Language Selection

English French German Italian Portuguese Spanish

Other Security Advisories

Filed under
Security

Less critical

Description:
Gentoo has issued an update for phpmyadmin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attack.

Solution:
Update to "dev-db/phpmyadmin-2.6.2_rc1" or later.

Link

Hightly Critical

Description:
SUSE has issued an update for kdelibs3. This fixes some vulnerabilities, which can be exploited to cause a DoS (Denial of Service), spoof the URL displayed in an address bar and status bar, or potentially compromise a vulnerable system.

Solution:
Apply updated packages.

Link

Moderately critical

Description:
Andreas Constantinides has reported a vulnerability in the zOOm Media Gallery module for Mambo, which can be exploited by malicious people to conduct SQL injection attacks.

Input passed to the "catid" parameter in "index.php" isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

The vulnerability has been reported in version 2.1.2. Other versions may also be affected.

Solution:
Edit the source code to ensure that input is properly sanitised.

Link

More in Tux Machines

LXQt Spin Proposed For Fedora 26

A new spin/flavor has been proposed for Fedora 26, one integrating the LXQt desktop environment. For those late to the party, LXQt is the formation of the LXDE and Razor-qt projects and built around the Qt5 tool-kit. Fedora currently has an LXDE spin while this proposed Fedora LXQt would continue to co-exist alongside the existing LXDE version. Christian Dersch who proposed the LXQt spin explained, "LXDE spin will exist until its maintainer will stop it, LXQt is independent from LXDE spin. So nobody is forced to change ;) Also both projects are maintained upstream so there is no reason to drop anything here." Read more Also: F26 Self Contained Change: LXQt Spin

Linux Graphics

Raspberry Pi 1 and Zero: Hands on with Manjaro ARM and PiCore Linux

In the previous two posts I wrote about SUSE Linux and Fedora/Manjaro ARM/Ubuntu MATE for the Raspberry Pi 2 and 3. The results were mixed, at best. This time I'm taking on even more of a challenge because I'm going to be looking at the original Raspberry Pi Model B and B+, and the Raspberry Pi Zero. These models all have much more limited CPU power and memory than the Pi 2 and 3, so it will be interesting to see what can be done with them. Read more

Games for GNU/Linux