Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 7 hours 41 min ago

Mandriva: 2015:048: postgresql

Thursday 12th of February 2015 07:15:00 AM
LinuxSecurity.com: Multiple vulnerabilities has been discovered and corrected in postgresql: Stephen Frost discovered that PostgreSQL incorrectly displayed certain values in error messages. An authenticated user could gain [More...]

Mandriva: 2015:047: elfutils

Thursday 12th of February 2015 07:06:00 AM
LinuxSecurity.com: Updated elfutils packages fix security vulnerability: Directory traversal vulnerability in the read_long_names function in libelf/elf_begin.c in elfutils allows remote attackers to write to arbitrary files to the root directory via a / (slash) in a crafted [More...]

Mandriva: 2015:046: ntp

Thursday 12th of February 2015 03:52:00 AM
LinuxSecurity.com: Updated ntp packages fix security vulnerabilities: Stephen Roettger of the Google Security Team, Sebastian Krahmer of the SUSE Security Team and Harlan Stenn of Network Time Foundation discovered that the length value in extension fields is not properly [More...]

Mandriva: 2015:045: e2fsprogs

Thursday 12th of February 2015 03:51:00 AM
LinuxSecurity.com: Updated e2fsprogs packages fix security vulnerability: The libext2fs library, part of e2fsprogs and utilized by its utilities, is affected by a boundary check error on block group descriptor information, leading to a heap based buffer overflow. A specially [More...]

Mandriva: 2015:044: perl-Gtk2

Thursday 12th of February 2015 03:45:00 AM
LinuxSecurity.com: A vulnerability has been discovered and corrected in perl-Gtk2: Incorrect memory management in Gtk2::Gdk::Display::list_devices in perl-Gtk2 before 1.2495, where, the code was freeing memory that gtk+ still holds onto and might access later. [More...]

Debian: 3161-1: dbus: Summary

Wednesday 11th of February 2015 03:39:00 PM
LinuxSecurity.com: Security Report Summary

Ubuntu: 2499-1: PostgreSQL vulnerabilities

Wednesday 11th of February 2015 01:33:00 PM
LinuxSecurity.com: Several security issues were fixed in PostgreSQL.

Debian: 3160-1: xorg-server: Summary

Wednesday 11th of February 2015 12:23:00 PM
LinuxSecurity.com: Security Report Summary

Red Hat: 2015:0166-01: subversion: Moderate Advisory

Tuesday 10th of February 2015 08:52:00 PM
LinuxSecurity.com: Updated subversion packages that fix three security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security [More...]

Red Hat: 2015:0164-01: kernel: Moderate Advisory

Tuesday 10th of February 2015 08:52:00 PM
LinuxSecurity.com: Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security [More...]

Ubuntu: 2498-1: Kerberos vulnerabilities

Tuesday 10th of February 2015 08:30:00 PM
LinuxSecurity.com: Several security issues were fixed in Kerberos.

Red Hat: 2015:0165-01: subversion: Moderate Advisory

Tuesday 10th of February 2015 08:10:00 PM
LinuxSecurity.com: Updated subversion packages that fix two security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security [More...]

Red Hat: 2015:0163-01: chromium-browser: Important Advisory

Tuesday 10th of February 2015 08:10:00 PM
LinuxSecurity.com: Updated chromium-browser packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having Important security [More...]

Ubuntu: 2495-1: Oxide vulnerabilities

Tuesday 10th of February 2015 01:07:00 PM
LinuxSecurity.com: Several security issues were fixed in Oxide.

Debian: 3159-1: ruby1.8: Summary

Tuesday 10th of February 2015 12:50:00 PM
LinuxSecurity.com: Security Report Summary

Mandriva: 2015:043: otrs

Tuesday 10th of February 2015 10:27:00 AM
LinuxSecurity.com: Updated otrs package fixes security vulnerability: An attacker with valid OTRS credentials could access and manipulate ticket data of other users via the GenericInterface, if a ticket webservice is configured and not additionally secured (CVE-2014-9324). [More...]

Mandriva: 2015:042: clamav

Tuesday 10th of February 2015 10:10:00 AM
LinuxSecurity.com: Updated clamav packages fix security vulnerabilities: ClamAV 0.98.6 is a maintenance release to fix some bugs, some of them being security bugs: [More...]

Mandriva: 2015:041: cabextract

Tuesday 10th of February 2015 10:09:00 AM
LinuxSecurity.com: Updated cabextract packages fix security vulnerability: Libmspack, a library to provide compression and decompression of some file formats used by Microsoft, is embedded in cabextract. A specially crafted cab file can cause cabextract to hang forever. If [More...]

Mandriva: 2015:040: zarafa

Tuesday 10th of February 2015 10:04:00 AM
LinuxSecurity.com: Updated zarafa packages fix security vulnerability: Robert Scheck discovered a flaw in Zarafa WebAccess >= 7.0.0 and Zarafa WebApp that could allow a remote unauthenticated attacker to exhaust the disk space of /tmp (CVE-2014-9465). [More...]

Mandriva: 2015:039: glibc

Tuesday 10th of February 2015 04:04:00 AM
LinuxSecurity.com: A vulnerability has been discovered and corrected in glibc: Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors [More...]

More in Tux Machines

Developing Linux Is Essential To Intel's Success

The dominant position of Intel in the server processor market is likely helped by the company's consistent strong support for Linux. Based on the W3Techs chart below, Linux is almost as popular as Windows-based servers are. Read more

Firefox OS heading for Africa — and the U.S. too

Orange announced a $40 “Klif” Firefox OS phone for Africa, and Mozilla says it’s working with Verizon Wireless and others on Firefox OS feature phones. There’s still no evidence that Mozilla’s HTML-focused Firefox OS has made much of a dent in the world smartphone market, where it has been focused on low-end devices sold primarily to emerging markets. Yet, Firefox OS still leads the way among upstart, Linux-based mobile operating systems, and will soon be available in more than 40 markets, this year, on a total of 17 smartphones, according to its latest stats. Meanwhile, the very first Tizen (Samsung Z1) and Ubuntu (BQ Aquaris E4.5) phones have only just shipped, and Jolla’s Sailfish OS based Jolla phones are still mostly limited to Europe. Read more

Why large companies use open source ERP

The main reason larger companies use open source Enterprise Resource Planning (ERP) systems is because they are cheaper and easier to customize. Read more