Find the information you need for your favorite open source distribution .
Fixes an exploitable memory leak and escapable error-log output.
An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands.
A crafted ISAKMP header can cause racoon to crash.
An attacker could send malicious requests to a Subversion server and perform arbitrary execution of code.
An attacker could create a malicious WebDAV server in such a way as to allow arbitrary code execution on the client, such as cadaver.
Stefan Esser discovered a flaw in cvs where malformed "Entry" linescould cause a heap overflow.
An attacker could create a carefully crafted link such that when opened by a victim it creates or overwrites a file in the victims home directory.
An updated utempter package that fixes a potential symlink vulnerability is now available.
Upon receiving specially crafted ISAKMP packets, TCPDUMP would try to read beyondthe end of the packet capture buffer and subsequently crash.
An attacker could create a carefully crafted link such that when opened by a victim it creates or overwrites a file in the victims home directory.
The client for CVS before 1.11.15 allows a remote malicious CVS server to create arbitrary files by using absolute pathnames during checkouts or updates.
Exploiting these bugs may allow remote malicious WebDAV servers to execute arbitrary code.
A cross-site scripting (XSS) vulnerability exists in the admin CGI script for Mailman before 2.1.4.
Ulf Härnhammar discovered two stack buffer overflows and two directory traversal flaws in LHA.
iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface.
Fixes a possible out-of-bounds read in the error message handler.
Fixes a possible out-of-bounds read in the error message handler.
Testing uncovered a bug in older versions of OpenSSL 0.9.6 prior to 0.9.6d that can lead to a denial of service attack (infinite loop).
Several buffer overflows, several temporary file creation vulnerabilities, and one format string vulnerability have been discovered in Midnight Commander.
This patch fixes a large variety of vulnerabilities in the 2.4.22 kernel, including some related to journaling filesystems.
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
