Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 11 hours 52 min ago

Fedora 22 python-jwt-1.3.0-1.fc22

Monday 29th of June 2015 08:15:00 PM
LinuxSecurity.com: Latest upstream with security fix for http://seclists.org/oss-sec/2015/q2/3 https://github.com/jpadilla/pyjwt/commit/88a9fc56bdc6c870aa6af93bda401414a217db2a

Fedora 21 python-jwt-1.3.0-1.fc21

Monday 29th of June 2015 08:09:00 PM
LinuxSecurity.com: Latest upstream with security fix for http://seclists.org/oss-sec/2015/q2/3 https://github.com/jpadilla/pyjwt/commit/88a9fc56bdc6c870aa6af93bda401414a217db2a

Debian: 3296-1: libcrypto++: Summary

Monday 29th of June 2015 04:47:00 AM
LinuxSecurity.com: Security Report Summary

Fedora 22 kernel-4.0.6-300.fc22

Saturday 27th of June 2015 08:40:00 AM
LinuxSecurity.com: The 4.0.6 stable update contains a number of important fixes across the tree.

Ubuntu: 2653-1: Python vulnerabilities

Thursday 25th of June 2015 12:40:00 PM
LinuxSecurity.com: Several security issues were fixed in Python.

Red Hat: 2015:1189-01: kvm: Important Advisory

Thursday 25th of June 2015 12:32:00 PM
LinuxSecurity.com: Updated kvm packages that fix one security issue are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security [More...]

Red Hat: 2015:1184-01: flash-plugin: Critical Advisory

Thursday 25th of June 2015 12:14:00 PM
LinuxSecurity.com: An updated Adobe Flash Player package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security [More...]

Red Hat: 2015:1190-01: kernel: Important Advisory

Thursday 25th of June 2015 12:14:00 PM
LinuxSecurity.com: Updated kernel packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 5.6 Long Life. Red Hat Product Security has rated this update as having Important security [More...]

Red Hat: 2015:1185-01: nss: Moderate Advisory

Thursday 25th of June 2015 11:53:00 AM
LinuxSecurity.com: Updated nss and nss-util packages that fix one security issue, several bugs and add various enhancements are now available for Red Hat Enterprise Linux 6 and 7. [More...]

Red Hat: 2015:1188-01: chromium-browser: Important Advisory

Thursday 25th of June 2015 11:52:00 AM
LinuxSecurity.com: Updated chromium-browser packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having Important security [More...]

Ubuntu: 2654-1: Tomcat vulnerabilities

Thursday 25th of June 2015 11:49:00 AM
LinuxSecurity.com: Several security issues were fixed in Tomcat.

Red Hat: 2015:1186-01: php55-php: Important Advisory

Thursday 25th of June 2015 11:48:00 AM
LinuxSecurity.com: Updated php55-php packages that fix multiple security issues are now available for Red Hat Software Collections 2. Red Hat Product Security has rated this update as having Important security [More...]

Red Hat: 2015:1187-01: rh-php56-php: Important Advisory

Thursday 25th of June 2015 11:47:00 AM
LinuxSecurity.com: Updated rh-php56-php packages that fix multiple security issues are now available for Red Hat Software Collections 2. Red Hat Product Security has rated this update as having Important security [More...]

Ubuntu: 2655-1: Tomcat vulnerabilities

Thursday 25th of June 2015 11:47:00 AM
LinuxSecurity.com: Several security issues were fixed in Tomcat.

Debian: 3295-1: cacti: Summary

Wednesday 24th of June 2015 02:49:00 PM
LinuxSecurity.com: Security Report Summary

Fedora 20 xen-4.3.4-6.fc20

Wednesday 24th of June 2015 12:04:00 PM
LinuxSecurity.com: Heap overflow in QEMU PCNET controller, allowing guest->host escape[XSA-135, CVE-2015-3209] (#1230537)GNTTABOP_swap_grant_ref operation misbehavior [XSA-134, CVE-2015-4163]vulnerability in the iret hypercall handler [XSA-136, CVE-2015-4164]Potential unintended writes to host MSI message data field via qemu[XSA-128, CVE-2015-4103],PCI MSI mask bits inadvertently exposed to guests [XSA-129,CVE-2015-4104],Guest triggerable qemu MSI-X pass-through error messages [XSA-130,CVE-2015-4105],Unmediated PCI register access in qemu [XSA-131, CVE-2015-4106]

Fedora 21 xen-4.4.2-6.fc21

Wednesday 24th of June 2015 12:02:00 PM
LinuxSecurity.com: Heap overflow in QEMU PCNET controller, allowing guest->host escape[XSA-135, CVE-2015-3209].GNTTABOP_swap_grant_ref operation misbehavior [XSA-134, CVE-2015-4163].vulnerability in the iret hypercall handler [XSA-136, CVE-2015-4164].

Fedora 22 xen-4.5.0-11.fc22

Wednesday 24th of June 2015 12:01:00 PM
LinuxSecurity.com: stubs-32.h is back, so revert to previous behaviour.Heap overflow in QEMU PCNET controller, allowing guest->host escape [XSA-135, CVE-2015-3209].GNTTABOP_swap_grant_ref operation misbehavior [XSA-134, CVE-2015-4163].vulnerability in the iret hypercall handler [XSA-136, CVE-2015-4164].

Fedora 21 libwmf-0.2.8.4-43.fc21

Wednesday 24th of June 2015 12:01:00 PM
LinuxSecurity.com: CVE-2015-0848 heap overflow when decoding BMP imagesCVE-2015-0848 heap overflow when decoding BMP images

Fedora 22 curl-7.40.0-5.fc22

Wednesday 24th of June 2015 11:59:00 AM
LinuxSecurity.com: - implement public key pinning for NSS backend (#1195771)- fix lingering HTTP credentials in connection re-use (CVE-2015-3236)- prevent SMB from sending off unrelated memory contents (CVE-2015-3237)- curl-config --libs now works on x86_64 without libcurl-devel.x86_64 (#1228363)

More in Tux Machines

Android Leftovers

Leftovers: OSS

Software Politics

  • It's 2015 And Congress Is Now, Finally, Allowed To Use Open Source Technologies
    First, the good news: members of the House of Representatives in the US Congress are now allowed to use open source technology in their offices, rather than the very limited list of proprietary offerings they were given in the past. Second, the bad news: how the hell is it 2015 and this is only becoming an option now? I guess we can't change the past, and so let's celebrate the House of Reps finally getting to this point -- which just happens to coincide with the upcoming launch of the House Open Source Caucus (led by Reps. Blake Farenthold and Jared Polis).
  • The House opens up to open source
    Traditionally, members of the House of Representatives have been presented with a limited plate of options when choosing technology to run their offices and manage their web presences. Members that wanted to take advantage of open source solutions — which are restriction-free, reusable and frequently more cost-effective — faced significant uncertainty and were pushed towards a small selection of proprietary options.
  • Extremadura schoolboard’s software deal protested
    Advocates of free software are protesting a tender by the school board of the Spanish region of Extremadura requesting proprietary software licences. The advocacy group, Extremadura Focus Initiative, is supported by the new, incoming government of the region and by several of Extremadura’s school teachers.

Cinnamon 2.6.12 Desktop Environment Is Now Available for Linux Mint 17.2

Today, July 1, Clement Lefebvre released the twelve maintenance release of the modern and open-source Cinnamon 2.6 desktop environment for the Linux Mint 17.2 (Rafaela) operating system. Read more