Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 43 min 27 sec ago

Mageia 2022-0195: kernel-linus security update>

Saturday 21st of May 2022 06:51:26 AM
This kernel-linus update is based on upstream 5.15.41 and fixes at least the following security issues: A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel BPF subsystem

Mageia 2022-0194: kernel security update>

Saturday 21st of May 2022 06:51:25 AM
This kernel update is based on upstream 5.15.41 and fixes at least the following security issues: A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel BPF subsystem

Mageia 2022-0193: microcode security update>

Saturday 21st of May 2022 06:51:24 AM
Updated microcodes for Intel processors, fixing various functional issues, and at least the following security issues: Sensitive information accessible by physical probing of JTAG interface for some Intel(R) Processors with SGX may allow an unprivileged user to

Mageia 2022-0192: opencontainers-runc security update>

Saturday 21st of May 2022 06:51:23 AM
A bug was found in runc where runc exec --cap executed processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs with inheritable file capabilities to elevate those capabilities to the permitted set during execve(2). This bug did not affect the container security sandbox as the inheritable set

SUSE: 2022:1119-1 bci/dotnet-aspnet Security Update>

Saturday 21st of May 2022 05:15:57 AM
The container bci/dotnet-aspnet was updated. The following patches have been included in this update:

Slackware: 2022-140-02: mozilla-thunderbird Security Update>

Friday 20th of May 2022 09:42:41 PM
New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues.

Slackware: 2022-140-01: mozilla-firefox Security Update>

Friday 20th of May 2022 09:42:04 PM
New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues.

Fedora 35: vim 2022-74b9e404c1>

Friday 20th of May 2022 09:32:26 PM
Security fixes for CVE-2022-1769, CVE-2022-1733 ---- The newest upstream commit Security fix for CVE-2022-1674

Fedora 35: dotnet6.0 2022-d69fee9f38>

Friday 20th of May 2022 09:32:22 PM
Update to .NET SDK 6.0.105 and Runtime 6.0.5 This is the May 2022 update for .NET 6. It includes fixes for multiple CVEs, including CVE-2022-29117, CVE-2022-29145 and CVE-2022-23267.

Fedora 36: dotnet6.0 2022-9a1d5ea33c>

Friday 20th of May 2022 09:32:15 PM
Update to .NET SDK 6.0.105 and Runtime 6.0.5 This is the May 2022 update for .NET 6. It includes fixes for multiple CVEs, including CVE-2022-29117, CVE-2022-29145 and CVE-2022-23267.

Fedora 34: dotnet6.0 2022-256d559f0c>

Friday 20th of May 2022 09:06:20 PM
Update to .NET SDK 6.0.105 and Runtime 6.0.5 This is the May 2022 update for .NET 6. It includes fixes for multiple CVEs, including CVE-2022-29117, CVE-2022-29145 and CVE-2022-23267.

Debian LTS: DLA-3016-1: rsyslog security update>

Friday 20th of May 2022 07:58:25 PM
Several vulnerabilities were discovered in rsyslog, a system and kernel logging daemon. When a log server is configured to accept logs from remote clients through specific modules such as 'imptcp', an attacker can cause a denial of service (DoS) and possibly execute code

Debian LTS: DLA-3018-1: libpgjava security update>

Friday 20th of May 2022 06:43:57 PM
It was found that libpgjava, the official PostgreSQL JDBC Driver, would be vulnerable if an attacker controlled jdbc url or properties. The JDBC driver did not verify if certain classes implemented the expected interface before instantiating the class. This can lead to code execution loaded via arbitrary

SUSE: 2022:1768-1 php7>

Friday 20th of May 2022 02:16:41 PM
An update that contains security fixes can now be installed.

SUSE: 2022:1771-1 important: openldap2>

Friday 20th of May 2022 02:16:01 PM
An update that solves one vulnerability and has one errata is now available.

Debian LTS: DLA-3015-1: ark security update>

Friday 20th of May 2022 10:06:00 AM
Fabian Vogt and Dominik Penner discovered that the Ark archive manager did not sanitize extraction paths, which could result in maliciously crafted archives with symlinks writing outside the extraction directory.

SUSE: 2022:1764-1 php7>

Friday 20th of May 2022 08:16:53 AM
An update that contains security fixes can now be installed.

SUSE: 2022:1762-1 moderate: ImageMagick>

Friday 20th of May 2022 08:16:15 AM
An update that solves one vulnerability and has one errata is now available.

SUSE: 2022:1118-1 suse/sle15 Security Update>

Friday 20th of May 2022 07:12:19 AM
The container suse/sle15 was updated. The following patches have been included in this update:

SUSE: 2022:1117-1 bci/ruby Security Update>

Friday 20th of May 2022 06:59:57 AM
The container bci/ruby was updated. The following patches have been included in this update:

More in Tux Machines

Type Title Author Repliessort icon Last Post
Story ut2004 Update Out srlinuxx 11/04/2005 - 4:00am
Story Coolest Homepage Yet! srlinuxx 11/04/2005 - 4:00am
Story IBM Sets Its Sights on Linux Software srlinuxx 11/04/2005 - 3:59am
Story Review of PCLOS srlinuxx 11/04/2005 - 6:24am
Story The Myth of Linux Security srlinuxx 11/04/2005 - 3:39am
Story M$ Plans more Secure Browser :roll: srlinuxx 11/04/2005 - 3:38am
Story Whoops: KDE fliccd Buffer Overflow Vulnerabilities srlinuxx 11/04/2005 - 6:30am
Story Study Find Open Source More Secure srlinuxx 11/04/2005 - 3:36am
Story Interview with Bill Gates srlinuxx 11/04/2005 - 3:36am
Story Security Showdown: Back & Forth srlinuxx 11/04/2005 - 3:35am