Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 11 hours 17 min ago

Red Hat: 2017:0019-01: gstreamer-plugins-good: Moderate Advisory

Thursday 5th of January 2017 06:21:00 AM
LinuxSecurity.com: An update for gstreamer-plugins-good is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact [More...]

Red Hat: 2017:0018-01: gstreamer-plugins-bad-free: Moderate Advisory

Thursday 5th of January 2017 06:13:00 AM
LinuxSecurity.com: An update for gstreamer-plugins-bad-free is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact [More...]

Debian: 3752-1: pcsc-lite: Summary

Wednesday 4th of January 2017 05:06:00 PM
LinuxSecurity.com: Security Report Summary

Fedora 24 bzip2-1.0.6-21.fc24

Wednesday 4th of January 2017 04:25:00 PM
LinuxSecurity.com: CVE-2016-3189 bzip2: heap use after free in bzip2recover

Fedora 24 libpng-1.6.27-1.fc24

Wednesday 4th of January 2017 04:25:00 PM
LinuxSecurity.com: libpng 1.6.27 release, fixing a potential security issue. For details, seehttps://sourceforge.net/p/png-mng/mailman/message/35575076/

Fedora 24 seamonkey-2.46-1.fc24

Wednesday 4th of January 2017 04:24:00 PM
LinuxSecurity.com: Update to 2.46 Fixes various security issues, seehttp://www.mozilla.org/security/known-vulnerabilities/seamonkey.html for moreinfo. No more includes Chatzilla and DOM Inspector in the package -- installthem yourself now (as usual other addons) from https://addons.mozilla.org

Gentoo: 201701-15 Mozilla Firefox, Thunderbird: Multiple vulnerabilities

Wednesday 4th of January 2017 10:31:00 AM
LinuxSecurity.com: Multiple vulnerabilities have been found in Mozilla Firefox and Thunderbird the worst of which could lead to the execution of arbitrary code.

Red Hat: 2017:0014-01: ghostscript: Moderate Advisory

Wednesday 4th of January 2017 06:17:00 AM
LinuxSecurity.com: An update for ghostscript is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which [More...]

Red Hat: 2017:0013-01: ghostscript: Moderate Advisory

Wednesday 4th of January 2017 06:13:00 AM
LinuxSecurity.com: An update for ghostscript is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which [More...]

Fedora 24 borgbackup-1.0.9-1.fc24

Tuesday 3rd of January 2017 04:27:00 PM
LinuxSecurity.com: upstream version 1.0.9 (BZ#1406277)

Fedora 24 freeipa-4.3.2-4.fc24

Tuesday 3rd of January 2017 04:26:00 PM
LinuxSecurity.com: - Fixes 1395311 - CVE-2016-9575 ipa: Insufficient permission check incertprofile-mod - Fixes 1370493 - CVE-2016-7030 ipa: DoS attack againstkerberized services by abusing password policy ---- - Fixes 1395311 -CVE-2016-9575 ipa: Insufficient permission check in certprofile-mod - Fixes1370493 - CVE-2016-7030 ipa: DoS attack against kerberized services by abusingpassword policy

Fedora 25 borgbackup-1.0.9-1.fc25

Tuesday 3rd of January 2017 03:25:00 PM
LinuxSecurity.com: upstream version 1.0.9 (BZ#1406277)

Red Hat: 2017:0003-01: systemd: Moderate Advisory

Tuesday 3rd of January 2017 02:44:00 PM
LinuxSecurity.com: An update for systemd is now available for Red Hat Enterprise Linux 7.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact [More...]

Red Hat: 2017:0004-01: kernel: Important Advisory

Tuesday 3rd of January 2017 02:40:00 PM
LinuxSecurity.com: An update for kernel is now available for Red Hat Enterprise Linux 7.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact [More...]

Debian: 3750-2: libphp-phpmailer: Summary

Tuesday 3rd of January 2017 01:33:00 PM
LinuxSecurity.com: Security Report Summary

Gentoo: 201701-15 Mozilla Firefox, SeaMonkey, Thunderbird: Multiple

Tuesday 3rd of January 2017 08:02:00 AM
LinuxSecurity.com: Multiple vulnerabilities have been found in Mozilla Firefox, SeaMonkey, and Thunderbird the worst of which could lead to the execution of arbitrary code.

