Find the information you need for your favorite open source distribution .
This updated at package fixes two minor problems and one majorproblem where the environment can get wiped out prior to the execution of ascheduled command.
Updated enscript packages that fix insecure handling of temporary files are available.
uuxqt in Taylor UUCP package does not properly remove dangerous longoptions, which allows local users to gain uid and gid uucp privileges by calling uux and specifying an alternate configuration file with the--config option.
A number of security-related bugs have been found in Bugzilla version 2.14.
Versions of sudo prior to 1.6.4 would not clear the environment beforesending an email notification about unauthorized sudo attempts, making itpossible for an attacker to supply parameters to the mail program.
New groff packages have been made available that fix an overflow in groff.If the printing system running this is a security issue, it is recommendedto update to the new, fixed packages.
Updated namazu packages are available for Red Hat Linux 7.0J. Thesepackages fix cross-site scripting vulnerabilities. It also fixes a possiblebuffer overflow.
Updated exim packages are available, which fix a problem when handling certain types of addresses with some configurations. The default configuration does not exhibit this problem.
Updated stunnel packages are now available for Red Hat Linux 7.2. Theseupdates close a format-string vulnerability which is present in someearlier versions of stunnel.
New mutt packages that fix an overflow in mutt's address parsing code areavailable. It is recommended that all mutt users update to the fixed packages.
Updated Mailman packages are now available for Red Hat Secure Web Server3.2 (U.S.). These updates fix cross-site scripting bugs which might allowanother server to be used to gain a user's private information from aserver running Mailman.
Updated namazu packages are available for Red Hat Linux 7.0J. Thesepackages fix cross-site scripting vulnerability.
Updated Mailman packages are now available for Red Hat Linux 7.2. Theseupdates fix cross-site scripting bugs which might allow another server tobe used to gain a user's private information from a server running Mailman.
Updated Mailman packages are now available for Red Hat PowerTools 7 and7.1. These updates fix cross-site scripting bugs which might allow anotherserver to be used to gain a user's private information from a serverrunning Mailman.
Updated glibc packages are available to fix an overflowable bufferand for 7.x to fix a couple of non-security related bugs.
These updates close a potential security hole which would present clientswith a listing of the contents of a directory instead of the contents of anindex file or the proper error message.
A potential security bug which would present clients with alisting of the contents of a directory instead of the contents of an indexfile, or in case of an error, the error message, has been fixed.
OpenSSH configurations using the 'UseLogin' directive permits privilege escalation
These updates fix a bug in handling of restricted keys which mayallow users to bypass command restrictions by using subsystems and a subtlebug which might aid a passive analysis attack.
These packages fix a possible format-string vulnerability in thedefault logging callback function provided by libsasl.
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
