Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 12 hours 31 min ago

SuSE: 2017:1669-1: important: MozillaFirefox, MozillaFirefox-branding-SLE

Monday 26th of June 2017 06:18:00 AM
LinuxSecurity.com: An update that fixes 50 vulnerabilities is now available. An update that fixes 50 vulnerabilities is now available. An update that fixes 50 vulnerabilities is now available.

Fedora 25: wireshark Security Update

Sunday 25th of June 2017 05:34:00 PM
LinuxSecurity.com: Rebase to the newest upstream release. This release contains only bug fixes, most notably fixes for many CVEs. There are no new features.

Debian: DSA-3898-1: expat security update

Sunday 25th of June 2017 09:40:00 AM
LinuxSecurity.com: Multiple vulnerabilities have been discovered in Expat, an XML parsing C library. The Common Vulnerabilities and Exposures project identifies the following problems:

Fedora 24: glibc Security Update

Saturday 24th of June 2017 04:59:00 PM
LinuxSecurity.com: This update addresses CVE-2017-1000366, a vulnerability in the dynamic linker allowing local privilege escalation.

Debian: DSA-3897-1: drupal7 security update

Saturday 24th of June 2017 01:39:00 AM
LinuxSecurity.com: Two vulnerabilities were discovered in Drupal, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following issues:

Fedora 26: libsndfile Security Update

Friday 23rd of June 2017 11:22:00 PM
LinuxSecurity.com: fix CVE-2017-6892

Fedora 26: openvpn Security Update

Friday 23rd of June 2017 11:21:00 PM
LinuxSecurity.com: Updates to the latest upstream OpenVPN 2.4.3, containing security updates for CVE-2017-7508, CVE-2017-7520 and CVE-2017-7521. This update also re-enables automatic restart of OpenVPN on the next updates. For this update, the restart needs to be done manually.

Fedora 26: kernel Security Update

Friday 23rd of June 2017 11:21:00 PM
LinuxSecurity.com: The 4.11.6 update contains a number of important fixes across the tree, including the recently announced "stack clash"

Fedora 25: openvpn Security Update

Friday 23rd of June 2017 05:03:00 PM
LinuxSecurity.com: Updates to the latest upstream OpenVPN 2.4.3, containing security updates for CVE-2017-7508, CVE-2017-7520 and CVE-2017-7521. This update also re-enables automatic restart of OpenVPN on the next updates. For this update, the restart needs to be done manually.

Fedora 25: kernel Security Update

Friday 23rd of June 2017 05:03:00 PM
LinuxSecurity.com: The 4.11.6 update contains a number of important fixes across the tree, including the recently announced "stack clash"

SuSE: 2017:1660-1: important: tomcat

Friday 23rd of June 2017 09:17:00 AM
LinuxSecurity.com: An update that fixes 12 vulnerabilities is now available. An update that fixes 12 vulnerabilities is now available. An update that fixes 12 vulnerabilities is now available.

Fedora 25: glibc Security Update

Thursday 22nd of June 2017 10:14:00 PM
LinuxSecurity.com: This update addresses CVE-2017-1000366, a vulnerability in the dynamic linker allowing local privilege escalation.

Fedora 25: thunderbird Security Update

Thursday 22nd of June 2017 10:14:00 PM
LinuxSecurity.com: For changes see https://www.mozilla.org/en-US/thunderbird/52.2.0/releasenotes/

Debian: DSA-3896-1: apache2 security update

Thursday 22nd of June 2017 03:49:00 PM
LinuxSecurity.com: Several vulnerabilities have been found in the Apache HTTPD server. CVE-2017-3167

Gentoo: GLSA-201706-26: Vim, gVim: Remote execution of arbitrary code

Thursday 22nd of June 2017 03:27:00 PM
LinuxSecurity.com: Multiple vulnerabilities have been found in Vim and gVim, the worst of which might allow remote attackers to execute arbitrary code.