Fedora 25 bzip2-1.0.6-21.fc25

Monday 2nd of January 2017 02:58:00 PM
LinuxSecurity.com: CVE-2016-3189 bzip2: heap use after free in bzip2recover

Fedora 25 seamonkey-2.46-1.fc25

Monday 2nd of January 2017 02:57:00 PM
LinuxSecurity.com: Update to 2.46 Fixes various security issues, seehttp://www.mozilla.org/security/known-vulnerabilities/seamonkey.html for moreinfo. No more includes Chatzilla and DOM Inspector in the package -- installthem yourself now (as usual other addons) from https://addons.mozilla.org

Fedora 25 dovecot-2.2.27-1.fc25

Monday 2nd of January 2017 02:52:00 PM
LinuxSecurity.com: - Fixed crash in auth process when auth-policy was configured and authenticationwas aborted/failed without a username set. - director: If two users haddifferent tags but the same hash, the users may have been redirected to thewrong tag's hosts. - Index files may have been thought incorrectly lost, causing"Missing middle file seq=.." to be logged and index rebuild. This happened moreeasily with IMAP hibernation enabled. - Various fixes to restoring statecorrectly in un-hibernation. - dovecot.index files were commonly 4 bytes peremail too large. This is because 3 bytes per email were being wasted that couldhave been used for IMAP keywords. - Various fixes to handle dovecot.list.indexcorruption better. - lib-fts: Fixed assert-crash in address tokenizer withspecific input. - Fixed assert-crash in HTML to text parsing with specific input(e.g. for FTS indexing or snippet generation) - doveadm sync -1: Fixed handlingmailbox GUID conflicts. - sdbox, mdbox: Perform full index rebuild if corruptionis detected inside lib-index, which runs index fsck. - quota: Don't skip quotachecks when moving mails between different quota roots. - search: Multiplesequence sets or UID sets in search parameters weren't handled correctly. Theywere incorrectly merged together.

Gentoo: 201701-14 LZO: Multiple vulnerabilities

Monday 2nd of January 2017 10:20:00 AM
LinuxSecurity.com: An integer overflow in LZO might allow remote attackers to execute arbitrary code or cause a Denial of Service condition.

More in Tux Machines

Leftovers: Software

  • SMPlayer 17.1 Features ‘Experimental Support’ for Chromecast
  • Support for Chromecast in SMPlayer 17.1
    SMPlayer 17.1 features experimental support for Chromecast. Now you can send videos from SMPlayer to your Chromecast device, including local files from your computer and online streams such as TV channels or videos from sites like YouTube, Dailymotion, Vimeo, Vevo and many more.
  • How Node.js Is Transforming Today’s Enterprises
    On today’s episode of The New Stack Makers, we sat down with NodeSource Solutions Architect Manager Joe Doyle and NodeSource Chief Technology Officer and co-founder Dan Shaw to hear more about how today’s enterprises are approaching working with Node.js. The interview was recorded at Node.js Interactive 2016, which took place in Austin, December 2016.
  • 4 Configuration Management Tools for DevOps
    In the past, maintaining technology infrastructure, deploying applications, and provisioning environments involved many manual, iterative tasks. But in today’s DevOps arena, true automation of these tasks has arrived. The benefits of automated configuration management range from time savings to elimination of human error. Meanwhile, configuration management platforms and tools have converged directly with the world of open source. In fact, several of the very best tools are fully free and open source. From server orchestration to securely delivering high-availability applications, open source tools ranging from Chef to Puppet can bring organizations enormous efficiency boosts.
  • GPMDP Is A Feature-Packed Google Play Music Desktop Application
    The application is built using Electron, so it's a wrapper for the Google Play Music web interface, with various desktop features added on top, like media keys support, tray/indicator and much more.
  • Netdata 1.5 Released With FreeBSD Support, New Plugins
    Netdata, for the uninitiated, is a distributed real-time performance and health monitoring suite. Netdata can be used for monitoring server performance/health as well as VMs, IoT devices, and more in a "fast and efficient" manner. Netdata 1.5 has been released as a big update to this open-source tool.
  • Firefox Gets Better Video Gaming and Warns of Non-Secure Websites
    Today’s release of Firefox includes various features for developers and users that enable a richer and safer experience on the web.

Leftovers: Gaming

Red Hat News

Security Leftovers