Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 2 hours 6 min ago

openSUSE: 2020:1168-1: important: grub2>

Saturday 8th of August 2020 02:14:14 PM
An update that fixes 7 vulnerabilities is now available.

openSUSE: 2020:1164-1: important: libX11>

Saturday 8th of August 2020 08:14:09 AM
An update that fixes one vulnerability is now available.

Gentoo: GLSA-202008-06: iproute2: Denial of service>

Saturday 8th of August 2020 01:20:21 AM
A use-after-free was found in iproute2, possibly allowing a Denial of Service condition.

Gentoo: GLSA-202008-05: gThumb: Arbitrary code execution>

Saturday 8th of August 2020 01:20:03 AM
A buffer overflow in gThumb might allow remote attacker(s) to execute arbitrary code.

Gentoo: GLSA-202008-04: Apache: Multiple vulnerabilities>

Saturday 8th of August 2020 01:19:44 AM
Multiple vulnerabilities have been found in Apache, the worst of which could result in the arbitrary execution of code.

Gentoo: GLSA-202008-03: Ark: Arbitrary code execution>

Saturday 8th of August 2020 01:19:05 AM
Ark was found to allow arbitrary file overwrite, possibly allowing arbitrary code execution.

Gentoo: GLSA-202008-02: GNU GLOBAL: Arbitrary code execution>

Saturday 8th of August 2020 01:17:46 AM
A vulnerability in GNU GLOBAL was discovered, possibly allowing remote attackers to execute arbitrary code.

Fedora 31: rpki-client 2020-9f31ce1df2>

Friday 7th of August 2020 08:54:09 PM
# rpki-client 6.7p1 * Security fix: Incorrect use of `EVP_PKEY_cmp` allowed an authentication bypass

openSUSE: 2020:1162-1: important: libX11>

Friday 7th of August 2020 08:12:46 PM
An update that fixes one vulnerability is now available.

SUSE: 2020:2172-1 moderate: perl-XML-Twig>

Friday 7th of August 2020 05:15:01 PM
An update that fixes one vulnerability is now available.

SUSE: 2020:2173-1 moderate: perl-XML-Twig>

Friday 7th of August 2020 05:14:13 PM
An update that fixes one vulnerability is now available.

SUSE: 2020:2171-1 important: xen>

Friday 7th of August 2020 05:13:20 PM
An update that solves one vulnerability and has one errata is now available.

SUSE: 2020:2166-1 important: xen>

Friday 7th of August 2020 02:17:50 PM
An update that contains security fixes can now be installed.

SUSE: 2020:2167-1 important: LibVNCServer>

Friday 7th of August 2020 02:16:01 PM
An update that fixes 12 vulnerabilities is now available.

openSUSE: 2020:1161-1: Security update of chromium>

Friday 7th of August 2020 02:13:42 PM
An update that fixes 6 vulnerabilities is now available.

CentOS: CESA-2020-3253: Important CentOS 7 firefox >

Friday 7th of August 2020 09:04:05 AM
Upstream details at : https://access.redhat.com/errata/RHSA-2020:3253

CentOS: CESA-2020-3344: Important CentOS 7 thunderbird >

Friday 7th of August 2020 09:03:15 AM
Upstream details at : https://access.redhat.com/errata/RHSA-2020:3344

CentOS: CESA-2020-3233: Important CentOS 6 firefox >

Friday 7th of August 2020 09:02:21 AM
Upstream details at : https://access.redhat.com/errata/RHSA-2020:3233

openSUSE: 2020:1156-1: moderate: python-rtslib-fb>

Friday 7th of August 2020 08:15:16 AM
An update that fixes one vulnerability is now available.

openSUSE: 2020:1155-1: important: MozillaFirefox>

Thursday 6th of August 2020 11:17:19 PM
An update that fixes 10 vulnerabilities is now available.

More in Tux Machines

Debian Janitor: 8,200 landed changes landed so far

The Debian Janitor is an automated system that commits fixes for (minor) issues in Debian packages that can be fixed by software. It gradually started proposing merges in early December. The first set of changes sent out ran lintian-brush on sid packages maintained in Git. This post is part of a series about the progress of the Janitor. The bot has been submitting merge requests for about seven months now. The rollout has happened gradually across the Debian archive, and the bot is now enabled for all packages maintained on Salsa , GitLab , GitHub and Launchpad. Read more

Optimised authentication methods for Ubuntu Desktop

Still counting on passwords to protect your workstation? When set up properly, alternatives to passwords provide a streamlined user experience while significantly improving security. These alternative authentication methods can also easily be combined to create a custom and adaptive authentication profile. This whitepaper introduces three popular authentication methods that provide a solid alternative to passwords. Perhaps you’d like to configure your laptop for login using a YubiKey hardware token connected to a dock. Another option could be to login with a Duo push notification when not connected to the dock, but use a Google Authenticator one-time password when no network is available. Maybe you need a separate hardware token just for ssh authentication, and you always need to keep a long, complex password for emergency authentication should all other methods fail. All of these scenarios can be easily configured within Ubuntu. Read more

Open Hardware: Arduino, RISC-V and 96Boards

  • Arduino-controlled robot arm is ready to play you in a game of chess

    If you’re tired of playing chess on a screen, then perhaps you could create a robotic opponent like Instructables user Michalsky. The augmented board runs micro-Max source code, enabling chess logic to be executed on an Arduino Mega with room for control functions for a 6DOF robotic arm. The setup uses magnetic pieces, allowing it to pick up human moves via an array of 64 reed switches underneath, along with a couple shift registers. The Mega powers the robot arm accordingly, lifting the appropriate piece and placing it on the correct square.

  • New RISC-V CTO On Open Source Chip Architecture’s Global Data Center Momentum

    With more big international players on board, the foundation's new head of technology sees signs of "state of the art moving forward."

  • Snapdragon 410 based 96Boards CE SBC gets an upgrade

    Geniatech has launched a Linux-ready, $109 “Developer Board 4 V3” compliant with 96Boards CE that offers a Snapdragon 410E, GbE, 3x USB, 802.11ac, GPS, and-25 to 70°C support. Geniatech has released a V3 edition of its 96Boards CE form-factor Developer Board 4 SBC, the third update of the Development Board IV we covered back in 2016. Starting at $109, the Developer Board 4 V3 still runs Linux, Android, and Windows 10 IoT Core on Qualcomm’s 1.2GHz, quad -A53 Snapdragon 410m, although it has been upgraded to the 10-year availability Snapdragon 410E. Geniatech also sells a line of Rockchip based SBCs, among other embedded products.

Audiocasts/Shows: Linux in the Ham Shack and Linux Headlines

  • LHS Episode #360: Zapped

    Welcome to the 360th episode of Linux in the Ham Shack. In this short-topic show, the hosts discuss 1.2GHz distance records, a hybrid antenna for geosynchronous satellite operation, data mode identification for your smart phone, being pwned, Ubuntu 20.04.1, LibreOffice, HamClock and much more. Thanks for listening and hope you have a great week.

  • LHS Episode #361: The Weekender LIV

    It's time once again for The Weekender. This is our bi-weekly departure into the world of amateur radio contests, open source conventions, special events, listener challenges, hedonism and just plain fun. Thanks for listening and, if you happen to get a chance, feel free to call us or e-mail and send us some feedback. Tell us how we're doing. We'd love to hear from you.

  • 2020-08-14 | Linux Headlines

    Google could be extending its Firefox search royalty deal, PyPy leaves the Software Freedom Conservancy, Ubuntu puts out a call for testing, Linspire removes snapd support, Microsoft showcases its open source contributions, and Facebook joins The Linux Foundation.