Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 5 hours 7 min ago

openSUSE: 2018:1953-1: moderate: libvorbis

Saturday 14th of July 2018 12:07:00 AM
LinuxSecurity.com: An update that fixes one vulnerability is now available.

Debian: DSA-4244-1: thunderbird security update

Friday 13th of July 2018 09:22:00 PM
LinuxSecurity.com: Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code, denial of service or attacks on encrypted emails.

Fedora 28: thunderbird Security Update

Friday 13th of July 2018 05:35:00 PM
LinuxSecurity.com: Update to latest upstream stable version.

Fedora 28: kernel Security Update

Friday 13th of July 2018 05:35:00 PM
LinuxSecurity.com: The v4.17.5 update contains important fixes across the tree

Fedora 28: xapian-core Security Update

Friday 13th of July 2018 05:34:00 PM
LinuxSecurity.com: Update to 1.4.6, Security fix for CVE-2018-0499, fix for notmuch (Email indexer)

Fedora 28: glpi Security Update

Friday 13th of July 2018 05:34:00 PM
LinuxSecurity.com: add upstream patch to fix SQL injection

CentOS: CESA-2018-2164: Important CentOS 6 kernel

Friday 13th of July 2018 04:57:00 PM
LinuxSecurity.com: Upstream details at : https://access.redhat.com/errata/RHSA-2018:2164

CentOS: CESA-2018-2162: Important CentOS 6 qemu-kvm

Friday 13th of July 2018 04:56:00 PM
LinuxSecurity.com: Upstream details at : https://access.redhat.com/errata/RHSA-2018:2162

CentOS: CESA-2018-2180: Important CentOS 6 gnupg2

Friday 13th of July 2018 04:56:00 PM
LinuxSecurity.com: Upstream details at : https://access.redhat.com/errata/RHSA-2018:2180

CentOS: CESA-2018-2123: Moderate CentOS 7 python

Friday 13th of July 2018 04:28:00 PM
LinuxSecurity.com: Upstream details at : https://access.redhat.com/errata/RHSA-2018:2123

Debian LTS: DLA-1420-1: cinnamon security update

Friday 13th of July 2018 09:51:00 AM
LinuxSecurity.com: It was discovered that there was a symlink attack in the Cinnamon desktop environment. An attacker could overwrite an arbitrary file on the filesystem via

SciLinux: Important: gnupg2 on SL6.x i386/x86_64

Thursday 12th of July 2018 05:06:00 PM
LinuxSecurity.com: gnupg2: Improper sanitization of filenames allows for the display of fake status messages and the bypass of signature verification (CVE-2018-12020) SL6 x86_64 gnupg2-2.0.14-9.el6_10.x86_64.rpm gnupg2-debuginfo-2.0.14-9.el6_10.x86_64.rpm gnupg2-smime-2.0.14-9.el6_10.x86_64.rpm i386 gnupg2-2.0.14-9.el6_10.i686.rpm gnupg2-debuginfo-2.0.14-9.el6_10.i686.rpm gnupg2-smim [More...]

RedHat: RHSA-2018-2186:01 Moderate: Red Hat JBoss Core Services Apache HTTP

Thursday 12th of July 2018 04:16:00 PM
LinuxSecurity.com: Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this release as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2018-2185:01 Moderate: Red Hat JBoss Core Services Apache HTTP

Thursday 12th of July 2018 04:16:00 PM
LinuxSecurity.com: Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this release as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2018-2187:01 Moderate: Red Hat JBoss Core Services Apache HTTP

Thursday 12th of July 2018 04:05:00 PM
LinuxSecurity.com: Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available. Red Hat Product Security has rated this release as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score,

Fedora 28: firefox Security Update

Thursday 12th of July 2018 02:22:00 PM
LinuxSecurity.com: - New upstream version (61.0.1)

Fedora 28: docker Security Update

Thursday 12th of July 2018 02:21:00 PM
LinuxSecurity.com: Resolves: #1598581, #1598583 - CVE-2018-10892

