Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 3 hours 15 min ago

Fedora 23 bind-9.10.3-10.P3.fc23

Saturday 23rd of January 2016 10:37:00 PM
LinuxSecurity.com: Update to the latest upstream version due to security fixes

Fedora 23 bind99-9.9.8-2.P3.fc23

Saturday 23rd of January 2016 10:37:00 PM
LinuxSecurity.com: Update to the latest upstream version due to security fix

Fedora 23 java-1.8.0-openjdk-1.8.0.71-1.b15.fc23

Saturday 23rd of January 2016 10:37:00 PM
LinuxSecurity.com: security update to CPU 19.1.2016 to u71b15

Fedora 23 chrony-2.1.1-2.fc23

Saturday 23rd of January 2016 10:36:00 PM
LinuxSecurity.com: Security fix for CVE-2016-1567

Fedora 23 qemu-2.4.1-6.fc23

Saturday 23rd of January 2016 10:36:00 PM
LinuxSecurity.com: * CVE-2015-8745: vmxnet3: don't assert reading registers in bar0 (bz #1295442) *CVE-2015-8567: net: vmxnet3: host memory leakage (bz #1289818) * CVE-2016-1922:i386: avoid null pointer dereference (bz #1292766) * CVE-2015-8613: bufferoverflow in megasas_ctrl_get_info (bz #1284008) * CVE-2015-8701: Buffer overflowin tx_consume in rocker.c (bz #1293720) * CVE-2015-8743: ne2000: OOB memoryaccess in ioport r/w functions (bz #1294787) * CVE-2016-1568: Use-after-freevulnerability in ahci (bz #1297023) * Fix modules.d/kvm.conf example syntax (bz#1298823)

Fedora 22 owncloud-8.0.10-1.fc22

Saturday 23rd of January 2016 10:22:00 PM
LinuxSecurity.com: This update provides the new upstream patch release of ownCloud (7.0.12 for EPEL6, 8.0.10 for all other distributions). It also adds a 'well-known' redirect forWebDAV (alongside the existing ones for CalDAV and CardDAV) - if you don't knowwhat this is, don't worry. These are bugfix updates which include fixes for somesecurity vulnerabilities rated 'low' and 'medium' by upstream. For full detailson the changes, see the [upstream changelog](https://www.owncloud.org/changelog)and the security advisories: [OC-SA-2016-001](https://owncloud.org/security/advisory/?id=oc-sa-2016-001), [OC-SA-2016-002](https://owncloud.org/security/advisory/?id=oc-sa-2016-002), [OC-SA-2016-003](https://owncloud.org/security/advisory/?id=oc-sa-2016-003), [OC-SA-2016-004](https://owncloud.org/security/advisory/?id=oc-sa-2016-004).

Fedora 22 python-rsa-3.3-2.fc22

Saturday 23rd of January 2016 10:21:00 PM
LinuxSecurity.com: Fix for CVE-2016-1494

Debian: 3452-1: claws-mail: Summary

Saturday 23rd of January 2016 01:33:00 AM
LinuxSecurity.com: Security Report Summary

Fedora 22 libsndfile-1.0.25-18.fc22

Thursday 21st of January 2016 10:22:00 PM
LinuxSecurity.com: fix CVE-2015-7805 libsndfile: Heap overflow vulnerability when parsing speciallycrafted AIFF header

Fedora 22 rsync-3.1.1-7.fc22

Thursday 21st of January 2016 10:22:00 PM
LinuxSecurity.com: Security fix for rsync - Transferring file outside destination path via just-sent symlink

Fedora 23 python-rsa-3.3-2.fc23

Thursday 21st of January 2016 09:26:00 PM
LinuxSecurity.com: Fix for CVE-2016-1494

Debian: 3451-1: fuse: Summary

Thursday 21st of January 2016 03:34:00 PM
LinuxSecurity.com: Security Report Summary

Ubuntu: 2879-1: rsync vulnerability

Thursday 21st of January 2016 01:53:00 PM
LinuxSecurity.com: rsync could be made to write files outside of the expected directory.

Ubuntu: 2878-1: Perl vulnerability

Thursday 21st of January 2016 01:53:00 PM
LinuxSecurity.com: Perl incorrectly handled the taint attribute.

Red Hat: 2016:0056-01: java-1.7.0-oracle: Critical Advisory

Thursday 21st of January 2016 08:24:00 AM
LinuxSecurity.com: Updated java-1.7.0-oracle packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security [More...]

Red Hat: 2016:0055-01: java-1.8.0-oracle: Critical Advisory

Thursday 21st of January 2016 08:16:00 AM
LinuxSecurity.com: Updated java-1.8.0-oracle packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Critical security [More...]

Red Hat: 2016:0057-01: java-1.6.0-sun: Important Advisory

Thursday 21st of January 2016 08:15:00 AM
LinuxSecurity.com: Updated java-1.6.0-sun packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security [More...]

Red Hat: 2016:0054-01: java-1.7.0-openjdk: Important Advisory

Thursday 21st of January 2016 08:14:00 AM
LinuxSecurity.com: Updated java-1.7.0-openjdk packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5 and 7. Red Hat Product Security has rated this update as having Important security [More...]

Red Hat: 2016:0053-01: java-1.7.0-openjdk: Critical Advisory

Thursday 21st of January 2016 08:08:00 AM
LinuxSecurity.com: Updated java-1.7.0-openjdk packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Critical security [More...]

Fedora 22 prosody-0.9.9-2.fc22

Wednesday 20th of January 2016 11:54:00 PM
LinuxSecurity.com: Prosody 0.9.9 ============= A summary of changes: Security fixes-------------- * Fix path traversal vulnerability in mod_http_files(CVE-2016-1231) * Fix use of weak PRNG in generation of dialback secrets(CVE-2016-1232) Bugs ---- * Improve handling of CNAME records in DNS * Fixtraceback when deleting a user in some configurations (issue #496) * MUC:restrict_room_creation could prevent users from joining rooms (issue #458) *MUC: fix occasional dropping of iq stanzas sent privately between occupants *Fix a potential memory leak in mod_pep Additions --------- * Add http:list()command to telnet to view active HTTP services * Simplify IPv4/v6 addressselection code for outgoing s2s * Add support for importing SCRAM hashes fromejabberd

More in Tux Machines

Here's a Sneak Peek at What's Coming in the Solus 1.1 Linux Operating System

Solus' Josh Strobl today announced the 20th installation of the project's weekly newsletter, entitled "This Week in Solus," informing users about the work done in preparation for the upcoming Solus 1.1 release. Read more

Why I fought for open source in the Air Force

I wanted an open source solution and faced a fair amount of resistance from our lawyers, management, users, and proprietary vendors. It was a difficult struggle at times, and it wasn't until the DoD published their first official guidance on the use of open source software that we started to gain traction. Finally, in the middle of all of the drama, the DoD leadership issued a policy update explicitly stating that open source software was acceptable as long as there was support for it, and that the support could come in the form of government programmers, if necessary. This memo was a game changer, but it took more than just a policy update to get momentum to shift toward open source. Read more

Android-x86 4.4-r5 Might Be the Last Release in the Android 4.4 "KitKat" Series

We reported two weeks ago that the Android-x86 4.4-r4 might just be the last in the Android 4.4 KitKat-based series of the Linux distribution, but it looks like the developers have decided to make one more maintenance release. Read more

Gorgeous Birdie 2.0 Twitter Client for Linux Is Now Available for Beta Testing

Remember when we told you that the developers of the excellent Birdie Twitter client for GNU/Linux operating system announced that they would start work on the next major release, version 2.0, but only for elementary OS? Read more