Find the information you need for your favorite open source distribution .
CVE-2023-37378 Nullsoft Scriptable Install System (NSIS) before 3.09 mishandles access control for an uninstaller directory.
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.
It was discovered that there was a series of integer overflow vulnerabilities in LibTomMath, a multiple-precision mathematics library.
A vulnerability was discovered in Nokogiri, an open source XML and HTML library for Ruby. An inefficient regular expression was susceptible to excessive backtracking when attempting to detect encoding in HTML documents. This could lead to denial-of-service.
Multiple vulnerabilities were discovered in git, a fast, scalable and distributed revision control system. CVE-2019-1387
Path traversal that allowed TZInfo::Timezone.get to load arbitrary files has been fixed in ruby-tzinfo, a Ruby library for working with time zone information.
Several vulnerabilities have been found in frr, the FRRouting suite of internet protocols. An attacker could craft packages to potentially trigger those effects: buffer overflows with the possibility to gain remote code execution, buffer overreads, crashes or trick the software to enter an
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2024-4558
Two vulnerabilities have been fixed in the e-book manager Calibre. CVE-2021-44686
Alvaro Muñoz from the GitHub Security Lab discovered sixteen ways to exploit a cross-site scripting vulnerability in nbconvert, a tool and library used to convert notebooks to various other formats via Jinja templates.
An out-of-bounds write has been fixed in the fsck.exfat tool that checks and repairs exFAT filesystems. For Debian 11 bullseye, this problem has been fixed in version
Vulnerabilities were discovered in dovecot, an POP3/IMAP server, which could lead to Denial of Service. CVE-2024-23184
Multiple vulnerabilities have been fixed in systemd, the default init system in Debian, when using systemd-resolved with DNSSEC. CVE-2023-7008
Several vulnerabilities have been discovered in the interpreter for the Ruby language, which may result in denial-of-service (DoS), information leak, and remote code execution.
It was discovered that there was a sanitisation bypass issue in python-html-sanitizer, a library used ensure that user-specified content cannot inject HTML or JavaScript into a webpage.
Brief introduction CVE-2020-14196
Cédric Krier has found that trytond, the Tryton application server, accepts compressed content from unauthenticated requests which makes it vulnerable to zip bomb attacks.
Cédric Krier has found that trytond, the Tryton application server, accepts compressed content from unauthenticated requests which makes it vulnerable to zip bomb attacks.
Mate Kukri discovered the Debian build of EDK2, a UEFI firmware implementation, used an insecure default configuration which could result in Secure Boot bypass via the UEFI shell.
Gunicorn, an event-based HTTP/WSGI server, fails to properly validate Transfer- Encoding headers, leading to HTTP Request Smuggling (HRS) vulnerabilities. By crafting requests with conflicting Transfer-Encoding headers, attackers can bypass security restrictions and access restricted endpoints. This issue is due
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
