Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 10 hours 27 min ago

Fedora 25 freetype-2.6.5-3.fc25

Sunday 12th of March 2017 06:20:00 PM
LinuxSecurity.com: This update fixes a possible heap buffer overflow.

Fedora 25 wireshark-2.2.5-1.fc25

Sunday 12th of March 2017 06:19:00 PM
LinuxSecurity.com: Security fix for

Fedora 25 thunderbird-45.8.0-1.fc25

Sunday 12th of March 2017 06:19:00 PM
LinuxSecurity.com: For changes see: https://www.mozilla.org/en-US/thunderbird/45.8.0/releasenotes/

Fedora 25 kdelibs3-3.5.10-84.fc25

Sunday 12th of March 2017 06:01:00 PM
LinuxSecurity.com: This kdelibs3 (KDE 3 compatibility libraries) update fixes the security issues:* CVE-2016-6232 (karchive): Extraction of tar files possible to arbitrary systemlocations * CVE-2017-6410 (kio): Information Leak when accessing https whenusing a malicious PAC file for the KDE 3 compatibility libraries. (Securityupdates for KDE Frameworks 5 (kf5-karchive resp. kf5-kio) and for the KDE 4compatibility libraries (kdelibs 4) have already been submitted.) In addition,the KDE 3 compatibility version of KCrash was modified to use the DrKonqi fromPlasma 5 rather than from kde-runtime 4. (The original KDE 3 DrKonqi was alreadydropped years ago.) The kde-runtime 4 DrKonqi is not installed by default andwill be removed entirely in future Fedora versions, the Plasma 5 version ofDrKonqi can also be used for legacy applications.

Fedora 25 freeipa-4.4.3-2.fc25

Wednesday 8th of March 2017 09:21:00 AM
LinuxSecurity.com: Fixed CVE 2017-2590: freeipa: ipa: Insufficient permission check for ca-del, ca-disable and ca-enable commands [fedora-all]

Fedora 25 drupal7-metatag-1.21-1.fc25

Wednesday 8th of March 2017 09:19:00 AM
LinuxSecurity.com: * [7.x-1.21](https://www.drupal.org/project/metatag/releases/7.x-1.21) *[Moderately Critical - Information disclosure - SA-CONTRIB-2017-019](https://www.drupal.org/node/2852937)

Fedora 25 suricata-3.2.1-1.fc25

Wednesday 8th of March 2017 09:17:00 AM
LinuxSecurity.com: This is a new upstream feature and security release. Improvements include:bypass; pre-filter -- fast packet keywords; TLS improvements; ICS protocoladditions: DNP3 CIP/ENIP; SHA1/SHA256 for file matching, logging & extraction;NIC offloading disabled by default; unix socket enabled by default; and AppLayer stats. Documentation: http://suricata.readthedocs.io/en/suricata-3.2/

Fedora 25 mingw-gtk-vnc-0.7.0-1.fc25

Wednesday 8th of March 2017 09:17:00 AM
LinuxSecurity.com: Security fix for CVE-2017-5884, CVE-2017-5885

Red Hat: 2017:0462-01: java-1.8.0-ibm: Moderate Advisory

Wednesday 8th of March 2017 08:51:00 AM
LinuxSecurity.com: An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary and Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact [More...]

Fedora 24 drupal7-metatag-1.21-1.fc24

Wednesday 8th of March 2017 08:46:00 AM
LinuxSecurity.com: * [7.x-1.21](https://www.drupal.org/project/metatag/releases/7.x-1.21) *[Moderately Critical - Information disclosure - SA-CONTRIB-2017-019](https://www.drupal.org/node/2852937)

Fedora 24 cacti-1.0.4-1.fc24

Wednesday 8th of March 2017 08:45:00 AM
LinuxSecurity.com: - Update to 1.0.4 Release notes: http://www.cacti.net/release_notes_1_0_0.phphttp://www.cacti.net/release_notes_1_0_1.phphttp://www.cacti.net/release_notes_1_0_2.phphttp://www.cacti.net/release_notes_1_0_3.phphttp://www.cacti.net/release_notes_1_0_4.php

Fedora 24 xen-4.6.4-8.fc24

Wednesday 8th of March 2017 08:45:00 AM
LinuxSecurity.com: cirrus_bitblt_cputovideo does not check if memory region is safe [XSA-209,CVE-2017-2620] (#1425420)

Fedora 24 suricata-3.2.1-1.fc24

Wednesday 8th of March 2017 08:41:00 AM
LinuxSecurity.com: This is a new upstream feature and security release. Improvements include:bypass; pre-filter -- fast packet keywords; TLS improvements; ICS protocoladditions: DNP3 CIP/ENIP; SHA1/SHA256 for file matching, logging & extraction;NIC offloading disabled by default; unix socket enabled by default; and AppLayer stats. Documentation: http://suricata.readthedocs.io/en/suricata-3.2/

Fedora 24 mingw-gtk-vnc-0.7.0-1.fc24

Wednesday 8th of March 2017 08:41:00 AM
LinuxSecurity.com: Security fix for CVE-2017-5884, CVE-2017-5885

Debian: 3803-1: texlive-base: Summary

Wednesday 8th of March 2017 03:41:00 AM
LinuxSecurity.com: Security Report Summary

Slackware: 2017-066-02: mozilla-thunderbird: Security Update

Wednesday 8th of March 2017 01:38:00 AM
LinuxSecurity.com: New mozilla-thunderbird packages are available for Slackware 14.1, 14.2, and -current to fix security issues. [More Info...]

