Find the information you need for your favorite open source distribution .
In tnef, an attacker may be able to write to the victim's .ssh/authorized_keys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based
A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values.
Several vulnerabilities have been identified in the VNC code of ssvnc, an encryption-capable VNC client..
Handling of Netscape Certificate Sequences in CERT_DecodeCertPackage() may haved crash with a NULL deref leading to a Denial-of-Service.
Several vulnerabilities have been identified in the VNC code of vino, a desktop sharing utility for the GNOME desktop environment.
Several issues have been found in libvorbis, a decoder library for Vorbis General Audio Compression Codec.
Several issues have been found in libvpx, a VP8 and VP9 video codec. CVE-2019-9232
An issue in xmlrpc-epi, an XML-RPC request serialisation/deserialisation library, has been found.
An issue in bsdiff, a tool to generate/apply a patch between two binary files, has been found.
Several issues have been found in tiff, a Tag Image File Format library. CVE-2019-17546
A vulnerability has been discovered in nss, the Mozilla Network Security Service library. An out-of-bounds write can occur when passing an output buffer smaller than the block size to NSC_EncryptUpdate.
Several flaws have been found in ruby2.1, an interpreter of an object-oriented scripting language.
It has been found, that libxdmcp, an X11 Display Manager Control Protocol library, uses weak entropy to generate keys.
An issue has been found in isc-dhcp, a server for automatic IP address assignment.
It has been found, that libice, an X11 Inter-Client Exchange library, uses weak entropy to generate keys.
There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofx_sgml.cpp, as demonstrated by ofxdump.
It was discovered that pam-python, a PAM Module that runs the Python interpreter, has an issue in regard to the default environment variable handling of Python. This issue could allow for local root escalation in certain PAM setups.
Multiple vulnerabilities have been found in the Symfony PHP framework which could lead to a timing attack/information leak, argument injection and code execution via unserialization.
It was discovered that there were multiple double free vulnerabilities in python-psutil, a Python module providing convenience functions for accessing system process data.
Earlier versions of this package package were vulnerable to Cross-site Scripting (XSS) due to no proper sanitization of xlink:href attributes.
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
