Find the information you need for your favorite open source distribution .
These vulnerabilities may allow remote attackers to cause a denial of service or execute arbitrary code.
A buffer overflow and race condition vulnerabilities have been fixed. These vulnerabilities may lead to remote root compromise.
An attacker is able to send aspecially crafted RADIUS network packet which causes tcpdump to enteran infinite loop.
A buffer overflow vulnerability in the ELF formatparsing of the "file" command, one which can be used to executearbitrary code with the privileges of the user running the command has been fixed.
The sample exploit requires a valid user account and password, and overflows astring in the pop_msg() function to give the user "mail" group privileges and ashell on the system. Since the Qvsnprintf function is used elsewhere inqpopper, additional exploits may be possible.
This advisory is an addendum to DSA-257-1; the sendmail problem discussed there also applies to the sendmail-wide packages.
A remote vulnerability exists that can result in commands can be executed with administrative privileges.
There is an insecure tmp file vulnerability in adb2mhc from the mhc-utils package.
An attacker is able to send a specially crafted network packet which causes tcpdump to enter an infinite loop.
Due to insufficient bounds checking performed by the whois parser, it may be possible to corrupt memory on the system stack.
OpenSSL has been found to vulnerable to a timing-based attack on CBC ciphersuites used in SSL and TLS.
A buffer overflow in the setuid program slocate can be used to execute arbitrary code as superuser.
Multiple vulnerabilities were discovered in the Common Unix Printing System (CUPS).
There are two security vulnerabilities in w3m and associated programs.
There are two security vulnerabilities in w3m and associated programs.
The w3m browser does not properly escape HTML tags in frame contents and img altattributes.
An attacker could craft a long filename for an attachment that would overflow two buffers when a certain option for interactive use was given, opening the possibility to inject arbitrary code.
The developers of courier, an integrated user side mail server,discovered a problem in the PostgreSQL auth module.
There are multiple vulnerabilities in the tomcat 3.x packages.
There is a bug in the dhcrelay causing it to send a continuing packet storm towards the configured DHCP server(s) in case of a malicious BOOTP packet.
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
