Language Selection

English French German Italian Portuguese Spanish Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 14 min 21 sec ago

openSUSE: 2021:0919-1 important: libgcrypt>

4 hours 51 min ago
An update that fixes one vulnerability is now available.

openSUSE: 2021:0920-1 important: dovecot23>

4 hours 54 min ago
An update that fixes two vulnerabilities is now available.

openSUSE: 2021:0917-1 important: gupnp>

4 hours 55 min ago
An update that fixes one vulnerability is now available.

openSUSE: 2021:0918-1 important: ovmf>

4 hours 56 min ago
An update that contains security fixes can now be installed.

Ubuntu 4998-1: Ceph vulnerabilities>

Thursday 24th of June 2021 11:10:43 PM
Several security issues were fixed in Ceph.

Debian LTS: DLA-2691-1: libgcrypt20 security update>

Thursday 24th of June 2021 06:55:50 PM
An issue has been found in libgcrypt20, a crypto library. Mishandling of ElGamal encryption results in a possible side-channel attack and an interoperability problem with keys not generated by

openSUSE: 2021:0915-1 moderate: live555>

Thursday 24th of June 2021 05:15:58 PM
An update that fixes two vulnerabilities is now available.

ArchLinux: 202106-57: pigeonhole: denial of service>

Thursday 24th of June 2021 02:20:59 PM
The package pigeonhole before version 0.5.15-1 is vulnerable to denial of service.

ArchLinux: 202106-56: dovecot: information disclosure>

Thursday 24th of June 2021 02:20:51 PM
The package dovecot before version 2.3.15-1 is vulnerable to information disclosure.

ArchLinux: 202106-55: tpm2-tools: man-in-the-middle>

Thursday 24th of June 2021 02:20:44 PM
The package tpm2-tools before version 5.1.1-1 is vulnerable to man-in- the-middle.

ArchLinux: 202106-54: exiv2: multiple issues>

Thursday 24th of June 2021 02:20:38 PM
The package exiv2 before version 0.27.4-1 is vulnerable to multiple issues including arbitrary code execution, denial of service and information disclosure.

ArchLinux: 202106-53: keycloak: certificate verification bypass>

Thursday 24th of June 2021 02:20:31 PM
The package keycloak before version 14.0.0-1 is vulnerable to certificate verification bypass.

ArchLinux: 202106-52: helm: information disclosure>

Thursday 24th of June 2021 02:20:24 PM
The package helm before version 3.6.1-1 is vulnerable to information disclosure.

Ubuntu 5004-1: RabbitMQ vulnerabilities>

Thursday 24th of June 2021 12:13:24 PM
Several security issues were fixed in rabbitmq-server.

openSUSE: 2021:0910-1 important: MozillaThunderbird>

Thursday 24th of June 2021 11:32:31 AM
An update that fixes two vulnerabilities is now available.

openSUSE: 2021:0909-1 important: wireshark, libvirt, sbc, libqt5-qtmultimedia>

Thursday 24th of June 2021 11:28:13 AM
An update that solves 9 vulnerabilities and has two fixes is now available.

openSUSE: 2021:0907-1 important: cryptctl>

Thursday 24th of June 2021 11:23:52 AM
An update that fixes one vulnerability is now available.

RedHat: RHSA-2021-2543:01 Moderate: Red Hat OpenShift Jaeger 1.20.4>

Thursday 24th of June 2021 11:22:23 AM
An update is now available for Red Hat OpenShift Jaeger 1.20. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from

openSUSE: 2021:0906-1 important: libnettle>

Thursday 24th of June 2021 11:21:56 AM
An update that fixes one vulnerability is now available.

openSUSE: 2021:0901-1 important: python-rsa>

Wednesday 23rd of June 2021 08:26:00 PM
An update that fixes one vulnerability is now available.

