Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 1 hour 22 min ago

Ubuntu: 2326-1: Oxide vulnerabilities

Tuesday 2nd of September 2014 05:57:00 PM
LinuxSecurity.com: Several security issues were fixed in Oxide.

Red Hat: 2014:1119-01: openstack-neutron: Moderate Advisory

Tuesday 2nd of September 2014 03:18:00 PM
LinuxSecurity.com: Updated openstack-neutron packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. [More...]

Red Hat: 2014:1122-01: openstack-keystone: Low Advisory

Tuesday 2nd of September 2014 03:16:00 PM
LinuxSecurity.com: Updated openstack-keystone packages that fix three security issues and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. [More...]

Red Hat: 2014:1118-01: glibc: Important Advisory

Tuesday 2nd of September 2014 03:10:00 PM
LinuxSecurity.com: Updated glibc packages that fix one security issue are now available for Red Hat Enterprise Linux 5.6 Long Life, Red Hat Enterprise Linux 5.9 Extended Update Support, Red Hat Enterprise Linux 6.2 Advanced Update Support, and Red Hat Enterprise Linux 6.4 Extended Update Support. [More...]

Red Hat: 2014:1123-01: devtoolset-2-axis: Moderate Advisory

Tuesday 2nd of September 2014 03:10:00 PM
LinuxSecurity.com: An updated devtoolset-2-axis package that fixes one security issue is now available for Red Hat Developer Toolset 2. Red Hat Product Security has rated this update as having Moderate security [More...]

Red Hat: 2014:1121-01: openstack-keystone: Low Advisory

Tuesday 2nd of September 2014 03:05:00 PM
LinuxSecurity.com: Updated openstack-keystone packages that fix three security issues and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. [More...]

Red Hat: 2014:1120-01: openstack-neutron: Moderate Advisory

Tuesday 2nd of September 2014 03:02:00 PM
LinuxSecurity.com: Updated openstack-neutron packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. [More...]

Ubuntu: 2329-1: Firefox vulnerabilities

Tuesday 2nd of September 2014 02:53:00 PM
LinuxSecurity.com: Firefox could be made to crash or run programs as your login if itopened a malicious website.

Ubuntu: 2334-1: Linux kernel vulnerabilities

Tuesday 2nd of September 2014 02:08:00 PM
LinuxSecurity.com: Several security issues were fixed in the kernel.

Mandriva: 2014:165: krb5

Tuesday 2nd of September 2014 08:51:00 AM
LinuxSecurity.com: Updated krb5 package fixes security vulnerabilities: MIT Kerberos 5 allows attackers to cause a denial of service via a buffer over-read or NULL pointer dereference, by injecting invalid tokens into a GSSAPI application session (CVE-2014-4341, [More...]

Mandriva: 2014:164: phpmyadmin

Tuesday 2nd of September 2014 08:46:00 AM
LinuxSecurity.com: Updated phpmyadmin package fixes security vulnerabilities: In phpMyAdmin before 4.1.14.3, multiple XSS vulnerabilities exist in browse table, ENUM editor, monitor, query charts and table relations pages (CVE-2014-5273). [More...]

Mandriva: 2014:163: python-imaging

Tuesday 2nd of September 2014 08:42:00 AM
LinuxSecurity.com: Updated python-imaging packages fix security vulnerability: The Python Imaging Library is vulnerable to a denial of service attack in the IcnsImagePlugin (CVE-2014-3589). [More...] _______________________________________________________________________

Mandriva: 2014:162: catfish

Tuesday 2nd of September 2014 08:15:00 AM
LinuxSecurity.com: Updated catfish package fixes security vulnerability: Untrusted search path vulnerability in Catfish allows local users to gain privileges via a Trojan horse catfish.py in the current working directory (CVE-2014-2093). [More...]

Mandriva: 2014:161: subversion

Tuesday 2nd of September 2014 08:04:00 AM
LinuxSecurity.com: Updated subversion packages fix security vulnerability: Bert Huijben discovered that Subversion did not properly handle cached credentials. A malicious server could possibly use this issue to obtain credentials cached for a different server (CVE-2014-3528). [More...]

Mandriva: 2014:160: gpgme

Tuesday 2nd of September 2014 07:52:00 AM
LinuxSecurity.com: Updated gpgme packages fix security vulnerability: A heap-based buffer overflow in gpgme before 1.5.1 could allow a specially crafted certificate to cause crashes or potentially cause arbitrary code execution (CVE-2014-3564). [More...]

Gentoo: 201409-02 Net-SNMP: Denial of Service

Monday 1st of September 2014 05:49:00 PM
LinuxSecurity.com: Multiple vulnerabilities have been found in Net-SNMP which could allow remote attackers to cause Denial of Service.

Debian: 3016-1: lua5.2: Summary

Monday 1st of September 2014 03:10:00 PM
LinuxSecurity.com: Security Report Summary

Debian: 3015-1: lua5.1: Summary

Monday 1st of September 2014 03:03:00 PM
LinuxSecurity.com: Security Report Summary

Gentoo: 201409-01 Wireshark: Multiple vulnerabilities

Monday 1st of September 2014 12:08:00 PM
LinuxSecurity.com: Multiple vulnerabilities have been found in Wireshark which could allow remote attackers to cause Denial of Service.

Debian: 2987-2: openjdk-7: Summary

Sunday 31st of August 2014 05:09:00 PM
LinuxSecurity.com: Security Report Summary

More in Tux Machines

today's howtos

Leftovers: Gaming

Fedora 21 Alpha to release on Tuesday

Today the Fedora Engineering Steering Commitee held a “Go/No Go” meeting regarding the Fedora 21 alpha, and it was agreed that the current release candidates for Fedora 21 met the release criteria. With this decision, this means that Fedora 21 will be released on Tuesday September 23, 2014. Read more

Teaching open source changed my life

Teaching open source has been a breath of fresh air for myself and for many of our students because with the open source way, there are no official tests. There is no official certification for the majority of open source projects. And, there are no prescribed textbooks. In open source, no employer worth working for will ask for official proof of your abilities. A good employer will look at what you’ve done and ask you to showcase what you can do. Yes, it still helps to have a Computer Science degree, but the lack of one is often no drawback. Read more