Gentoo: GLSA-201706-25: Graphite: User-assisted execution of arbitrary code

Thursday 22nd of June 2017 03:17:00 PM
LinuxSecurity.com: An out-of-bounds write in Graphite might allow remote attackers to execute arbitrary code.

Gentoo: GLSA-201706-24: jbig2dec: Multiple vulnerabilities

Thursday 22nd of June 2017 02:43:00 PM
LinuxSecurity.com: Multiple vulnerabilities have been found in jbig2dec, the worst of which might allow remote attackers to execute arbitrary code.

Ubuntu 3339-1: OpenVPN vulnerabilities

Thursday 22nd of June 2017 02:17:00 PM
LinuxSecurity.com: Several security issues were fixed in OpenVPN.

Gentoo: GLSA-201706-23: Urban Terror: Multiple vulnerabilities

Thursday 22nd of June 2017 02:07:00 PM
LinuxSecurity.com: Multiple vulnerabilities have been found in Urban Terror, the worst of which allows for the remote execution of arbitrary code.

Debian: DSA-3895-1: flatpak security update

Thursday 22nd of June 2017 01:58:00 PM
LinuxSecurity.com: It was discovered that Flatpak, an application deployment framework for desktop apps insufficiently restricted file permissinons in third-party repositories, which could result in privilege escalation.

More in Tux Machines

Red Hat News

today's howtos

Tablets, Chromebooks, and GNU/Linux Laptops

  • Diskio Pi Wants to Be the Ultimate Open Source Tablet Powered by Raspberry Pi
    A new open source project hit Kickstarter a few days ago, and it caught our attention because it appears to be a versatile machine that's fully compatible with Raspberry Pi and Odroid single-board computers. Created by Guillaume Debray, an optician with 10+ years experience in making and selling glasses, yet a passionate computer engineer with deep knowledge of programming and hardware assembly and manufacturing processes, the Diskio Pi project wants to be the ultimate open source tablet powered by Raspberry Pi. Diskio Pi is the result of 18 months of development, and, in fact, it seems to be some sort of versatile device built on top of a single-board computer. It's currently compatible with Raspberry Pi 2, Raspberry Pi 3, Raspberry Pi Zero, Odroid C1, and Odroid C2 SBCs, and can run Ubuntu, Debian, Raspbian Pixel, or Android.
  • The new Entroware Hybris could make a reasonable Linux gaming laptop
    Entroware, the UK-based Linux hardware vendor have released two newer laptops and one of them could be a reasonable gaming unit.
  • Chrome OS' Upcoming Night Light Feature Gets "Sunset to Sunrise" Automatic Mode
    The fantastic Chrome OS team over at Google is on a rampage, and after teasing us with the revamped sign-in/lock screens and new power management settings, today François Beaufort revealed yet another cool feature for our Chromebooks. This time, the developer announced on his Google+ page that the Chrome OS team is working on implementing an automatic "Sunset to Sunrise" mode for the upcoming Night Light feature, which should improve our sleep after using a Chromebook at night and ensures reduced strain on the eyes by limiting the amount of blue light emitted by the display.
  • CrossOver for Android Lets You Run Windows Apps on Intel-Based Chromebooks
    CodeWeavers‏, the commercial company behind the well-known CrossOver for Linux and Mac application that lets users install and run Windows apps and games is still working to release an Android version. Dubbed CrossOver Android, the project has been in development for the past year, and while it's still in an Alpha state, it looks like it is already capable of running Windows software on Intel-based Chromebooks and Android tablets. Since then, the project kept updating CrossOver for Android with new features.
  • Quick Reminder For The 2017 Linux Laptop Survey

Open Source Adreno Project “Freedreno” Receives New Update

Users of Freedreno, the open-source graphics driver support for Adreno on Linux distributions, will be pleased to know that a new update has been released in the past week. Lead developer Rob Clark discussed many of the details in his blog, which highlight above all the support for Adreno 500 series GPUs. Among the highlights include compute shaders for OpenGL and OpenGL ES, improved performance and improved Linux distribution support. Read more