Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 49 min 6 sec ago

RedHat: RHSA-2021-4687:02 Important: kernel security update>

Tuesday 16th of November 2021 09:41:03 AM
An update for kernel is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2021-4692:02 Important: kernel security update>

Tuesday 16th of November 2021 09:40:55 AM
An update for kernel is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2021-4694:03 Moderate: rust-toolset-1.54-rust security update>

Tuesday 16th of November 2021 09:00:33 AM
An update for rust-toolset-1.54-rust is now available for Red Hat Developer Tools. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2021-4686:04 Moderate: webkit2gtk3 security update>

Tuesday 16th of November 2021 09:00:18 AM
An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

SUSE: 2021:509-1 suse/sles12sp4 Security Update>

Tuesday 16th of November 2021 03:58:06 AM
The container suse/sles12sp4 was updated. The following patches have been included in this update:

SUSE: 2021:508-1 suse/sles12sp3 Security Update>

Tuesday 16th of November 2021 03:41:19 AM
The container suse/sles12sp3 was updated. The following patches have been included in this update:

openSUSE: 2021:3662-1 important: samba>

Monday 15th of November 2021 07:18:11 PM
An update that fixes one vulnerability is now available.

RedHat: RHSA-2021-4676:03 Moderate: Red Hat JBoss Enterprise Application>

Monday 15th of November 2021 03:41:17 PM
A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2021-4679:03 Moderate: Red Hat JBoss Enterprise Application>

Monday 15th of November 2021 03:41:08 PM
A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2021-4677:03 Moderate: Red Hat JBoss Enterprise Application>

Monday 15th of November 2021 03:40:55 PM
A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

openSUSE: 2021:1477-1 important: the Linux Kernel>

Monday 15th of November 2021 01:18:19 PM
An update that solves 15 vulnerabilities and has 41 fixes is now available.

Ubuntu 5147-1: Vim vulnerabilities>

Monday 15th of November 2021 12:33:29 PM
Several security issues were fixed in Vim.

Debian: DSA-5010-1: libxml-security-java security update>

Monday 15th of November 2021 12:27:50 PM
Apache Santuario - XML Security for Java is vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. This allows an attacker to abuse an XPath Transform to extract any local .xml files in a RetrievalMethod element.

openSUSE: 2021:1475-1 moderate: binutils>

Monday 15th of November 2021 10:20:35 AM
An update that solves 14 vulnerabilities, contains four features and has 5 fixes is now available.

openSUSE: 2021:1474-1: tinyxml>

Monday 15th of November 2021 10:17:54 AM
An update that fixes one vulnerability is now available.

RedHat: RHSA-2021-4649:02 Moderate: gcc-toolset-10-binutils security update>

Monday 15th of November 2021 09:42:40 AM
An update for gcc-toolset-10-binutils is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

SciLinux: SLSA-2021-4619-1 Important: freerdp on SL7.x x86_64>

Monday 15th of November 2021 09:06:30 AM
freerdp: improper client input validation for gateway connections allows to overwrite memory (CVE-2021-41159) * freerdp: improper region checks in all clients allow out of bound write to memory (CVE-2021-41160) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE SL7 x86_64 freerdp-2.1.1-5.el [More...]

openSUSE: 2021:1471-1 important: samba>

Monday 15th of November 2021 07:22:27 AM
An update that fixes three vulnerabilities is now available.

Debian LTS: DLA-2818-1: ffmpeg security update>

Sunday 14th of November 2021 04:47:56 PM
Multiple issues have been discovered in ffmpeg - tools for transcoding, streaming and playing of multimedia files. CVE-2020-20445

Fedora 35: kernel 2021-fdef34e26f>

Saturday 13th of November 2021 11:10:25 PM
The 5.14.17 stable kernel update contains a number of important fixes across the tree.

More in Tux Machines

Linux/DLSS Coverage Today

  • Nvidia's DLSS Has Come To Linux Gaming

    Years after its failed Steam Machines, Valve is slowly but surely improving the state of Linux gaming.

  • Nvidia’s DLSS has come to Linux gaming (but not the Steam Deck obviously)

    Years after its failed Steam Machines, Valve is slowly but surely improving the state of Linux gaming. The company’s upcoming Steam Deck handheld runs atop Linux, and its Proton compatibility layer lets it — and other computers — play Windows games as well. Now, Valve has officially added support for Nvidia’s DLSS machine learning temporal upscaling technique to Proton, potentially bringing big FPS boosts and less flicker in games that support the technology.

  • NVIDIA DLSS Landing On Proton Is A Win For Linux Gaming But There Are Caveats
  • Proton now officially supports Nvidia DLSS, but it won’t come to Valve’s Steam Deck | PCGamesN

    Valve is paving the way for us to ditch Windows and dive into Linux PC gaming, as the Steam Deck leads the charge with SteamOS and its Proton compatibility layer. Now, with the release of Proton 6.3-8 (via Videocardz), the company hopes to tempt even more players to jump ship with official support for Nvidia DLSS. The proprietary upscaling technology can help boost fps in games like Call of Duty: Vanguard or Back 4 Blood, without sacrificing much in the way of image quality. Unfortunately, team green’s upscaling technology won’t be supported on the Steam Deck as it uses an AMD Zen2-based SoC, and Nvidia DLSS requires an RTX chip.

