Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 1 hour 23 min ago

Fedora 25: lame Security Update

Wednesday 15th of November 2017 10:30:00 PM
LinuxSecurity.com: Update to 3.100 (#1470202, #1505107)

Fedora 25: nagios Security Update

Wednesday 15th of November 2017 10:30:00 PM
LinuxSecurity.com: Try to fix error on update with systemctl

Fedora 26: poppler Security Update

Wednesday 15th of November 2017 08:24:00 PM
LinuxSecurity.com: Security fix for CVE-2017-15565

Fedora 26: firefox Security Update

Wednesday 15th of November 2017 08:24:00 PM
LinuxSecurity.com: Updated to the latest version - Firefox 57 Please note that this update is incompatible with many recent Firefox add-ons, please see Fedora Magazine article for details: https://fedoramagazine.org/firefox-57-coming-soon-quantum- leap/ ---- Update to Firefox 57 a.k.a. Quantum This update may break your installed extension, please see this Fedora Magazine article for details:

Fedora 26: icu Security Update

Wednesday 15th of November 2017 08:24:00 PM
LinuxSecurity.com: Resolves: rhbz#1510932 CVE-2017-14952

Fedora 26: ImageMagick Security Update

Wednesday 15th of November 2017 08:24:00 PM
LinuxSecurity.com: 6.9.9-22

Fedora 26: php-PHPMailer Security Update

Wednesday 15th of November 2017 08:23:00 PM
LinuxSecurity.com: **Version 5.2.26** (November 4th 2017) * Minor security backport from 6.0 - set Debugoutput in constructor according to SAPI in use, avoiding potential XSS in default debug output.

Fedora 26: hostapd Security Update

Wednesday 15th of November 2017 08:23:00 PM
LinuxSecurity.com: Latest hostapd release with KRACK patches applied.

Fedora 26: perl-Catalyst-Plugin-Static-Simple Security Update

Wednesday 15th of November 2017 08:23:00 PM
LinuxSecurity.com: Security fix for CVE-2017-16248. Catalyst::Plugin::Static::Simple has been changed to not serve static files with dots in the names (i.e. .svn, .git, ...)

Fedora 26: rubygem-ox Security Update

Wednesday 15th of November 2017 08:23:00 PM
LinuxSecurity.com: Security fix for CVE-2017-15928

Fedora 26: jackson-databind Security Update

Wednesday 15th of November 2017 08:23:00 PM
LinuxSecurity.com: Security fix for CVE-2017-15095

Fedora 26: liblouis Security Update

Wednesday 15th of November 2017 08:23:00 PM
LinuxSecurity.com: Security fix for CVE-2017-13738 CVE-2017-13739 CVE-2017-13740 CVE-2017-13741 CVE-2017-13742 CVE-2017-13743 CVE-2017-13744

Fedora 26: wordpress Security Update

Wednesday 15th of November 2017 08:22:00 PM
LinuxSecurity.com: Update to wordpress 4.8.3. See: https://wordpress.org/news/2017/10/wordpress-4-8-3-security-release/ for details

Fedora 26: xen Security Update

Wednesday 15th of November 2017 08:21:00 PM
LinuxSecurity.com: pin count / page reference race in grant table code [XSA-236, CVE-2017-15597]

RedHat: RHSA-2017-3200:01 Important: kernel security and bug fix update

Wednesday 15th of November 2017 09:38:00 AM
LinuxSecurity.com: An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

RedHat: RHSA-2017-3221:01 Moderate: php security update

Wednesday 15th of November 2017 05:02:00 AM
LinuxSecurity.com: An update for php is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from

RedHat: RHSA-2017-3216:01 Moderate: Red Hat JBoss Enterprise Application

Tuesday 14th of November 2017 10:02:00 PM
LinuxSecurity.com: An update is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2017-3220:01 Moderate: Red Hat JBoss Enterprise Application

