Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 3 hours 44 min ago

SciLinux: SLSA-2019-2807-1 Important: thunderbird on SL6.x i386/x86_64

8 hours 20 min ago
This update upgrades Thunderbird to version 60.9.0. * Mozilla: Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message (CVE-2019-11739) * Mozilla: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9 (CVE-2019-11740) * Mozilla: Same-origin policy violation with SVG filters and canvas to steal cross-origin images (CVE-2019-11742) * Mo [More...]

openSUSE: 2019:2152-1: important: chromium

10 hours 29 min ago
An update that fixes 35 vulnerabilities is now available.

openSUSE: 2019:2153-1: important: chromium

10 hours 30 min ago
An update that fixes 35 vulnerabilities is now available.

RedHat: RHSA-2019-2799:01 Important: nginx:1.14 security update

Thursday 19th of September 2019 03:33:12 AM
An update for the nginx:1.14 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2019-2807:01 Important: thunderbird security update

Thursday 19th of September 2019 02:26:15 AM
An update for thunderbird is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

RedHat: RHSA-2019-2805:01 Important: systemd security update

Thursday 19th of September 2019 02:18:27 AM
An update for systemd is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions.

RedHat: RHSA-2019-2806:01 Important: ruby security update

Thursday 19th of September 2019 02:18:15 AM
An update for ruby is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions.

RedHat: RHSA-2019-2808:01 Important: kernel security update

Thursday 19th of September 2019 01:20:12 AM
An update for kernel is now available for Red Hat Enterprise Linux 5 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2019-2798:01 Important: patch security update

Thursday 19th of September 2019 12:09:14 AM
An update for patch is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

RedHat: RHSA-2019-2773:01 Important: thunderbird security update

Wednesday 18th of September 2019 11:39:10 PM
An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

RedHat: RHSA-2019-2796:01 Important: skydive security update

Wednesday 18th of September 2019 10:29:10 PM
An update for skydive is now available for Red Hat OpenStack Platform 14.0 (Rocky). Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

Fedora 29: qbittorrent FEDORA-2019-ce6c6de3cc

Wednesday 18th of September 2019 09:54:00 PM
Update to 4.1.7

Fedora 29: samba FEDORA-2019-eb1e982800

Wednesday 18th of September 2019 09:53:43 PM
Update to Samba 4.9.13 - Security fixes for CVE-2019-10197 ---- Update to Samba 4.9.12

Fedora 30: kernel-headers FEDORA-2019-e3010166bd

Wednesday 18th of September 2019 09:34:38 PM
The 5.2.15 stable kernel update contains a number of important fixes across the tree.

Fedora 30: kernel FEDORA-2019-e3010166bd

Wednesday 18th of September 2019 09:34:38 PM
The 5.2.15 stable kernel update contains a number of important fixes across the tree.

Fedora 30: python34 FEDORA-2019-2b1f72899a

Wednesday 18th of September 2019 09:33:08 PM
Fix CVE-2019-16056 (rhbz#1750457) ---- Fix CVE-2019-10160 (rhbz#1718867)

Fedora 30: qbittorrent FEDORA-2019-2cb551904b

Wednesday 18th of September 2019 09:32:14 PM
Update to 4.1.7

Fedora 30: samba FEDORA-2019-e3e521e5b3

Wednesday 18th of September 2019 09:31:54 PM
Update to Samba 4.10.8 - Security fixes for CVE-2019-10197

Fedora 31: python34 FEDORA-2019-50772cf122

Wednesday 18th of September 2019 09:08:29 PM
Fix CVE-2019-16056 (rhbz#1750457) ---- Fix CVE-2019-10160 (rhbz#1718867)

SUSE: 2019:2403-1 moderate: openssl-1_1

Wednesday 18th of September 2019 05:13:15 PM
An update that fixes two vulnerabilities is now available.

More in Tux Machines

Firefox, Graphene, Krita update in Tumbleweed

Two openSUSE Tumbleweed snapshots were released this week. The snapshots furnished the update for KDE Applications 19.08.1 and updated several libraries including Intel’s Graphene library OS. Snapshot 20190917 delivered four packages. The Graphene package updated to 1.10.0 and now uses an ancillary library called (micro) µTest for its test suite, which makes possible to build and run the test suite without depending on GLib. Mozilla Firefox 69.0 provided Enhanced Tracking Protection (ETP) with stronger privacy protections and added support for receiving multiple video codecs to makes it easier for WebRTC conferencing services to mix video from different clients. The other two package updates in the snapshot were icecream 1.3, which takes compile jobs from a build and distributes it among remote machines allowing a parallel build, and the HTTP client/server library for GNOME libsoup 2.66.3. The update of icecream 1.3 improved the speed of creating compiler tarballs. The snapshot is trending at a moderately stable rating of 87, according to the Tumbleweed snapshot reviewer. Read more

today's leftovers

  • Epiphany Technology Preview Users: Action Required

    Epiphany Technology Preview has moved from https://sdk.gnome.org to https://nightly.gnome.org. The old Epiphany Technology Preview is now end-of-life. Action is required to update. If you installed Epiphany Technology Preview prior to a couple minutes ago, uninstall it using GNOME Software and then reinstall using this new flatpakref.

  • Qt Quick on Vulkan, Metal, and Direct3D - Part 2

    Let's continue where we left off in the first post. We saw an example of a Qt Quick application running on Linux on top of OpenGL and Vulkan. We also saw a Vulkan frame capture in RenderDoc, which is not just an invaluable tool during Qt development work, but can also be useful to anyone who wants to dig deeper and understand better how Qt Quick renders a frame (or for that matter troubleshoot problems in an application's rendering). Now in this post we are going to focus on what Qt 5.14 offers for macOS and Windows.

  • Renewing the Modularity objective

    Now that Modularity is available for all Fedora variants, it’s time to address issues discovered and improve the experience for packagers and users. The Modularity team identified a number of projects that will improve the usefulness of Modularity and the experience of creating modules for packagers. We are proposing a renewed objective to the Fedora Council.

  • Boardcon Idea3399 Features-Rich SBC Comes with M.2 NVMe SSD and 4G LTE PCIe Sockets

    Back in 2017, Boardcon introduced EM3399 single board computer powered by a Rockchip RK3399 processor through the company’s PICO3399 SO-DIMM system-on-module.

  • Random Number Generator Assembly

    Learn how to assemble your NeuG USB True Random Number Generator Assembly from https://shop.fsf.org/

  • Standing on the shoulders of giants

    This changed everything, and it led to the birth of ever greater backgammon neural networks that could provide world-class competition as well as world-class analysis. The first great program to follow and raise the standard was Jellyfish, after which came Snowie, and even a magnificent open-source project: GNU Backgammon, which to this day is the second strongest backgammon software available. It too can be found at its source site. For documentation, refer to my online manual, “All About GNU”.

Android Leftovers

Linux on the mainframe: Then and now

Last week, I introduced you to the origins of the mainframe's origins from a community perspective. Let's continue our journey, picking up at the end of 1999, which is when IBM got onboard with Linux on the mainframe (IBM Z). These patches weren't part of the mainline Linux kernel yet, but they did get Linux running on z/VM (Virtual Machine for IBM Z), for anyone who was interested. Several efforts followed, including the first Linux distro—put together out of Marist College in Poughkeepsie, N.Y., and Think Blue Linux by Millenux in Germany. The first real commercial distribution came from SUSE on October 31, 2000; this is notable in SUSE history because the first edition of what is now known as SUSE Enterprise Linux (SLES) is that S/390 port. Drawing again from Wikipedia, the SUSE Enterprise Linux page explains: Read more