Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 1 hour 55 min ago

RedHat: RHSA-2021-3758:01 Moderate: OpenShift Container Platform 4.9.0>

Monday 18th of October 2021 12:58:12 PM
Red Hat OpenShift Container Platform release 4.9.0 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

Debian LTS: DLA-2743-2: amd64-microcode update>

Monday 18th of October 2021 10:21:43 AM
DLA-2743-1 was issued for CVE-2017-5715, affecting amd64-microcode, processor microcode firmware for AMD CPUs. However, the binaries for the resulting upload weren't built and published, thereby preventing the users to upgrade to a fixed version.

SciLinux: SLSA-2021-3841-1 Important: thunderbird on SL7.x x86_64>

Monday 18th of October 2021 08:10:48 AM
This update upgrades Thunderbird to version 91.2.0. * Mozilla: Use-after-free in MessageTask (CVE-2021-38496) * Mozilla: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 (CVE-2021-38500) * Mozilla: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 (CVE-2021-38501) * Mozilla: Downgrade attack on SMTP STARTTLS connections (CVE-2021-38502) * rust-crossb [More...]

SciLinux: SLSA-2021-3791-1 Important: firefox on SL7.x x86_64>

Monday 18th of October 2021 08:10:13 AM
This update upgrades Firefox to version 91.2.0 ESR. * Mozilla: Use-after-free in MessageTask (CVE-2021-38496) * Mozilla: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 (CVE-2021-38500) * Mozilla: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 (CVE-2021-38501) * rust-crossbeam-deque: race condition may lead to double free (CVE-2021-32810) * Mozil [More...]

Debian LTS: DLA-2786-1: nghttp2 security update>

Sunday 17th of October 2021 04:03:02 AM
Two security issue have been discovered in nghttp2: server, proxy and client implementing HTTP/2. CVE-2018-1000168

Fedora 33: libopenmpt 2021-7ff1c8680d>

Saturday 16th of October 2021 04:46:58 PM
https://lib.openmpt.org/libopenmpt/2021/10/04/security- updates-0.5.12-0.4.24-0.3.33/

Fedora 34: vim 2021-968f57ec98>

Saturday 16th of October 2021 04:44:57 PM
The newest upstream commit Security fix for CVE-2021-3796 Security fix for CVE-2021-3778

Fedora 34: libopenmpt 2021-7cc30bb3dd>

Saturday 16th of October 2021 04:44:24 PM
https://lib.openmpt.org/libopenmpt/2021/10/04/security- updates-0.5.12-0.4.24-0.3.33/

Debian: DSA-4988-1: libreoffice security update>

Saturday 16th of October 2021 03:23:57 PM
Two security issues have been discovered in LibreOffice's support for digital signatures in ODF documents, which could result in incorrect signature indicators/timestamps being presented.

openSUSE: 2021:3451-1 important: MozillaFirefox>

Saturday 16th of October 2021 11:15:44 AM
An update that fixes 20 vulnerabilities is now available.

SUSE: 2021:412-1 suse/sle15 Security Update>

Saturday 16th of October 2021 05:19:24 AM
The container suse/sle15 was updated. The following patches have been included in this update:

SUSE: 2021:411-1 suse/sle15 Security Update>

Saturday 16th of October 2021 05:13:56 AM
The container suse/sle15 was updated. The following patches have been included in this update:

Debian LTS: DLA-2785-1: linux-4.19 security update>

Friday 15th of October 2021 07:50:44 PM
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

openSUSE: 2021:1358-1 important: opera>

Friday 15th of October 2021 05:18:40 PM
An update that fixes three vulnerabilities is now available.

openSUSE: 2021:1359-1: libaom>

Friday 15th of October 2021 05:17:32 PM
An update that fixes one vulnerability is now available.

Fedora 34: chromium 2021-116eff380f>

Friday 15th of October 2021 03:23:21 PM
Update to 94.0.4606.81. Built with is_official_build=true, which disables all sorts of debugging check functions that upstream turned on in 94. These debugging checks were failing and causing the program to crash in ... fun ways. It also fixes the usual pile of security issues, most notably: CVE-2021-37974 CVE-2021-37975 CVE-2021-37976 CVE-2021-37977 CVE-2021-37978 CVE-2021-37979

Fedora 34: xen 2021-80bbe7def0>

Friday 15th of October 2021 03:22:51 PM
PCI devices with RMRRs not deassigned correctly [XSA-386, CVE-2021-28702] (#2011248)

Fedora 33: xen 2021-0b7a484688>

Friday 15th of October 2021 02:54:11 PM
PCI devices with RMRRs not deassigned correctly [XSA-386, CVE-2021-28702] (#2011248)

openSUSE: 2021:1357-1 important: the Linux Kernel>

Friday 15th of October 2021 02:17:37 PM
An update that solves 6 vulnerabilities and has 43 fixes is now available.

Debian: DSA-4987-1: squashfs-tools security update>

Friday 15th of October 2021 08:58:53 AM
Richard Weinberger reported that unsquashfs in squashfs-tools, the tools to create and extract Squashfs filesystems, does not check for duplicate filenames within a directory. An attacker can take advantage of this flaw for writing to arbitrary files to the filesystem if a malformed

More in Tux Machines

Type Title Author Replies Last Postsort icon
Story today's howtos Roy Schestowitz 25/10/2021 - 12:54pm
Story Spellchecking with QML Rianne Schestowitz 25/10/2021 - 11:20am
Story 9to5Linux Weekly Roundup: October 24th, 2021 Marius Nestor 2 25/10/2021 - 11:20am
Story Looking ahead to Fedora Linux 35 Rianne Schestowitz 25/10/2021 - 11:16am
Story Android Leftovers Rianne Schestowitz 25/10/2021 - 11:13am
Story File Searching on deepin OS Rianne Schestowitz 25/10/2021 - 11:03am
Story Distrowatch Top 5 Distributions review: MX Linux Rianne Schestowitz 25/10/2021 - 10:59am
Story elementary OS 6 – A Beautiful OS for Open Source Lovers Rianne Schestowitz 25/10/2021 - 10:55am
Story today's howtos Roy Schestowitz 25/10/2021 - 2:44am
Story Today in Techrights Roy Schestowitz 25/10/2021 - 2:21am