Find the information you need for your favorite open source distribution .
The original fix introduced new vulnerabilities on 64-bit platforms. New fixed packages are available. Updated sections follow. Affected packages [More...]
The original fix introduced new vulnerabilities on 64-bit platforms. New fixed packages are available. Updated sections follow. Affected packages [More...]
A flaw in the chfn and chsh utilities might allow modification of account properties by unauthorized users.
The PNG image decoding routines in the GD library contain an integer overflow that may allow execution of arbitrary code with the rights of the program decoding a malicious PNG image. [More...]
Proxytunnel is vulnerable to a format string vulnerability, potentially allowing a remote server to execute arbitrary code with the rights of the Proxytunnel process. [More...]
pppd contains a bug that allows an attacker to crash his own connection, but it cannot be used to deny service to other users.
MIME-tools doesn't handle empty MIME boundaries correctly. This may prevent some virus-scanning programs which use MIME-tools from detecting certain viruses. [More...]
libxml2 contains multiple buffer overflows which could lead to the execution of arbitrary code.
A buffer overflow vulnerability exists in mod_include which could possibly allow a local attacker to gain escalated privileges.
A vulnerability in the Speedtouch USB driver can be exploited to allow local users to execute arbitrary code with escalated privileges.
Cherokee contains a format string vulnerability that could lead to denial of service or the execution of arbitary code.
pppd contains a vulnerability that may allow an attacker to crash the server.
Email virus scanning software relying on Archive::Zip can be fooled into thinking a ZIP attachment is empty while it contains a virus, allowing detection evasion. [More...]
PuTTY contains a vulnerability allowing an SSH server to execute arbitrary code on the connecting client.
rssh is vulnerable to a format string vulnerability that allows arbitrary execution of code with the rights of the connected user, thereby bypassing rssh restrictions. [More...]
Buffer overflow vulnerabilities have been found in mpg123 which could lead to execution of arbitrary code.
socat contains a format string vulnerability that can potentially lead to remote or local execution of arbitrary code with the privileges of the socat process. [More...]
The etc2ps.sh script, included in the Netatalk package, is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files with the rights of the user running the utility. [More...]
The send-pr.sh script, included in the mit-krb5 package, is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files with the rights of the user running the utility. [More...]
Multiple vulnerabilities have been found in Gaim which could allow a remote attacker to crash the application, or possibly execute arbitrary code. [More...]
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
