Language Selection

English French German Italian Portuguese Spanish

Red Hat Risk Reflex (The Linux Security Flaw That Isn't)

Filed under
Red Hat
Security

News headlines screaming that yet another Microsoft Windows vulnerability has been discovered, is in the wild or has just been patched are two a penny. Such has it ever been. News headlines declaring that a 'major security problem' has been found with Linux are a different kettle of fish. So when reports of an attack that could circumvent verification of X.509 security certificates, and by so doing bypass both secure sockets layer (SSL) and Transport Layer Security (TLS) website protection, people sat up and took notice. Warnings have appeared that recount how the vulnerability can impact upon Debian, Red Hat and Ubuntu distributions. Red Hat itself issued an advisory warning that "GnuTLS did not correctly handle certain errors that could occur during the verification of an X.509 certificate, causing it to incorrectly report a successful verification... An attacker could use this flaw to create a specially crafted certificate that could be accepted by GnuTLS as valid." In all, at least 200 operating systems actually use GnuTLS when it comes to implementing SSL and TLS and the knock-on effect could mean that web applications and email alike are vulnerable to attack. And it's all Linux's fault. Or is it?

Read more ►

More in Tux Machines

How to Get Over Your Fear of Failing at Linux

We’ve written plenty of articles about helping you switch over to Linux from your current operating system. However, even with all of those materials at hand, it’s sometimes still difficult to take the leap of faith and actually try it out. So, this article will be all about questions you might have about switching, and what you can do to ease yourself into the world of Linux. If you read it from start to finish, you’ll have plenty of answers and tips to succeed at Linux. Read more

Don't Fear the Penguin

It was a slow news day today for Linux but a few tidbits stood out. First up is Danny Stieben with his article persuading prospects how easy Linux really is. Read more

Alpine Linux 3.1.2 released

The Alpine Linux project is pleased to announce the immediate availability of version 3.1.2 of its Alpine Linux operating system. This is a bugfix release of the v3.1 musl based branch. This release is based on the 3.14.30 kernel which has some critical security fixes. Read more

Canonical Has Revealed The Hardware Specs Of Bq Aquarius E4.5

Recently, Canonical has revealed the hardware specifications of Bq Aquarius E4.5 running Ubuntu Touch. It comes with a 4.5-inch screen with a 960×540 resolution, 13 MPX camera, a Quad Core ARM Cortex running at 1.3 GHz, 1 GB of RAM memory, 8 GB internal memory and Mali 400 graphics. Read more