Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 2 hours 31 min ago

Debian LTS: DLA-2886-1: slurm-llnl security update>

Monday 17th of January 2022 02:26:55 PM
Multiple security issues were discovered in the Simple Linux Utility for Resource Management (SLURM), a cluster resource management and job scheduling system, which could result in denial of service, information disclosure or privilege escalation.

openSUSE: 2022:0088-1 moderate: ghostscript>

Monday 17th of January 2022 01:17:41 PM
An update that fixes two vulnerabilities is now available.

RedHat: RHSA-2022-0146:03 Moderate: EAP XP 2 security update to CVE fixes>

Monday 17th of January 2022 01:11:56 PM
This advisory resolves CVE issues filed against XP2 releases that have been fixed in the underlying EAP 7.3.x base. There are no changes to the EAP XP2 code base. NOTE: This advisory is informational only. There are no code changes

openSUSE: 2022:0014-1 important: chromium>

Monday 17th of January 2022 10:17:21 AM
An update that fixes 24 vulnerabilities is now available.

Ubuntu 5227-2: Pillow vulnerabilities>

Monday 17th of January 2022 09:18:36 AM
Several security issues were fixed in Pillow.

RedHat: RHSA-2022-0143:03 Important: httpd security update>

Monday 17th of January 2022 07:11:56 AM
An update for httpd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

Fedora 35: flatpak 2022-825ca6bf2b>

Sunday 16th of January 2022 08:57:26 PM
Update to 1.12.3 Fixes these two security issues: * CVE-2021-43860 or https://github.com/flatpak/flatpak/security/advisories/GHSA-qpjc-vq3c-572j * CVE-2022-21682 or https://github.com/flatpak/flatpak/security/advisories/GHSA-8ch7-5j3h-g4fx Full release notes: https://github.com/flatpak/flatpak/releases/tag/1.12.3

Debian LTS: DLA-2882-1: sphinxsearch security update>

Sunday 16th of January 2022 06:36:28 PM
It was discovered that sphinxsearch, a fast standalone full-text SQL search engine, could allow arbitrary files to be read by abusing a configuration option.

Slackware: 2022-016-01: expat Security Update>

Sunday 16th of January 2022 04:48:11 PM
New expat packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.

Mageia 2022-0020: openexr security update>

Sunday 16th of January 2022 04:40:11 PM
OpenEXR 3.1.0 through 3.1.3 has a heap-based buffer overflow in Imf_3_1::LineCompositeTask::execute (called from IlmThread_3_1::NullThreadPoolProvider::addTask and IlmThread_3_1::ThreadPool::addGlobalTask). (CVE-2021-45942)

Mageia 2022-0019: thunderbird security update>

Sunday 16th of January 2022 04:40:10 PM
It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox (CVE-2021-4140). Constructing audio sinks could have lead to a race condition when playing audio files and closing windows. This could have lead to a use-after-free

Debian LTS: DLA-2881-1: thunderbird security update>

Sunday 16th of January 2022 06:56:46 AM
Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For Debian 9 stretch, these problems have been fixed in version

Debian LTS: DLA-2880-1: firefox-esr security update>

Sunday 16th of January 2022 06:55:08 AM
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, denial of service or spoofing.

Fedora 35: cryptsetup 2022-40d0a8de5e>

Saturday 15th of January 2022 08:23:06 PM
Security fix for CVE-2021-4122

Fedora 35: python-kombu 2022-1dae017601>

Saturday 15th of January 2022 08:20:49 PM
- kombu 5.2.3: https://github.com/celery/kombu/blob/master/Changelog.rst#523 - celery 5.2.3: https://github.com/celery/celery/blob/master/Changelog.rst#523

Fedora 35: python-celery 2022-1dae017601>

Saturday 15th of January 2022 08:20:48 PM
- kombu 5.2.3: https://github.com/celery/kombu/blob/master/Changelog.rst#523 - celery 5.2.3: https://github.com/celery/celery/blob/master/Changelog.rst#523

Fedora 35: uriparser 2022-cfd0048127>

Saturday 15th of January 2022 08:19:48 PM
Update to 0.9.6, see https://github.com/uriparser/uriparser/blob/uriparser-0.9.6/ChangeLog for details.

Fedora 35: mingw-uriparser 2022-cfd0048127>

Saturday 15th of January 2022 08:19:47 PM
Update to 0.9.6, see https://github.com/uriparser/uriparser/blob/uriparser-0.9.6/ChangeLog for details.

Fedora 34: uriparser 2022-00a529a8bf>

Saturday 15th of January 2022 07:58:22 PM
Update to 0.9.6, see https://github.com/uriparser/uriparser/blob/uriparser-0.9.6/ChangeLog for details.

Debian: DSA-5048-1: libreswan security update>

Saturday 15th of January 2022 02:41:40 PM
It was discovered that the libreswan IPsec implementation could be forced into a crash/restart via a malformed IKEv1 packet, resulting in denial of service.

More in Tux Machines

Typesort icon Title Author Replies Last Post
Blog entry Truths srlinuxx 23/06/2011 - 6:30pm
Blog entry Zentyal Linux, a usable Linux Server fieldyweb 28/10/2011 - 10:32pm
Blog entry 6 Linux as a Service Distros you should know about.. fieldyweb 26/10/2011 - 10:18pm
Blog entry Konqueror in KDE4. It's not so terrible, I guess. blackbelt_jones 1 25/10/2011 - 12:10am
Blog entry Sabayon 7 GNOME 3 review finid 20/10/2011 - 2:33am
Blog entry My plan to use KDE3 forever. blackbelt_jones 18/10/2011 - 9:19pm
Blog entry OpenIndiana Desktop 151 review finid 15/10/2011 - 4:17pm
Blog entry ChromeOS in VirtualBox Texstar 09/08/2011 - 7:56am
Blog entry Fred srlinuxx 5 22/07/2011 - 3:51pm
Blog entry CentOS 6.0 finid 11/07/2011 - 10:41am