Tuesday 14th of November 2017 10:01:00 PM
LinuxSecurity.com: An update is now available for Red Hat JBoss Enterprise Application Platform. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2017-3217:01 Moderate: Red Hat JBoss Enterprise Application

Tuesday 14th of November 2017 10:00:00 PM
LinuxSecurity.com: An update is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2017-3219:01 Moderate: jboss-ec2-eap security, bug fix,

Tuesday 14th of November 2017 08:52:00 PM
LinuxSecurity.com: An update for jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

More in Tux Machines

ONAP Rolls Out Amsterdam Release

Less than nine months after AT&T and the Linux Foundation merged their open source projects to become the Open Network Automation Platform (ONAP), the group today rolled out its first code release, Amsterdam. The highly anticipated release, which integrates AT&T’s ECOMP and the Linux Foundation’s Open-O code bases into a common open source orchestration platform, aims to automate the virtualization of network services. Read more

Inspiring the Next Generation of Open Source

The Linux Foundation works through our projects, training and certification programs, events and more to bring people of all backgrounds into open source. We meet a lot of people, but find the drive and enthusiasm of some of our youngest community members to be especially infectious. In the past couple of months, we’ve invited 13-year-old algorithmist and cognitive developer Tanmay Bakshi, 11-year-old hacker and cybersecurity ambassador Reuben Paul, and 15-year-old programmer Keila Banks to speak at Linux Foundation conferences. In 2014 when he was 12, Zachary Dupont wrote a letter to his hero Linus Torvalds. We arranged for Zach to meet Linus–a visit that helped clinch his love for Linux. This year, Zach came to Open Source Summit in Los Angeles to catch up with Linus and let us know what he’s been up to. He’s kept busy with an internship at SAP and early acceptance to the Computer Networking and Digital Forensics program at the Delaware County Technical School. Read more

Debian and Ubuntu Leftovers

  • Debian package depicts 'Tux the penguin' with sheep in intimate ASCII
    A Debian software package containing an "ASCII representation of zoophilia" has been installed automatically on some users' machines. According to a bug report, Debian user Felicia Hummel installed a package called "cowsay", which turns text into ASCII art of cows (or other animals) with speech or thought balloons. But with default settings of "install suggests" enabled, a controversial second "recommends" package called "cowsay-off" was also installed.
  • Join us at the Ubuntu Enterprise Summit!
    Bloomberg, Walmart, eBay, Samsung, Dell. Ever wonder how some of the world’s largest enterprises run on Ubuntu? This December, we are hosting our first ever Ubuntu Enterprise Summit to tell you how and help guide your own organisation whether it be running the cloud in a large telco to deriving revenue from your next IoT initiative. The Ubuntu Enterprise Summit is a two day event of webinars on December 5th and 6th where you can join Canonical’s product managers, technical leads, partners and customers to get an inside look at why some of the world’s largest companies have chosen Ubuntu. Whether you are focused on the cloud or are living life at the edge, the webinars will also look at trends and the considerations for your organisation when implementing such technologies. To kick off the event on December 5th, Canonical CEO and founder Mark Shuttleworth will deliver a keynote talk on 21st Century Infrastructure. Following Mark’s opening, there will be a series of other events and you can register now for those that spark your interest by clicking on the links below
  • Ubuntu Server Development Summary – 21 Nov 2017
    The purpose of this communication is to provide a status update and highlights for any interesting subjects from the Ubuntu Server Team. If you would like to reach the server team, you can find us at the #ubuntu-server channel on Freenode. Alternatively, you can sign up and use the Ubuntu Server Team mailing list.
  • Late Post For Ubuntu Community Appreciation Day 2017
    I am also very thankful for LaTeX2e and Tex Live. It has been a great thing to have to prepare devotional materials for church. I am thankful for the MOTU folks maintaining Gummi which is the editor I use on Xubuntu. Xubuntu is what I run on my laptop that goes many places with me. Tex Live is run both on the laptop and on the Raspberry Pi 2 at home.

Tizen: India, Games, Update