Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 5 hours 20 min ago

Fedora 24 libXdmcp-1.1.2-5.fc24

Sunday 5th of March 2017 04:12:00 PM
LinuxSecurity.com: Security fix for CVE-2017-2625

Fedora 24 gtk-vnc-0.7.0-1.fc24

Sunday 5th of March 2017 03:52:00 PM
LinuxSecurity.com: Security fix for CVE-2017-5884, CVE-2017-5885

Fedora 24 jenkins-1.651.3-2.fc24

Sunday 5th of March 2017 03:52:00 PM
LinuxSecurity.com: Security fix for CVE-2016-9299

Fedora 24 jenkins-remoting-2.62.3-1.fc24

Sunday 5th of March 2017 03:52:00 PM
LinuxSecurity.com: Security fix for CVE-2016-9299

Fedora 25 kdelibs-4.14.29-2.fc25

Saturday 4th of March 2017 10:00:00 PM
LinuxSecurity.com: Security fix for CVE-2017-6410

Fedora 25 kf5-kio-5.31.0-2.fc25

Saturday 4th of March 2017 09:59:00 PM
LinuxSecurity.com: Security fix for CVE-2017-6410

Fedora 25 bind99-9.9.9-4.P6.fc25

Saturday 4th of March 2017 09:58:00 PM
LinuxSecurity.com: Security fix for CVE-2017-3135 (unaffected), fixes regression made byCVE-2016-8864

Debian: 3801-1: ruby-zip: Summary

Saturday 4th of March 2017 09:01:00 AM
LinuxSecurity.com: Security Report Summary

Fedora 25 libcacard-2.5.3-1.fc25

Friday 3rd of March 2017 04:58:00 PM
LinuxSecurity.com: new upstream release 2.5.3, fixing leaks

Fedora 25 libXdmcp-1.1.2-5.fc25

Thursday 2nd of March 2017 11:16:00 PM
LinuxSecurity.com: Security fix for CVE-2017-2625

Fedora 25 kernel-4.9.13-200.fc25

Thursday 2nd of March 2017 11:15:00 PM
LinuxSecurity.com: The 4.9.13 update contains a number of important fixes across the tree

Fedora 24 kernel-4.9.13-100.fc24

Thursday 2nd of March 2017 11:01:00 PM
LinuxSecurity.com: The 4.9.13 update contains a number of important fixes across the tree.

Fedora 24 xrdp-0.9.1-5.fc24

Thursday 2nd of March 2017 10:54:00 PM
LinuxSecurity.com: WARNING: Please note that this update comes with a slightly different syntax ofsesman.ini file, so if you edited this file by hand, you may need to look at the.rpmnew file and merge any required changes by hand. This release also createsthree files in /etc/xrdp directory if they don't already exist or are empty: -rsakeys.ini - cert.pem - key.pem Also note that in Fedora, the only backendthat will really work is still Xvnc for now. New features - New xorgxrdpbackend using existing Xorg with additional modules - Improvements to X11rdpbackend - Support for IPv6 (disabled by default) - Initial support for RemoteFXCodec (disabled by default) - Support for TLS security layer (preferred over RDPlayer if supported by the client) - Support for disabling deprecated SSLv3protocol and for selecting custom cipher suites in xrdp.ini - Support forbidirectional fastpath (enabled in both directions by default) - Support clientsthat don't support drawing orders, such as MS RDP client for Android, ChromeRDP(disabled by default) - More configurable login screen - Support for new virtualchannels: - - rdpdr: device redirection - - rdpsnd: audio output - - cliprdr:clipboard - - xrdpvr: xrdp video redirection channel (can be used along withNeutrinoRDP client) - Support for disabling virtual channels globally or bysession type - Allow to specify the path for backends (Xorg, X11rdp, Xvnc) -Added files for systemd support - Multi-monitor support - xrdp-chansrv stroeslogs in ${XDG_DATA_HOME}/xrdp now Security fixes - User's password could berecovered from the Xvnc password file - X11 authentication was not used

Red Hat: 2017:0435-01: python-oslo-middleware: Moderate Advisory

Thursday 2nd of March 2017 04:35:00 PM
LinuxSecurity.com: An update for python-oslo-middleware is now available for Red Hat OpenStack Platform 9.0 (Mitaka). Red Hat Product Security has rated this update as having a security impact [More...]

Red Hat: 2017:0403-01: kernel: Important Advisory

Thursday 2nd of March 2017 04:04:00 PM
LinuxSecurity.com: An update for kernel is now available for Red Hat Enterprise Linux 7.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact [More...]

