Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 3 hours 33 min ago

Ubuntu 4151-1: Python vulnerabilities

Wednesday 9th of October 2019 09:49:05 AM
Several security issues were fixed in Python.

openSUSE: 2019:2300-1: moderate: sqlite3

Tuesday 8th of October 2019 08:15:55 PM
An update that fixes one vulnerability is now available.

openSUSE: 2019:2298-1: moderate: sqlite3

Tuesday 8th of October 2019 08:12:59 PM
An update that fixes one vulnerability is now available.

Fedora 30: chromium FEDORA-2019-e53c0c7765

Tuesday 8th of October 2019 03:29:38 PM
Chromium 77.0.3865.90 update. See the official announcement on https://chromereleases.googleblog.com/2019/09/stable-channel-update-for- desktop.html and https://chromereleases.googleblog.com/2019/09/stable-channel- update-for-desktop_18.html

openSUSE: 2019:2294-1: moderate: rust

Tuesday 8th of October 2019 02:20:25 PM
An update that solves two vulnerabilities and has two fixes is now available.

SUSE: 2019:14190-1 moderate: dnsmasq

Tuesday 8th of October 2019 02:17:32 PM
An update that solves one vulnerability and has one errata is now available.

SUSE: 2019:2600-1 important: the Linux Kernel (Live Patch 27 for SLE 12 SP3)

Tuesday 8th of October 2019 02:16:23 PM
An update that fixes two vulnerabilities is now available.

SUSE: 2019:2613-1 important: the Linux Kernel (Live Patch 32 for SLE 12 SP1)

Tuesday 8th of October 2019 02:15:19 PM
An update that fixes one vulnerability is now available.

SUSE: 2019:2617-1 moderate: kubernetes, patchinfo

Tuesday 8th of October 2019 02:14:16 PM
An update that fixes two vulnerabilities is now available.

SUSE: 2019:2601-1 important: the Linux Kernel (Live Patch 32 for SLE 12 SP2)

Tuesday 8th of October 2019 02:13:20 PM
An update that fixes two vulnerabilities is now available.

Debian LTS: DLA-1950-1: openjpeg2 security update

Tuesday 8th of October 2019 12:10:39 PM
A heap buffer overflow vulnerability was discovered in openjpeg2, the open-source JPEG 2000 codec. This vulnerability is caused by insufficient validation of width and height of image components in color_apply_icc_profile (src/bin/common/color.c). Remote attackers might leverage this vulnerability

SUSE: 2019:2572-1 important: the Linux Kernel (Live Patch 10 for SLE 15)

Tuesday 8th of October 2019 11:12:32 AM
An update that solves one vulnerability and has one errata is now available.

Debian LTS: DLA-1949-1: xen security update

Tuesday 8th of October 2019 10:40:59 AM
Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in denial of service, informations leaks or privilege escalation.

Ubuntu 4149-1: Unbound vulnerability

Tuesday 8th of October 2019 09:15:18 AM
Unbound could be made to crash if it received a specially crafted NOTIFY query.

RedHat: RHSA-2019-2975:01 Important: kernel security and bug fix update

Tuesday 8th of October 2019 06:02:43 AM
An update for kernel is now available for Red Hat Enterprise Linux 7.5 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2019-2980:01 Important: python security update

Tuesday 8th of October 2019 06:02:34 AM
An update for python is now available for Red Hat Enterprise Linux 7.5 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2019-2978:01 Important: polkit security update

Tuesday 8th of October 2019 06:02:28 AM
An update for polkit is now available for Red Hat Enterprise Linux 7.5 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2019-2979:01 Important: wget security update

Tuesday 8th of October 2019 06:02:19 AM
An update for wget is now available for Red Hat Enterprise Linux 7.5 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2019-2977:01 Important: bind security update

Tuesday 8th of October 2019 06:02:10 AM
An update for bind is now available for Red Hat Enterprise Linux 7.5 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

openSUSE: 2019:2292-1: moderate: putty

Tuesday 8th of October 2019 02:11:10 AM
An update that fixes two vulnerabilities is now available.

More in Tux Machines

today's howtos

Android Leftovers

Proprietary Software Security and FOSS Patches

  • Compromised AWS API Key Allowed Access to Imperva Customer Data

    Imperva has shared more information on how [attackers] managed to obtain information on Cloud Web Application Firewall (WAF) customers, and revealed that the incident involved a compromised administrative API key.

  • Oil Refiner Reports Major IT Incident in Finland

    It’s not yet clear whether the cause is a malfunction or a cyber attack, according to spokeswoman Susanna Sieppi. The issue is under investigation, and it’s too early to estimate when the systems will be fixed, she said by phone.

  • WordPress 5.2.4 Security Release

    WordPress 5.2.4 is now available! This security release fixes 6 security issues. WordPress versions 5.2.3 and earlier are affected by these bugs, which are fixed in version 5.2.4. Updated versions of WordPress 5.1 and earlier are also available for any users who have not yet updated to 5.2.

  • Ubuntu Releases Patch for Major ‘sudo’ Security Exploit

    Canonical has issued an urgent security fix to the ‘sudo’ package in the Ubuntu archives following the discovery of a major security flaw. A critical fix has rolled out to all users of Ubuntu 16.04 LTS, 18.04 LTS, 19.04 and 19.10 (and one assumes Ubuntu 14.04 ESR too) — just run a sudo apt upgrade to install it. But what about the flaw inquisition? Well, if you’re yet to hear about it I appreciate meditative disconnect from social media. The oft toxic waste pools of chatter were with wet with alarm — some manufactured, the rest well weighted — over CVE-2019-14287 when it was announced yesterday, October 14.

  • Security updates for Tuesday

    Security updates have been issued by Debian (sudo and xtrlock), openSUSE (sudo), Red Hat (Single Sign-On), Slackware (sudo), SUSE (binutils, dhcp, ffmpeg, kernel, kubernetes-salt, sudo, and tcpdump), and Ubuntu (sudo).

Android Leftovers