Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 1 hour 5 min ago

Fedora 35: mingw-uriparser 2022-cfd0048127>

Saturday 15th of January 2022 08:19:47 PM
Update to 0.9.6, see https://github.com/uriparser/uriparser/blob/uriparser-0.9.6/ChangeLog for details.

Fedora 34: uriparser 2022-00a529a8bf>

Saturday 15th of January 2022 07:58:22 PM
Update to 0.9.6, see https://github.com/uriparser/uriparser/blob/uriparser-0.9.6/ChangeLog for details.

Debian: DSA-5048-1: libreswan security update>

Saturday 15th of January 2022 02:41:40 PM
It was discovered that the libreswan IPsec implementation could be forced into a crash/restart via a malformed IKEv1 packet, resulting in denial of service.

Debian: DSA-5047-1: prosody security update>

Saturday 15th of January 2022 01:36:08 PM
Matthew Wild discovered that the WebSockets code in Prosody, a lightweight Jabber/XMPP server, was susceptible to denial of service. For the oldstable distribution (buster), this problem has been fixed

Mageia 2022-0018: perl-CPAN security update>

Saturday 15th of January 2022 04:11:10 AM
CPAN 2.28 allows Signature Verification Bypass. (CVE-2020-16156) References: - https://bugs.mageia.org/show_bug.cgi?id=29878 - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/SZ32AJIV4RHJMLWLU5QULGKMMIHYOMDC/

Mageia 2022-0017: mbedtls security update>

Saturday 15th of January 2022 04:11:09 AM
This update provides Mbed TLS 2.16.12, with a number of bug fixes and a security fix. Mbed TLS has a double free in certain out-of-memory conditions, as demonstrated by an mbedtls_ssl_set_session() failure. (CVE-2021-44732)

Mageia 2022-0016: systemd security update>

Saturday 15th of January 2022 04:11:08 AM
A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to a denial of service at boot time when too many nested directories are created in /tmp. (CVE-2021-3997) References:

Mageia 2022-0015: vim security update>

Saturday 15th of January 2022 04:11:07 AM
CWE-122 Heap-based Buffer Overflow (CVE-2021-4136) CWE-125 Out-of-bounds Read (CVE-2021-4166) CWE-416 Use After Free (CVE-2021-4173) CWE-416 Use After Free (CVE-2021-4187)

Mageia 2022-0014: htmldoc security update>

Saturday 15th of January 2022 04:11:06 AM
Buffer overflow vulnerability in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to image_load_bmp. (CVE-2021-40985) References:

Fedora 34: kernel 2022-d918ad60e5>

Friday 14th of January 2022 08:22:59 PM
The 5.15.14 stable kernel update contains a number of important fixes across the tree.

Fedora 35: kernel 2022-ade480f201>

Friday 14th of January 2022 08:22:52 PM
The 5.15.14 stable kernel update contains a number of important fixes across the tree.

Debian LTS: DLA-2879-1: ghostscript security update>

Friday 14th of January 2022 05:51:50 PM
Multiple security issues were discovered in Ghostscript, the GPL PostScript/PDF interpreter, which could result in denial of service and potentially the execution of arbitrary code if malformed document files are processed.

Debian: DSA-5046-1: chromium security update>

Friday 14th of January 2022 02:31:45 PM
Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.

Debian: DSA-5045-1: thunderbird security update>

Friday 14th of January 2022 01:25:24 PM
Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For the oldstable distribution (buster), these problems have been fixed

openSUSE: 2022:0012-1 important: prosody>

Friday 14th of January 2022 01:18:41 PM
An update that fixes one vulnerability is now available.

SciLinux: SLSA-2022-0063-1 Important: kernel on SL7.x x86_64>

Friday 14th of January 2022 10:51:42 AM
kernel: perf_event_parse_addr_filter memory (CVE-2020-25704) * kernel: fuse: fuse_do_getattr() calls make_bad_inode() in inappropriate situations (CVE-2020-36322) * kernel: Heap buffer overflow in firedtv driver (CVE-2021-42739) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE Bug Fix(es): * [More...]

RedHat: RHSA-2022-0063:06 Moderate: kernel security and bug fix update>

Friday 14th of January 2022 10:35:17 AM
An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from

RedHat: RHSA-2022-0074:03 Important: samba security update>

Friday 14th of January 2022 10:35:01 AM
An update for samba is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2022-0108:03 Moderate: ansible-runner security and bug fix>

Friday 14th of January 2022 10:34:00 AM
An update is now available for ansible-runner for Red Hat Ansible Automation Platform 2.0 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

Fedora 35: vim 2022-20e66c6698>

Thursday 13th of January 2022 08:29:12 PM
Security fix for CVE-2021-46059, CVE-2022-0158, CVE-2022-0156

More in Tux Machines

Typesort icon Title Author Replies Last Post
Blog entry Listening to your music, the Third way.. AudioGalaxy vs Subsonic fieldyweb 27/11/2011 - 3:59pm
Blog entry Review: Zalman ZM-VE200 Portable HDD Enclosure fieldyweb 26/11/2011 - 11:27pm
Blog entry How to get APT to work through a proxy.. fieldyweb 26/11/2011 - 10:07pm
Blog entry Gnome 3 works if done right. fieldyweb 26/11/2011 - 9:39pm
Blog entry Tomboy and Dropbox, the Dynamic Duo bigbearomaha 08/12/2011 - 1:44pm
Blog entry Big Bear's Helpful Hints-Google Docs Spreadsheets bigbearomaha 08/12/2011 - 6:02pm
Blog entry The Internet will find a way, and the consumer will always win.. fieldyweb 20/12/2011 - 11:52pm
Blog entry Pear OS Linux Panther 3 review finid 19/12/2011 - 7:03pm
Blog entry Thanks for the memories Firefox and goodbye.. fieldyweb 18/12/2011 - 9:30pm
Blog entry The Porn industry and technology.. fieldyweb 18/12/2011 - 1:46pm