Red Hat: 2017:0402-01: kernel-rt: Important Advisory

Thursday 2nd of March 2017 04:03:00 PM
LinuxSecurity.com: An update for kernel-rt is now available for Red Hat Enterprise MRG 2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]

Red Hat: 2017:0388-01: ipa: Moderate Advisory

Thursday 2nd of March 2017 04:00:00 PM
LinuxSecurity.com: An update for ipa is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which [More...]

Red Hat: 2017:0386-01: kernel: Important Advisory

Thursday 2nd of March 2017 03:59:00 PM
LinuxSecurity.com: An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]

Red Hat: 2017:0387-01: kernel-rt: Important Advisory

Thursday 2nd of March 2017 03:59:00 PM
LinuxSecurity.com: An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]

Red Hat: 2017:0396-01: qemu-kvm: Important Advisory

Thursday 2nd of March 2017 01:59:00 PM
LinuxSecurity.com: An update for qemu-kvm is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]

More in Tux Machines

Microsoft Still at It

5 open source RSS feed readers

When Google Reader was discontinued four years ago, many "technology experts" called it the end of RSS feeds. And it's true that for some people, social media and other aggregation tools are filling a need that feed readers for RSS, Atom, and other syndication formats once served. But old technologies never really die just because new technologies come along, particularly if the new technology does not perfectly replicate all of the use cases of the old one. The target audience for a technology might change a bit, and the tools people use to consume the technology might change, too. Read more

Leftovers: Software and OSS

  • 10 Portable Apps Every Linux User Should Use
    Portable apps are great invention that not many people talk about. The ability to take any program to any PC, and continue using it is very handy. This is especially true for those that need to get work done, and don’t have anything with you but a flash drive. In this article, we’ll go over some of the best portable Linux apps to take with you. From secure internet browsing, to eBooks, graphic editing and even voice chat! Note: a lot of the portable apps in this article are traditional apps made portable thanks to AppImage technology. AppImage makes it possible to run an app instantly, from anywhere without the need to install. Learn more here.
  • Linux Watch Command, To Monitor a Command Activity
    Recently i came to know about watch command, from one of my friend when i have a different requirement. I got good benefit from watch command and i want to share with you people to get more benefit on it, when you have a problem on Linux system.
  • Gammu 1.38.2
    Yesterday Gammu 1.38.2 has been released. This is bugfix release fixing for example USSD or MMS decoding in some situations. The Windows binaries are available as well. These are built using AppVeyor and will help bring Windows users back to latest versions.
  • How a lifecycle management tool uses metrics
    Greg Sutcliffe is a long-time member and now community lead of the Foreman community. Foreman is a lifecycle management tool for physical and virtual servers. He's been studying how the real-world application of community metrics gives insight into its effectiveness and discovering the gap that exists between the ideal and the practical. He shares what insights he's found behind the numbers and how he is using them to help the community grow. In this interview, Sutcliffe spoke with me about the metrics they are using, how they relate to the community's goals, and which ones work best for them. He also talks about his favorite tooling and advice for other community managers looking to up their metrics game.
  • Build a private blockchain ecosystem in minutes with this open source project Join our daily free Newsletter
  • Becoming an Agile Leader, Part 5: Learning to Learn
    As an Agile leader, you learn in at least two ways: observing and measuring what happens in the organization (I have any number of posts about qualitative and quantitative measurement); and just as importantly, you learn by thinking, discussing with others, and working with others. The people in the organization learn in these ways, too.
  • Is Scratch today like the Logo of the '80s for teaching kids to code?
    Leave it to technology to take an everyday word (especially in the English language) and give it a whole new meaning. Words such as the web, viral, text, cloud, apple, java, spam, server, and tablets come to mind as great examples of how the general public's understanding of the meaning of a word can change in a relatively short amount of time. Hence, this article is about a turtle and a cat who have changed the lives of many people over the years, including mine.

Linux and FOSS Events

  • Keynote: State of the Union - Jim Zemlin, Executive Director, The Linux Foundation
    As the open source community continues to grow, Jim Zemlin, Executive Director of The Linux Foundation, says the Foundation’s goal remains the same: to create a sustainable ecosystem for open source technology through good governance and innovation.
  • Open Source for Science + Innovation
    We are bringing together open source and open science specialists to talk about the “how and why” of open source and open science. Members of these communities will give brief talks which are followed by open and lively discussions open to the audience. Talks will highlight the role of openness in stimulating innovation but may also touch upon how openness appears to some to conflict with intellectual property interests.
  • Announcing the Equal Rating Innovation Challenge Winners
    Six months ago, we created the Equal Rating Innovation Challenge to add an additional dimension to the important work Mozilla has been leading around the concept of “Equal Rating.” In addition to policy and research, we wanted to push the boundaries and find news ways to provide affordable access to the Internet while preserving net neutrality. An open call for new ideas was the ideal vehicle.