Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 11 hours 11 min ago

Red Hat: 2016:2676-01: flash-plugin: Critical Advisory

Wednesday 9th of November 2016 03:43:00 AM
LinuxSecurity.com: An update for flash-plugin is now available for Red Hat Enterprise Linux 5 Supplementary and Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact [More...]

Fedora 23 firefox-49.0.2-1.fc23

Tuesday 8th of November 2016 06:04:00 PM
LinuxSecurity.com: - new upstream version (49.0.2)

Fedora 23 pacemaker-1.1.15-2.fc23

Tuesday 8th of November 2016 06:04:00 PM
LinuxSecurity.com: Security fix for CVE-2016-7035 (improper IPC guarding)

Fedora 23 dbus-1.10.12-1.fc23

Tuesday 8th of November 2016 05:58:00 PM
LinuxSecurity.com: Update to 1.10.12

Debian: 3709-1: libxslt: Summary

Tuesday 8th of November 2016 04:45:00 PM
LinuxSecurity.com: Security Report Summary

Red Hat: 2016:2675-01: pacemaker: Important Advisory

Tuesday 8th of November 2016 09:04:00 AM
LinuxSecurity.com: An update for pacemaker is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]

Fedora 24 ansible-2.2.0.0-3.fc24

Monday 7th of November 2016 06:42:00 PM
LinuxSecurity.com: Add patch to fix dnf module groupinstall handling ---- Update to new ansible2.2 version. For full changes see:https://github.com/ansible/ansible/blob/stable-2.2/CHANGELOG.md

Fedora 24 ghostscript-9.20-5.fc24

Monday 7th of November 2016 06:40:00 PM
LinuxSecurity.com: This update fixes a rare ocasion where ghostscript would fail when displaying*.ps files. More info can be found[here](http://bugs.ghostscript.com/show_bug.cgi?id=697286). ---- This is asecurity update for these CVEs: *[CVE-2016-8602](https://bugzilla.redhat.com/show_bug.cgi?id=1383940) - *checkfor sufficient params in .sethalftone5* *[CVE-2016-7977](https://bugzilla.redhat.com/show_bug.cgi?id=1380415) - *.libfiledoes not honor -dSAFER* [This CVE is now correctly fixed, previous release wasaccidentally missing the fix.]

Fedora 24 kernel-4.8.6-201.fc24

Monday 7th of November 2016 06:40:00 PM
LinuxSecurity.com: The 4.8.6 stable update contains a number of important fixes across the tree.

Fedora 24 icu-56.1-5.fc24

Monday 7th of November 2016 06:40:00 PM
LinuxSecurity.com: Security fix for CVE-2016-6293

Fedora 24 java-1.8.0-openjdk-aarch32-1.8.0.102-7.160812.fc24

Monday 7th of November 2016 06:34:00 PM
LinuxSecurity.com: October 2016 CPU fixes: http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html#AppendixJAVA

Debian: 3708-1: mat: Summary

Monday 7th of November 2016 04:31:00 PM
LinuxSecurity.com: Security Report Summary

Red Hat: 2016:2672-01: chromium-browser: Important Advisory

Monday 7th of November 2016 02:39:00 PM
LinuxSecurity.com: An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact [More...]

Red Hat: 2016:2670-01: qemu-kvm-rhev: Moderate Advisory

Monday 7th of November 2016 02:23:00 PM
LinuxSecurity.com: An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 8.0 (Liberty). Red Hat Product Security has rated this update as having a security impact [More...]

Red Hat: 2016:2671-01: qemu-kvm-rhev: Moderate Advisory

Monday 7th of November 2016 02:23:00 PM
LinuxSecurity.com: An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 9.0 (Mitaka). Red Hat Product Security has rated this update as having a security impact [More...]

Debian: 3707-1: openjdk-7: Summary

Monday 7th of November 2016 01:35:00 PM
LinuxSecurity.com: Security Report Summary

Red Hat: 2016:2658-01: java-1.7.0-openjdk: Important Advisory

Monday 7th of November 2016 09:16:00 AM
LinuxSecurity.com: An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact [More...]

Red Hat: 2016:2659-01: java-1.6.0-ibm: Critical Advisory

Monday 7th of November 2016 09:06:00 AM
LinuxSecurity.com: An update for java-1.6.0-ibm is now available for Red Hat Enterprise Linux 5 Supplementary and Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact [More...]

Debian: 3706-1: mysql-5.5: Summary

Monday 7th of November 2016 01:18:00 AM
LinuxSecurity.com: Security Report Summary

Fedora 24 firefox-49.0.2-1.fc24

Saturday 5th of November 2016 08:34:00 PM
LinuxSecurity.com: - new upstream version (49.0.2)

More in Tux Machines

OSS Leftovers

SUSE Leftovers

  • openSUSE Tumbleweed – Review of the Week 2016/48
    After releasing daily snapshots without interruption for 17 days, Tumbleweed did slow down a bit during the last week. As already mentioned in my last review, 1124 had been canceled due to an issue with sddm installing strange branding configurations. And later on, we ‘broke’ our own staging setup and needed to bootstrap a few of them, making the throughput much lower than you were used to. So, we ended up with 3 snapshots since my last review: 1125, 1128 and 1129.
  • Highlights of YaST development sprint 28
    November is over, Santa Claus elves start to stress and the YaST team brings you one of the last reports of 2016. Let’s see what’s new in YaSTland.

OSS: AI and Machine Learning

Ubuntu and Derivatives

  • Canonical Sues Cloud Provider, Mint Beta, Devuan Tour
    Ubuntu parent-company, Canonical, today posted that they've been in a dispute with "a European cloud provider" over their use of their own homespun version of Ubuntu on their cloud servers. Their implementation disables even the most basic of security features and Canonical is worried something bad could happen and it'd reflect badly back on them. The post read, "The home-grown images of this provider disable fundamental security mechanisms and modify the system in ways that are unsupportable. They are likely to behave unpredictably on update in weirdly creative and mysterious ways." They said they've spent months trying to get the unnamed provider to use the standard Ubuntu as delivered to other commercial operations to no avail. Canonical feels they have no choice but to "take legal steps to remove these images." They're sure Red Hat and Microsoft wouldn't be treated like this.
  • Taking a stand against unofficial Ubuntu images
    Ubuntu is amazing on the cloud because we work with cloud providers to ensure crisp, consistent and secure images which you can auto-update safely. On every major cloud—AWS, Azure, Google, Rackspace, SoftLayer and many more—you can be confident that ‘Ubuntu’ is Ubuntu, with the same commitment to quality that you can expect when you install it yourself, and we can guarantee that to you because we require that clouds offer only certified Ubuntu images.
  • Canonical Takes Stand Against Unofficial Ubuntu Images, Reportedly Risky & Insecure
    Mark Shuttleworth has written a new blog post where he's outlining a dispute Canonical is having with a European cloud provider over a breach of contract and "publishing insecure, broken images of Ubuntu" for its cloud customers. With these Ubuntu Cloud unofficial images reportedly being buggy, users are complaining to Canonical/Ubuntu, assuming it's an upstream issue. Having enough of that, they are now preparing for legal steps to remove the unofficial Ubuntu images from the particular cloud provider.
  • Linux Mint 18.1 “Serena” MATE – BETA Release
  • Linux Mint 18.1 “Serena” Cinnamon – BETA Release