Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content
The central voice for Linux and Open Source security news.
Updated: 8 hours 48 min ago

Fedora 25 smack-4.1.5-3.fc25

Thursday 29th of December 2016 02:30:00 AM
LinuxSecurity.com: fix for "TLS SecurityMode.required bypass via StripTLS attack"(rhbz#1406703,1406704)

Fedora 24 community-mysql-5.7.17-1.fc24

Tuesday 27th of December 2016 05:51:00 PM
LinuxSecurity.com: * Mon Dec 12 2016 Norvald H. Ryeng - 5.7.17-1 -Update to MySQL 5.7.17, for various fixes described athttps://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-17.html - Add newplugin: connnection_control.so - Add MySQL Group Replication:group_replication.so - Add numactl-devel to buildreq and enable NUMA support (ifavailable) - Simplify boost path - Build compat-openssl10 in rawhide for now -Reqs. in -devel packages was incomplete

Fedora 24 nagios-plugins-2.1.4-2.fc24

Tuesday 27th of December 2016 05:50:00 PM
LinuxSecurity.com: Updated to 2.1.4

Fedora 24 python-wikitcms-2.1.10-1.fc24

Tuesday 27th of December 2016 05:50:00 PM
LinuxSecurity.com: This update contains a **SECURITY** fix for an issue with potentially seriousconsequences but very limited scope. If an administrator of a wiki you talked tousing python-wikitcms were malicious, they could cause arbitrary code executionas the user running wikitcms. No-one besides a wiki administrator could do this,as it requires crafting the wiki's response to an edit request to include amalicious payload. It also drops some now useless or unneeded code (due tochanges in mediawiki and mwclient).

Fedora 25 nagios-plugins-2.1.4-2.fc25

Tuesday 27th of December 2016 04:24:00 PM
LinuxSecurity.com: Updated to 2.1.4

Fedora 25 python-wikitcms-2.1.10-1.fc25

Tuesday 27th of December 2016 04:24:00 PM
LinuxSecurity.com: This update contains a **SECURITY** fix for an issue with potentially seriousconsequences but very limited scope. If an administrator of a wiki you talked tousing python-wikitcms were malicious, they could cause arbitrary code executionas the user running wikitcms. No-one besides a wiki administrator could do this,as it requires crafting the wiki's response to an edit request to include amalicious payload. It also drops some now useless or unneeded code (due tochanges in mediawiki and mwclient).

Fedora 25 js-jquery-2.2.4-1.fc25

Tuesday 27th of December 2016 11:03:00 AM
LinuxSecurity.com: Update to 2.2.4 with backport for XSS vulnerability.

Fedora 25 hdf5-1.8.17-2.fc25

Tuesday 27th of December 2016 11:02:00 AM
LinuxSecurity.com: Security fix for CVE-2016-4330, CVE-2016-4331, CVE-2016-4332, CVE-2016-4333

Fedora 25 xen-4.7.1-6.fc25

Tuesday 27th of December 2016 11:00:00 AM
LinuxSecurity.com: two security flaws (#1406840) x86 PV guests may be able to mask interrupts[XSA-202, CVE-2016-10024] x86: missing NULL pointer check in VMFUNC emulation[XSA-203, CVE-2016-10025] x86: Mishandling of SYSCALL singlestep duringemulation [XSA-204, CVE-2016-10013] (#1406260)

Fedora 25 community-mysql-5.7.17-1.fc25

Tuesday 27th of December 2016 10:58:00 AM
LinuxSecurity.com: * Mon Dec 12 2016 Norvald H. Ryeng - 5.7.17-1 -Update to MySQL 5.7.17, for various fixes described athttps://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-17.html - Add newplugin: connnection_control.so - Add MySQL Group Replication:group_replication.so - Add numactl-devel to buildreq and enable NUMA support (ifavailable) - Simplify boost path - Build compat-openssl10 in rawhide for now -Reqs. in -devel packages was incomplete

Fedora 25 curl-7.51.0-4.fc25

Tuesday 27th of December 2016 10:53:00 AM
LinuxSecurity.com: - fix floating point buffer overflow issues (CVE-2016-9586)

Gentoo: 201612-48 Firejail: Multiple vulnerabilities

Monday 26th of December 2016 07:45:00 PM
LinuxSecurity.com: Multiple vulnerabilities have been discovered in Firejail, the worst of which may allow bypassing of sandbox protection.

Debian: 3748-1: libcrypto++: Summary

Monday 26th of December 2016 05:36:00 AM
LinuxSecurity.com: Security Report Summary

Debian: 3747-1: exim4: Summary

Sunday 25th of December 2016 05:09:00 AM
LinuxSecurity.com: Security Report Summary

Fedora 24 httpd-2.4.25-1.fc24

Saturday 24th of December 2016 10:45:00 PM
LinuxSecurity.com: Security fix for CVE-2016-8743, CVE-2016-2161, CVE-2016-0736

Fedora 25 httpd-2.4.25-1.fc25

Saturday 24th of December 2016 09:16:00 PM
LinuxSecurity.com: Security fix for CVE-2016-8743, CVE-2016-2161, CVE-2016-0736

Debian: 3746-1: graphicsmagick: Summary

Saturday 24th of December 2016 05:04:00 PM
LinuxSecurity.com: Security Report Summary

Slackware: 2016-359-01: expat: Security Update

Saturday 24th of December 2016 03:54:00 PM
LinuxSecurity.com: New expat packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. [More Info...]

Slackware: 2016-358-02: openssh: Security Update

Saturday 24th of December 2016 05:15:00 AM
LinuxSecurity.com: New openssh packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. [More Info...]

Slackware: 2016-358-01: httpd: Security Update

Saturday 24th of December 2016 05:15:00 AM
LinuxSecurity.com: New httpd packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. [More Info...]

More in Tux Machines

Mycroft AI Intelligent Personal Assistant Now Available as a Raspberry Pi Image

It's been very quiet lately for the Mycroft project, an open-source initiative to bring a full-featured intelligent personal assistant to Linux desktops, but it looks like it's still alive and kicking, and it's now available as a Raspberry Pi image. Read more

You Can Now Have All the Essential Ubuntu 14.04.5 LTS Flavors on a Single ISO

After informing Softpedia about the release of the Linux AIO Ubuntu 16.10 Live DVDs, Željko Popivoda from the Linux AIO team is now announcing the availability of Linux AIO Ubuntu 14.04.5. Read more

Benchmarking Radeon Open Compute ROCm 1.4 OpenCL

Last month with AMD/GPUOpen's ROCm 1.4 release they delivered on OpenCL support, albeit for this initial release all of the code is not yet open-source. I tried out ROCm 1.4 with the currently supported GPUs to see how the OpenCL performance compares to just using the AMDGPU-PRO OpenCL implementation. Read more

Canonical to Remove Old Unity 7 Scopes from Ubuntu Because They're Not Secure

Canonical's Will Cooke has revealed recently the company's plans on removing some old, unmaintained Unity 7 Scopes from the Ubuntu Linux archives because they could threaten the security of the entire operating system. Read more