Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 3 hours 2 min ago

Debian: 3725-1: icu: Summary

Sunday 27th of November 2016 12:40:00 PM
LinuxSecurity.com: Security Report Summary

Fedora 23 bind-9.10.4-2.P4.fc23

Sunday 27th of November 2016 10:24:00 AM
LinuxSecurity.com: Security fix for CVE-2016-8864

Debian: 3726-1: imagemagick: Summary

Saturday 26th of November 2016 11:10:00 PM
LinuxSecurity.com: Security Report Summary

Fedora 25 python-tornado-4.4.2-1.fc25

Saturday 26th of November 2016 06:01:00 PM
LinuxSecurity.com: Update to 4.4.2: Security fixes * A difference in cookie parsing betweenTornado and web browsers (especially when combined with Google Analytics) couldallow an attacker to set arbitrary cookies and bypass XSRF protection. Thecookie parser has been rewritten to fix this attack. Backwards-compatibilitynotes * Cookies containing certain special characters (in particular semicolonand square brackets) are now parsed differently. * If the cookie headercontains a combination of valid and invalid cookies, the valid ones will bereturned (older versions of Tornado would reject the entire header for a singleinvalid cookie).

Fedora 23 sudo-1.8.18p1-1.fc23

Friday 25th of November 2016 02:29:00 AM
LinuxSecurity.com: - update to 1.8.18p1 - fixes CVE-2016-7076

Debian: 3724-1: gst-plugins-good0.10: Summary

Thursday 24th of November 2016 03:56:00 PM
LinuxSecurity.com: Security Report Summary

Debian: 3723-1: gst-plugins-good1.0: Summary

Thursday 24th of November 2016 03:49:00 PM
LinuxSecurity.com: Security Report Summary

Fedora 24 icu-56.1-7.fc24

Thursday 24th of November 2016 03:46:00 PM
LinuxSecurity.com: Security fix for CVE-2016-7415

Fedora 24 zathura-pdf-mupdf-0.3.0-3.fc24

Thursday 24th of November 2016 03:46:00 PM
LinuxSecurity.com: Security fix for CVE-2016-7504, CVE-2016-7505, CVE-2016-7506, CVE-2016-9017,CVE-2016-9108, CVE-2016-9109, CVE-2016-9294

Fedora 24 mujs-0-6.20161031gita0ceaf5.fc24

Thursday 24th of November 2016 03:46:00 PM
LinuxSecurity.com: Security fix for CVE-2016-7504, CVE-2016-7505, CVE-2016-7506, CVE-2016-9017,CVE-2016-9108, CVE-2016-9109, CVE-2016-9294

Fedora 24 perl-DBD-MySQL-4.039-1.fc24

Thursday 24th of November 2016 03:45:00 PM
LinuxSecurity.com: Security fix for CVE-2016-1249

Fedora 24 moodle-3.1.3-1.fc24

Thursday 24th of November 2016 03:39:00 PM
LinuxSecurity.com: 3.1.3

Fedora 25 zathura-pdf-mupdf-0.3.0-3.fc25

Thursday 24th of November 2016 11:44:00 AM
LinuxSecurity.com: Security fix for CVE-2016-7504, CVE-2016-7505, CVE-2016-7506, CVE-2016-9017,CVE-2016-9108, CVE-2016-9109, CVE-2016-9294

Fedora 25 mujs-0-6.20161031gita0ceaf5.fc25

Thursday 24th of November 2016 11:43:00 AM
LinuxSecurity.com: Security fix for CVE-2016-7504, CVE-2016-7505, CVE-2016-7506, CVE-2016-9017,CVE-2016-9108, CVE-2016-9109, CVE-2016-9294

Fedora 23 kernel-4.8.8-100.fc23

Thursday 24th of November 2016 03:38:00 AM
LinuxSecurity.com: The 4.8.8 stable kernel update contains a number of important fixes across thetree. ---- The 4.8.7 kernel rebase contains new hardware support, additionalfeatures, and a number of important bug fixes across the tree.

Fedora 23 moodle-3.0.7-1.fc23

Thursday 24th of November 2016 03:36:00 AM
LinuxSecurity.com: 3.0.7

Red Hat: 2016:2819-01: memcached: Important Advisory

Wednesday 23rd of November 2016 04:14:00 AM
LinuxSecurity.com: An update for memcached is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]

Red Hat: 2016:2820-01: memcached: Important Advisory

Wednesday 23rd of November 2016 04:08:00 AM
LinuxSecurity.com: An update for memcached is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]

Ubuntu: 3134-1: Python vulnerabilities

Tuesday 22nd of November 2016 02:21:00 PM
LinuxSecurity.com: Several security issues were fixed in Python.

Debian: 3722-1: vim: Summary

Tuesday 22nd of November 2016 11:46:00 AM
LinuxSecurity.com: Security Report Summary

More in Tux Machines

Korora 25 Unleashed, Best KDE Distro, Notorious B.U.G.

Fedora-based Korora 25 was released Wednesday in 64-bit versions. Users are urged to upgrade. Elsewhere, Jack Wallen was seriously impressed by Fedora 25 and blogger DarkDuck said ROSA R8 is "near-perfect." Bruce Byfield discussed obstacles to Linux security just as a new kernel vulnerability comes to light. Dedoimedo declared the best KDE distro of 2016 and FOSSBYTES has 10 reasons to use Ubuntu. Read more

OnePlus 3T review: One of the best Android phones gets a little better

OnePlus has never been one to play by the rules. Back when it made its entrance into the crowded smartphone market with the One, it set itself apart by selling a premium handset at a mid-tier price and offering invitation-only purchases instead of the standard preorders. The 3T very much fits with this rebellious nature. Essentially a refreshed version of the 6-month-old OnePlus 3, the new phone undermines another smartphone constant: the yearly update. iPhone users are familiar with the concept of the mid-cycle model—a handset that keeps the same enclosure but beefs up features and internal components. But there’s always been a special hook with Apple’s S phones, a reason for current owners to rush out and buy the new model. The 3T could be seen as OnePlus’ attempt to mimic the success Apple has had with the formula (and in fact, the company says it picked T for the new phone’s surname simply because it’s a letter higher than S). Read more

Linux Foundation adds an open source networking specialist to the team

In recognition of the increasingly central role open source technology has played for the networking sector, the Linux Foundation today named Arpit Joshipura as its general manager for networking and orchestration. Joshipura, a veteran tech executive who has worked at Dell, Ericsson, and Nortel, among others, is considered by the organization to be a foundational contributor to open source software in general and networking in particular. Currently, he’s the chief marketing officer for Prevoty, an application security startup in Los Angeles. Read more

Apache Zeppelin open-source analytics startup reveals new name, fresh funding

The team behind the Apache Zeppelin open-source notebook for big data analytics visualization has renamed itself ZEPL and announced $4.1M in Series A funding. ZEPL, which swears a certain professional football organization had nothing to do with it ditching its former name (NFLabs), is one of numerous companies smelling blood in the water around Tableau, the $3.5 billion business intelligence and analytics software vendor that has stumbled financially in recent quarters and seen its stock price plummet accordingly. The pitch from ZEPL entering my email inbox read: "Is Open Source project eating Tableau's lunch?" Read more