Find the information you need for your favorite open source distribution .
Multiple information leaks have been found in the Linux kernel, allowing an attacker to obtain sensitive data which may be used for further exploitation of the system. [More...]
The cookie manager component in kdelibs contains a vulnerability allowing an attacker to potentially gain access to a user's session on a legitimate web server. [More...]
New releases of Mozilla, Mozilla Thunderbird, and Mozilla Firefox fix several vulnerabilities, including remote DoS and buffer overflows.
With special configurations of Cacti it is possible to change passwords via a SQL injection attack.
There are several bugs in Qt's image-handling code which could lead to crashes or arbitrary code execution.
There is a format string vulnerability in non-standard configurations of courier-imapd which may be exploited remotely. An attacker may be able to execute arbitrary code as the user running courier-imapd (oftentimes root). [More...]
xine-lib contains an exploitable buffer overflow in the VCD handling code
rsync fails to properly sanitize paths. This vulnerability could allow the listing of arbitrary files and allow file overwriting outside module's path on rsync server configurations that allow uploading. [More...]
glibc contains an information leak vulnerability allowing the debugging of SUID binaries.
Improper file ownership may allow a member of the tomcat group to execute scripts as root.
acroread contains two errors in the handling of UUEncoded filenames that may lead to execution of arbitrary code or programs.
KDE contains three security issues that can allow an attacker to compromise system accounts, cause a Denial of Service, or spoof websites via frame injection. [More...]
Gaim contains a remotely exploitable buffer overflow vulnerability in the MSN-protocol parsing code that may allow remote execution of arbitrary code. [More...]
gv contains an exploitable buffer overflow that allows an attacker to execute arbitrary code.
Roundup will make files owned by the user that it's running as accessable to a remote attacker.
Cfengine is vulnerable to a remote root exploit from clients in AllowConnectionsFrom.
An input validation vulnerability has been discovered in Horde-IMP. This only affects users of Internet Explorer.
SpamAssassin is vulnerable to a Denial of Service attack when handling certain malformed messages.
Several new vulnerabilities were found and fixed in Opera, including one allowing an attacker to read the local filesystem remotely.
PuTTY contains a vulnerability allowing a SSH server to execute arbitrary code on the connecting client.
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