Fedora 25 mupdf-1.10a-4.fc25

Tuesday 7th of March 2017 08:32:00 AM
LinuxSecurity.com: Security fix for CVE-2017-6060 CVE-2017-5896 ---- Add comment with explanationof disabled debuginfo

Fedora 25 cacti-1.0.4-1.fc25

Tuesday 7th of March 2017 08:24:00 AM
LinuxSecurity.com: - Update to 1.0.4 Release notes: http://www.cacti.net/release_notes_1_0_0.phphttp://www.cacti.net/release_notes_1_0_1.phphttp://www.cacti.net/release_notes_1_0_2.phphttp://www.cacti.net/release_notes_1_0_3.phphttp://www.cacti.net/release_notes_1_0_4.php

Fedora 25 canl-c-2.1.8-1.fc25

Monday 6th of March 2017 07:54:00 PM
LinuxSecurity.com: Security fix in CA certificate chain verification (better check untrusted CAcertificates from peer, more strict error handling).

Red Hat: 2017:0448-01: ansible and openshift-ansible: Important Advisory

Monday 6th of March 2017 12:12:00 PM
LinuxSecurity.com: An update for ansible and openshift-ansible is now available for Red Hat OpenShift Container Platform 3.2, Red Hat OpenShift Container Platform 3.3, and Red Hat OpenShift Container Platform 3.4. [More...]

More in Tux Machines

today's leftovers

  • Linux Kernel Podcast for 2017/03/21
  • Announcing the Shim review process [Ed: accepting rather than fighting very malicious things]
    However, a legitimate criticism has been that there's very little transparency in Microsoft's signing process. Some people have waited for significant periods of time before being receiving a response. A large part of this is simply that demand has been greater than expected, and Microsoft aren't in the best position to review code that they didn't write in the first place.
  • rtop – A Nifty Tool to Monitor Remote Server Over SSH
    rtop is a simple, agent-less, remote server monitoring tool that works over SSH. It doesn’t required any other software to be installed on remote machine, except openSSH server package & remote server credentials.
  • Chakra GNU/Linux Users Get KDE Plasma 5.9.3 and KDE Applications 16.12.3, More
    Neofytos Kolokotronis from the Chakra GNU/Linux project, an open-source operating system originally based on Arch Linux and the KDE Plasma desktop environment, announced the availability of the latest KDE updates in the distro's repositories. Those of you using Chakra GNU/Linux as your daily drive will be happy to learn that the stable repos were filled with numerous up-to-date packages from the recently released KDE Plasma 5.9.3 desktop environment, KDE Applications 16.12.3 software suite, and KDE Frameworks 5.32.0 collection of over 70 add-on libraries for Qt 5.
  • YaST Team: Highlights of YaST development sprint 32
    One of the known limitations of the current installer is that it’s only able to automatically propose an encrypted schema if LVM is used. For historical reasons, if you want to encrypt your root and/or home partitions but not to use LVM, you would need to use the expert partitioner… and hope for the best from the bootloader proposal. But the new storage stack is here (well, almost here) to make all the old limitations vanish. With our testing ISO it’s already possible to set encryption with just one click for both partition-based and LVM-based proposals. The best possible partition schema is correctly created and everything is encrypted as the user would expect. We even have continuous tests in our internal openQA instance for it. The part of the installer managing the bootloader installation is still not adapted, which means the resulting system would need some manual fixing of Grub before being able to boot… but that’s something for an upcoming sprint (likely the very next one).
  • Debian stretch on the Raspberry Pi 3 (update) (2017-03-22)
    I previously wrote about my Debian stretch preview image for the Raspberry Pi 3.
  • Asus Tinker Board – Chromium YouTube Performance
    One of the many strengths of the Asus Tinker Board is its multimedia support. This 4K video capable machine is a mouthwatering prospect for the multimedia enthusiast. The machine has a respectable 1.8GHz ARM Cortex-A17 quad-core processor. It’s only 32-bit (unlike the Raspberry Pi 3) but has a higher clock speed. The Tinker Board also sports an integrated ARM-based Mali T764 graphics processor (GPU).

Microsoft vs GNU/Linux

Netflix and GNU/Linux

today's howtos