Fedora 28: knot-resolver Security Update

Thursday 12th of July 2018 02:21:00 PM
LinuxSecurity.com: Knot Resolver 2.4.0 (2018-07-03) changes -------------------- - minimal libknot version is now 2.6.7 to pull in latest fixes (#366) Security -------- - fix a rare case of zones incorrectly dowgraded to insecure status (!576) New features ------------ - TLS session resumption (RFC 5077), both server and client (!585, #105) (disabled when

Fedora 28: jetty Security Update

Thursday 12th of July 2018 02:21:00 PM
LinuxSecurity.com: Update to upstream version 9.4.11. Fixes CVE-2017-7656, CVE-2017-7657, CVE-2017-7658.

Fedora 27: jetty Security Update

Thursday 12th of July 2018 01:47:00 PM
LinuxSecurity.com: Update to upstream version 9.4.11. Fixes CVE-2017-7656, CVE-2017-7657, CVE-2017-7658, CVE-2018-12538.

More in Tux Machines

today's howtos

Red Hat News

Debian: Google Summer of Code, Debian 9.5, and Tails

  • Google Summer of Code with a Debian Project
    Yes! My project proposal was selected. First of all I want to mention that I began my open source adventure with Debian. I started to participate in the open source events like Hackathons, BSP and Conferences and doing small contribution to different projects and this is how everything started.
  • Debian 9.5 Released: “Rock Solid” GNU/Linux Distro Arrives With Spectre v2 Fix
    Following the fourth point release of Debian 9 “stretch” in March, the developers of the popular GNU/Linux distro have shipped the latest update to its stable distribution. For those who don’t know, Debian 9 is an LTS version that’ll remain supported for 5 years. As one would expect, this point release doesn’t bring any set of new features and keeps focusing on improving an already stable experience by delivering security patches and bug fixes. In case you’re looking for an option that brings new features, you can check out the recently released Linux Mint 19.
  • Your Help Is Needed to Test VeraCrypt Support in the Tails Anonymous OS, GNOME
    The team behind the famous Tails operating system, also known as the Amnesic Incognito Live System or simply Anonymous OS, needs your help to test the integration of the VeraCrypt disk encryption software. In an attempt to provide Tails users with better security, the team is working hard these days on the integration of the VeraCrypt open-source and free disk encryption utility used for on-the-fly encryption of encrypted disk drives into the next-generation Tails OS as well as the GNOME desktop environment it uses by default. This will let Tails users easily unlock encrypted volumes on-the-fly when using the anonymous live system to stay hidden online while protecting their identity and privacy. To makes things even easier, they created the VeraCrypt Mounter utility for unlocking VeraCrypt encrypted drives.

Programming: Perl, RcppClassic, Git-cinnabar, Effective Python

  • Confessions of a recovering Perl hacker
    My name's MikeCamel, and I'm a Perl hacker. There, I've said it. That's the first step. My handle on IRC, Twitter and pretty much everywhere else in the world is "MikeCamel." This is because, back in the day, when there were no chat apps—no apps at all, in fact—I was in a technical "chatroom" and the name "Mike" had been taken. I looked around, and the first thing I noticed on my desk was the Camel Book, the O'Reilly Perl Bible. I have the second edition now, but this was the first edition. Yesterday, I happened to pick up the second edition, the really thick one, to show someone on a video conference call, and it had a thin layer of dust on it. I was a little bit ashamed, but a little bit relieved as well.
  • RcppClassic 0.9.11
    A new maintenance release, now at version 0.9.11, of the RcppClassic package arrived earlier today on CRAN. This package provides a maintained version of the otherwise deprecated initial Rcpp API which no new projects should use as the normal Rcpp API is so much better.
  • Mike Hommey: Announcing git-cinnabar 0.5.0 beta 4
    Git-cinnabar is a git remote helper to interact with mercurial repositories. It allows to clone, pull and push from/to mercurial remote repositories, using git.
  • Russ Allbery: Review: Effective Python