Find the information you need for your favorite open source distribution .
SPE files are installed with world-writeable permissions, potentially leading to privilege escalation.
KOffice and KWord are vulnerable to a buffer overflow in the RTF importer, potentially resulting in the execution of arbitrary code.
When using a specific option, OpenSSL can be forced to fallback to the less secure SSL 2.0 protocol.
uw-imap is vulnerable to remote overflow of a buffer in the IMAP server leading to execution of arbitrary code.
Weex contains a format string error that may be exploited by malicious servers to execute arbitrary code.
xine-lib contains a format string error in CDDB response handling that may be exploited to execute arbitrary code.
RealPlayer and Helix Player are vulnerable to a format string vulnerability resulting in the execution of arbitrary code.
Improperly sanitised data in Dia allows remote attackers to execute arbitrary code.
Ruby is vulnerable to a security bypass of the safe level mechanism.
Texinfo is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.
Under certain conditions, applications linked against Uim suffer from a privilege escalation vulnerability.
The Berkeley MPEG Tools use temporary files in various insecure ways, potentially allowing a local user to overwrite arbitrary files.
gtkdiskfree is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.
This advisory was originally released to fix the heap overflow in IDN headers. However, the official fixed release included several other security fixes as well. [More...] [More...]
Hylafax is vulnerable to linking attacks, potentially allowing a local user to overwrite arbitrary files.
AbiWord is vulnerable to a stack-based buffer overflow during RTF import, making it vulnerable to the execution of arbitrary code.
PHP makes use of an affected PCRE library and ships with an affected XML-RPC library and is therefore potentially vulnerable to remote execution of arbitrary code. [More...]
Qt is vulnerable to a buffer overflow which could potentially lead to the execution of arbitrary code.
If Webmin or Usermin is configured to use full PAM conversations, it is vulnerable to the remote execution of arbitrary code with root privileges. [More...]
Mantis is affected by an SQL injection and several cross-site scripting (XSS) vulnerabilities.
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
