Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 4 hours 43 min ago

RedHat: RHSA-2018-2425:01 Important: Red Hat JBoss Enterprise Application

Wednesday 15th of August 2018 11:21:00 AM
LinuxSecurity.com: A security update is now available for Red Hat JBoss Enterprise Application Platform from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2018-2403:01 Important: redhat-virtualization-host security

Wednesday 15th of August 2018 10:21:00 AM
LinuxSecurity.com: An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact

RedHat: RHSA-2018-2420:01 Important: Red Hat JBoss BRMS 6.4.11 security

Wednesday 15th of August 2018 07:46:00 AM
LinuxSecurity.com: An update is now available for Red Hat JBoss BRMS. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

RedHat: RHSA-2018-2419:01 Important: Red Hat JBoss BPM Suite 6.4.11

Wednesday 15th of August 2018 07:45:00 AM
LinuxSecurity.com: An update is now available for Red Hat JBoss BPM Suite. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

CentOS: CESA-2018-2384: Important CentOS 7 kernel

Wednesday 15th of August 2018 03:59:00 AM
LinuxSecurity.com: Upstream details at : https://access.redhat.com/errata/RHSA-2018:2384

CentOS: CESA-2018-2390: Important CentOS 6 kernel

Wednesday 15th of August 2018 01:59:00 AM
LinuxSecurity.com: Upstream details at : https://access.redhat.com/errata/RHSA-2018:2390

Ubuntu 3742-2: Linux kernel (Trusty HWE) vulnerabilities

Tuesday 14th of August 2018 10:34:00 PM
LinuxSecurity.com: Several security issues were fixed in the Linux kernel.

Ubuntu 3741-2: Linux kernel (Xenial HWE) vulnerabilities

Tuesday 14th of August 2018 10:33:00 PM
LinuxSecurity.com: Several security issues were fixed in the Linux kernel.

Ubuntu 3742-1: Linux kernel vulnerabilities

Tuesday 14th of August 2018 10:33:00 PM
LinuxSecurity.com: Several security issues were fixed in the Linux kernel.

Ubuntu 3741-1: Linux kernel vulnerabilities

Tuesday 14th of August 2018 10:32:00 PM
LinuxSecurity.com: Several security issues were fixed in the Linux kernel.

Ubuntu 3740-2: Linux kernel (HWE) vulnerabilities

Tuesday 14th of August 2018 10:30:00 PM
LinuxSecurity.com: Several security issues were fixed in the Linux kernel.

Ubuntu 3740-1: Linux kernel vulnerabilities

Tuesday 14th of August 2018 10:29:00 PM
LinuxSecurity.com: Several security issues were fixed in the Linux kernel.

Debian: DSA-4272-1: linux security update

Tuesday 14th of August 2018 09:52:00 PM
LinuxSecurity.com: CVE-2018-5391 (FragmentSmack) Juha-Matti Tilli discovered a flaw in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote

Fedora 28: firefox Security Update

Tuesday 14th of August 2018 09:14:00 PM
LinuxSecurity.com: - New upstream update (61.0.2)

Fedora 28: python2-django1.11 Security Update

Tuesday 14th of August 2018 09:13:00 PM
LinuxSecurity.com: Update to 1.11.15 security release (CVE-2018-14574) This fixes an open redirect possibility in CommonMiddleware. Release notes: https://docs.djangoproject.com/en/2.0/releases/1.11.15/

Fedora 28: cgit Security Update

Tuesday 14th of August 2018 09:13:00 PM
LinuxSecurity.com: Fix directory traversal vulnerability References: https://lists.zx2c4.com/pipermail/cgit/2018-August/004176.html https://git.zx2c4.com/cgit/commit/?id=53efaf30b

Fedora 28: php-zendframework-zend-feed Security Update

Tuesday 14th of August 2018 09:13:00 PM
LinuxSecurity.com: ## 2.10.3 - 2018-08-01 ### Added - Nothing. ### Changed - This release modifies how `Zend\Feed\Pubsubhubbub\AbstractCallback::_detectCallbackUrl()` marshals the request URI. In prior releases, we would attempt to inspect the `X-Rewrite-Url` and `X-Original-Url` headers, using their values, if present. These headers are issued by the ISAPI_Rewrite module for IIS (developed by

Ubuntu 0042-1: Linux kernel vulnerability

Tuesday 14th of August 2018 06:46:00 PM
LinuxSecurity.com: On August 14, fixes for CVE-2018-3620 and CVE-2018-3646 were released into theUbuntu Xenial and Bionic kernels. These CVEs are security vulnerabilities caused by flaws in the design of speculative execution hardware in the computer's CPU. Researchers discovered that memory present in the L1 datacache of an Intel CPU core may be visible to other processes running on the [More...]

Debian: DSA-4271-1: samba security update

Tuesday 14th of August 2018 10:16:00 AM
LinuxSecurity.com: Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix. The Common Vulnerabilities and Exposures project identifies the following issues:

openSUSE: 2018:2316-1: moderate: lxc

Monday 13th of August 2018 09:09:00 PM
LinuxSecurity.com: An update that fixes one vulnerability is now available.

More in Tux Machines

A Look At The Windows vs. Linux Scaling Performance Up To 64 Threads With The AMD 2990WX

This past week we looked at the Windows 10 vs. Linux performance for AMD's just-launched Ryzen Threadripper 2990WX and given the interest from that then ran some Windows Server benchmarks to see if the performance of this 64-thread CPU would be more competitive to Linux. From those Windows vs. Linux tests there has been much speculation that the performance disparity is due to Windows scheduler being less optimized for high core/thread count processors and its NUMA awareness being less vetted than the Linux kernel. For getting a better idea, here are benchmarks of Windows Server 2019 preview versus Ubuntu Linux when testing varying thread/core counts for the AMD Threadripper 2990WX. Toggled via the BIOS was SMT as well as various CCX configurations and each step of the way comparing the Windows Server 2019 Build 17733 performance to that of Ubuntu 18.04 LTS with the Linux 4.18 kernel in various multi-threaded benchmarks supported under both operating systems. Read more

Kernel: RISC-V and Virtual Machine

  • RISC-V's Linux Kernel Support Is Getting Into Good Shape, Userspace Starting To Work
    The RISC-V open-source processor ISA support within the mainline kernel is getting into good shape, just a few releases after this new architecture port was originally added to the Linux Git tree. The RISC-V code for Linux 4.19 includes the ISA-mandated timers and first-level interrupt controllers, which are needed to actually get user-space up and running. Besides the RISC-V first-level interrupt controller, Linux 4.19 also adds support for SiFive's platform-level interrupt controller that interfaces with the actual devices.
  • A Hearty Batch Of KVM Updates Land In Linux 4.19
    There is a lot of new feature work for the Kernel-based Virtual Machine (KVM) within the Linux 4.19 kernel.

Kate/KTextEditor Picks Up Many Improvements To Enhance KDE Text Editing

Even with KDE's annual Akademy conference happening this past week in Vienna, KDE development has been going strong especially on the usability front. The Kate text editor and the KTextEditor component within KDE Frameworks 5 have been the largest benefactors of recent improvements. This KDE text editing code now has support for disabling syntax highlighting entirely if preferred. When using syntax highlighting, there have been many KTextEditor enhancements to improve the experience as well as improvements to the highlighting for a variety of languages from JavaScript to YAML to AppArmor files. Read more

KStars v2.9.8 released

KStars 2.9.8 is released for Windows, MacOS, and Linux. It is a hotfix release that contains bug fixes and stability improvements over the last release. Read more Also: KDE Itinerary - How did we get here?