Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 2 hours 33 min ago

RedHat: RHSA-2021-2561:01 Moderate: Red Hat JBoss Web Server 5.5.0 Security>

Tuesday 29th of June 2021 04:55:23 AM
Updated Red Hat JBoss Web Server 5.5.0 packages are now available for Red Hat Enterprise Linux 7, and Red Hat Enterprise Linux 8. Red Hat Product Security has rated this release as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2021-2562:01 Moderate: Red Hat JBoss Web Server 5.5.0 security>

Tuesday 29th of June 2021 04:41:25 AM
Red Hat JBoss Web Server 5.5.0 zip release is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8 and Windows. Red Hat Product Security has rated this release as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2021-2500:01 Moderate: Red Hat OpenShift Enterprise security>

Tuesday 29th of June 2021 02:33:23 AM
Red Hat OpenShift Container Platform release 4.6.36 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2021-2499:01 Moderate: OpenShift Container Platform 4.6.36>

Tuesday 29th of June 2021 02:18:22 AM
An update for cri-o, jenkins, openshift-clients, and openshift-kuryr is now available for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

Mageia 2021-0298: java-openjdk security update>

Monday 28th of June 2021 08:52:41 PM
For java-1.8.0 ## Security fixes - JDK-8227467: Better class method invocations - JDK-8244473: Contextualize registration for JNDI - JDK-8244543: Enhanced handling of abstract classes

Mageia 2021-0297: trousers security update>

Monday 28th of June 2021 08:52:40 PM
An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed (CVE-2020-24330). An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started

Mageia 2021-0296: kernel security update>

Monday 28th of June 2021 07:18:04 PM
This kernel update is based on upstream 5.10.46 and fixes atleast the following security issues: In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an

Mageia 2021-0295: kernel-linus security update>

Monday 28th of June 2021 07:18:03 PM
This kernel-linus update is based on upstream 5.10.46 and fixes atleast the following security issues: In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an

Mageia 2021-0294: libgcrypt security update>

Monday 28th of June 2021 07:18:02 PM
Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm, and the window size is not chosen appropriately (CVE-2021-33560). References:

Mageia 2021-0293: tor security update>

Monday 28th of June 2021 07:18:01 PM
Don't allow relays to spoof RELAY_END or RELAY_RESOLVED cell on half-closed streams. Previously, clients failed to validate which hop sent these cells: this would allow a relay on a circuit to end a stream that wasn't actually built with it (CVE-2021-34548).

openSUSE: 2021:2184-1 important: the Linux Kernel>

Monday 28th of June 2021 05:23:21 PM
An update that solves four vulnerabilities and has 107 fixes is now available.

Debian LTS: DLA-2695-1: klibc security update>

Monday 28th of June 2021 04:17:14 PM
Several vulnerabilities have been discovered in klibc. Depending on how klibc is used, these could lead to the execution of arbitrary code, privilege escalation, or denial of service.

openSUSE: 2021:0938-1 important: chromium>

Monday 28th of June 2021 02:19:57 PM
An update that fixes 14 vulnerabilities is now available.

Debian LTS: DLA-2693-1: xmlbeans security update>

Monday 28th of June 2021 12:14:49 PM
The XML parsers used by XMLBeans did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include the possibility for XML Entity Expansion attacks which could lead to a denial-of-service. This update implements sensible defaults for the XML parsers to prevent these kind

openSUSE: 2021:0937-1 moderate: live555>

Sunday 27th of June 2021 11:17:04 PM
An update that fixes two vulnerabilities is now available.

openSUSE: 2021:0933-1 moderate: java-1_8_0-openjdk>

Sunday 27th of June 2021 08:19:37 PM
An update that fixes one vulnerability is now available.

openSUSE: 2021:0934-1 moderate: tpm2.0-tools>

Sunday 27th of June 2021 08:17:21 PM
An update that fixes one vulnerability is now available.

Debian LTS: DLA-2694-1: tiff security update>

Sunday 27th of June 2021 07:03:55 PM
Two vulnerabilities have been discovered in the libtiff library and the included tools, which may result in denial of service or the execution of arbitrary code if malformed image files are processed.

openSUSE: 2021:0931-1 important: roundcubemail>

Sunday 27th of June 2021 08:15:30 AM
An update that fixes three vulnerabilities is now available.

More in Tux Machines

Type Title Author Replies Last Postsort icon
Story Linux Foundation: PaSh, LFMS, and 'Studies' Roy Schestowitz 18 28/09/2021 - 10:30pm
Story HOT DOG Linux for Retro Linux fans Roy Schestowitz 28/09/2021 - 10:26pm
Story Toshiba Canvio Advance external hard disk and Debian Linux. Roy Schestowitz 28/09/2021 - 10:12pm
Story gThumb 3.12 Released with HEIF/HEIC & AVIF Image Support Roy Schestowitz 1 28/09/2021 - 10:05pm
Story today's leftovers Roy Schestowitz 1 28/09/2021 - 9:49pm
Story Security Leftovers Roy Schestowitz 28/09/2021 - 9:41pm
Story today's howtos Roy Schestowitz 28/09/2021 - 9:37pm
Story Element And Movim Messengers Comparison Made Simple Roy Schestowitz 28/09/2021 - 9:31pm
Story Bangle.js 2 is a Hackable, Open Source Smartwatch Rianne Schestowitz 2 28/09/2021 - 9:25pm
Story What’s new in KDE Plasma 5.24 Roy Schestowitz 28/09/2021 - 8:51pm