  • Nvidia DLSS Upscaling Will Not Be Compatible With Steam Deck

    Upscaling is fast becoming the industry standard in modern AAA gaming, if it isn't already. Nvidia and AMD have their own versions, with Intel working on one for its upcoming range of GPUs, though "team green's" algorithm is probably the more popular one. The likes of Back 4 Blood use Nvidia's DLSS, or Deep Learning Super Sampling, with the purpose to improve visual fidelity using machine learning. However, not every system is going to be compatible with it, as it turns out that Valve's upcoming Steam Deck handheld PC won't have this specific upscaling technology. According to a recent report, it won't be possible for the Steam Deck to use DLSS, which may be a concern for some people. However, the reason why is quite simple. Nvidia's technology requires one of its own graphics cards, specifically one from the RTX range, such as the RTX 3070 Ti for example. Given that the Deck uses an AMD product under the hood, it won't be compatible with the rival upscaling algorithm. But that does mean it can run AMD's own FidelityFX Super Resolution, or FSR, instead so it will still have upscaling, just not Nvidia's. It's also possible that it could be compatible with Intel's upcoming Xe Super Sampling as well.

Today in Techrights

Devices: Raspberry Pi, Arduino, and ESP32

  • A masterclass in over-engineering

    Twitter went wild for the Robot Arm Clock featured in the new issue of The MagPi. At the last count our tweet had 1.8K retweets. We also showed you how to make Dune’s Gom Jabbar test, and we enjoyed a little Chopin as we watched a piano control LED lights.

  • Converting a Fat Cat cushion into a controller for Final Fantasy XIV | Arduino Blog

    Mounts in the video game Final Fantasy XIV act like how cars or horses do in our world since they allow players to travel around the map much faster than would otherwise be possible. But even better, mounts are ways to express personality and have some fun, which is especially evident with the infamous “Fatter Cat” mount, as it got so widely beloved that Square Enix, the game’s publisher, decided to start selling a plushie version of it in their store.

  • Unsurv offline open source, privacy friendly GNSS receiver with ESP32 & NFC

    “unsurv offline is a privacy friendly, small and lightweight PCB based on an ESP32 featuring a high quality GNSS receiver, accelerometer, and NFC capabilities. Using a combination of onboard features and OpenStreetMap (OSM) data, unsurv offline helps you collect and analyze location data in a privacy-friendly way. Originally conceived to better understand offline video surveillance, this fully open source project is here to help you find and develop a variety of custom use cases.”

today's leftovers

  • Is Linus Trolling The Linux Community? - Invidious

    Linus and Luke (from Linus Tech Tips) recently published video number two of their "Linux gaming challenge". In this video, both men had some complaints about their Linux experience so far. Linus, in particular, had a lot of negative things to say. Here are some of my thoughts on their video.

  • Bullseye

    I just upgraded my Debian GNU/Linux server to Bullseye, 11. Except for a shortage of disc space everything went smoothly. It was my fault. I created a bit too small a / partition when I moved to a newer computer… I looked around and found gigabytes of cruft I could clear out to make things fit: obsolete compilers, files I was never likely to use and I deleted a few packages I was never likely to use. Did that from my smartphone while watching old news on CNN. Went to the console for the real work which took about ten minutes.

  • OpenBSD on the VIA Eden X2 powered HP t510 Thin Client

    Back in 2017, I bought two used HP thin clients on a local auction site, the t5570e and the t510, both of them powered by VIA x86-64 CPUs. In this article, I will focus on the t510, which is the more powerful of the two.

  • Open-Source Virtual Assistant Almond Renamed Genie

    Genie (and Almond) were designed as an alternative to Alexa, Google Assistant, and other common voice assistants. Stanford computer systems designer Dr. Monica Lam set up OVAL to create a decentralized virtual assistant that stored and shared information based on user preferences, without mandates from a company. Almond’s success led to discussions of a rebrand to go with making a commercial product out of the academic experiment. The group wanted to come up with a word that would be useful regardless of the language spoken, thus accommodating international users. The researchers considered other names, like Coco, Mario, and Nico, before settling on Genie as the best option, one unrelated to the Genie virtual assistant developed by Disney for its theme parks and resorts or Alibaba’s Tmall Genie voice assistant.

  • The fish shell is amazing

    I’ve been lurking the fish shell for a couple of years now (and the nushell but it is another story for another time). Not so long ago, I decided to try it, and it’s simply… amazing. If I had to state one feature that makes me like to use it, it’ll be the autocompletion, hands down. It’s the first time I just take a shell and without customization it’s pleasing to use.