More in Tux Machines

Excellent Utilities: duf – disk usage utility

This is a series highlighting best-of-breed utilities. We cover a wide range of utilities including tools that boost your productivity, help you manage your workflow, and lots more besides. There’s a complete list of the tools in this series in the Summary section. The Command Line Interface (CLI) is a way of interacting with your computer. To harness all the power of Linux, it’s highly recommended mastering the interface. It’s true the CLI is often perceived as a barrier for users migrating to Linux, particularly if they’re grown up using GUI software exclusively. While Linux rarely forces anyone to use the CLI, some tasks are better suited to this method of interaction, offering inducements like superior scripting opportunities, remote access, and being far more frugal with a computer’s resources. duf is a simple disk usage utility that offers a more attractive representation than the classic df utility. It’s written in Go. Read more

Sway 1.6.1 Wayland Compositor Released With WLROOTS 0.14

Simon Ser has released Sway 1.6.1 as the newest version of this popular i3-inspired Wayland compositor. Sway 1.6 came back in April with better Flatpak/Snap application integration, smoother move/resize operations, X11 clipboard handling improvements, and many other improvements for this popular "indie" Wayland compositor. Read more

today's howtos

  • Kali Linux Man in the Middle Attack Tutorial for Beginners 2021

    Man in the middle attack is the most popular and dangerous attack in Local Area Network. With the help of this attack, A hacker can capture the data including username and password traveling over the network. He/she is not only captured data from the network he/she can alter data as well. For example, if you send a letter to your friend the hacker can capture the letter before reaching the destination, and can edit and then send to your friend a modified letter. But a good thing is this attack only can be performed in a local area network it means one of the victims must be in the same network of the attacker. May be possible you have heard that using a public Wi-Fi network is not as secure as your home network the only reason is a man in the middle attack.

  • How to Install chrome in Ubuntu 20.04 complete Guide

    Google Chrome is a web browser, most used widely in the world. It is fast, simple, and easy to use and secure browser built for the modern web. Neither Google Chrome comes with Ubuntu default, nor included in the Ubuntu repositories. But here, I am telling about another open-source web browser. It is available in the default Ubuntu repositories. If you don’t want to install chromium and looking only for chrome, this article will help you.

  • How to Install and Use Tilix Terminal Emulator in Linux

    Tilix is an open-source advanced Linux terminal emulator that uses GTK+ 3 and offers a lot of features that are not part of the default terminal that ships with Linux distributions.

  • How to Install NetBeans IDE 12 on Fedora 34/33 – TecAdmin

    NetBeans is an open-source integrated development environment for the application development on Windows, Mac, Linux, and Solaris operating systems. It offers excellent debugging capabilities, coding, plugins, and extensions with multiple out-of-the-box features. The NetBeans is widely used by the PHP and Java application developers. A shell script is provided by the official team for easier installation of Netbeans on Linux systems. However, we can have also use the Snap package to install the latest NetBeans IDE on the Fedora system quickly. This tutorial will help you to install NetBeans IDE on a Fedora system using the Snap package manager.

  • How to Fix 504 Gateway Timeout in Nginx Server

    I use NGINX a lot. I recently deployed a Node.js web application with NGINX as a reverse proxy server for it. One of the key features of the application is support for data imports using excel templates. However, it didn’t take long before users uploading bulky files started getting a 504 Gateway Timeout error from NGINX.

  • How To Install Next.js on Ubuntu 20.04 LTS - idroot

    In this tutorial, we will show you how to install Next.js on Ubuntu 20.04 LTS. For those of you who didn’t know, Next.js is a Javascript framework built on React.js, which allows developers to build static and dynamic websites and web applications. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the Next.js open-source Javascript framework on Ubuntu 20.04 (Focal Fossa). You can follow the same instructions for Ubuntu 18.04, 16.04, and any other Debian-based distribution like Linux Mint.

  • How To Install AlmaLinux Desktop

    This tutorial explains the installation of AlmaLinux Desktop to computer. This begins with where to grab the OS itself, make a bootable medium of it, boot the computer with it, then starts the installation and partitioning until finished. The final result will be a fully functional computer with AlmaLinux GNOME.

  • Generate Rainbow Tables and Crack Hashes in Kali Linux Complete Guide

    Rcracki_mt is a tool used to crack hashes and found in kali linux by default. It is used rainbow tables to crack the password. Some other tools generate rainbow tables. You can download Rainbow table if you don’t want to download rainbow table you can create you own by Using winrtgen in window and rtgen in Kali Linux

AMD SFH Linux Driver Updated For "Next Gen" Ryzen Laptops

There's the next chapter to the unfortunately rather sad state of the AMD Sensor Fusion Hub (SFH) driver support under Linux. Since 2018 with AMD Ryzen laptops there has been the Sensor Fusion Hub for various accelerometer/gyroscopic sensor functionality, among other uses and akin to Intel's Sensor Hub. It wasn't though until January 2020 that AMD published their SFH driver for Linux. Read more