LinuxSecurity.com: Several security issues were fixed in the kernel.

Red Hat: 2014:1985-01: bind97: Important Advisory

Thursday 11th of December 2014 11:21:00 PM
LinuxSecurity.com: Updated bind97 packages that fix one security issue are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security [More...]

Red Hat: 2014:1984-01: bind: Important Advisory

Thursday 11th of December 2014 11:16:00 PM
LinuxSecurity.com: Updated bind packages that fix one security issue are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security [More...]

Gentoo: 201412-11 AMD64 x86 emulation base libraries: Multiple vulnerabilities

Thursday 11th of December 2014 08:09:00 PM
LinuxSecurity.com: Multiple vulnerabilities have been found in AMD64 x86 emulation base libraries, the worst of which may allow remote execution of arbitrary code.

Gentoo: 201412-10 Multiple packages, Multiple vulnerabilities fixed in 2012

Thursday 11th of December 2014 07:22:00 PM
LinuxSecurity.com: This GLSA contains notification of vulnerabilities found in several Gentoo packages which have been fixed prior to January 1, 2013. The worst of these vulnerabilities could lead to local privilege escalation and remote code execution. Please see the package list and CVE [More...]

Debian: 3096-1: pdns-recursor: Summary

Thursday 11th of December 2014 04:20:00 AM
LinuxSecurity.com: Security Report Summary

Slackware: 2014-344-01: bind: Security Update

Thursday 11th of December 2014 03:36:00 AM
LinuxSecurity.com: New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. [More Info...]

More in Tux Machines

This is the world’s most stunning new Android phone – and it’ll only cost you $5,000

While there’s no question that the iPhone 6 and iPhone 6 Plus are beautiful smartphones, some might argue that Apple’s 2012 iPhone 5 and last year’s iPhone 5s feature an overall look that is more sleek and sophisticated. Now, imagine that sophisticated design was given harder lines, darker tones and a 5-inch full HD display, and it was built out of titanium and 18k gold instead of aluminum. Read more

Ubuntu GNOME 15.04 Alpha 1 Prepares for GNOME 3.14, Go Forth and Test

The Ubuntu GNOME developers have released the first version of the 15.04 branch for their Linux distribution and it looks like this operating system is also going through some interesting changes, just like Ubuntu, although not on the same scale. Read more

FSF's High Priority Project List Now Has A Committee

The Free Software Foundation has now built up a committee to review their "High Priority Projects" list and they're looking for more feedback from the community. Nearly ten years ago is when the Free Software Foundation began listing what they viewed as the High Priority Free Software Projects in a list. This list has over time contained some definite high-priority projects related to freeing Java and Adobe PDF support and open graphics drivers to some more obscure projects of high priority like a free version of Oracle Forms, a replacement to OpenDWG libraries for CAD files, automatic transcription software, etc. I've personally called out many of the FSF HPP for what they're worth with my thoughts over the years. Read more

Latest Calibre eBook Reader and Converter Now Support Latest Kobo Firmware

The Calibre eBook reader, editor, and library management software has just reached version 2.13 and the developer has added an important driver and made quite a few fixes and improvements. Read more