Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hatbug fix

Red Hat 6: RHSA-2011:1694-03 Low: Libcap Chroot Security Update

Updated libcap packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Low: libcap security and bug fix update Advisory ID: RHSA-2011:1694-03 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2011:1694.html Issue date: 2011-12-06 CVE Names: CVE-2011-4099 ==================================================================== 1. Summary: Updated libcap packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 3. Description: The libcap packages provide a library and tools for getting and setting POSIX capabilities. It was found that capsh did not change into the new root when using the "--chroot" option. An application started via the "capsh --chroot" command could use this flaw to escape the chroot restrictions. (CVE-2011-4099) This update also fixes the following bug: * Previously, the libcap packages did not contain the capsh(1) manual page. With this update, the capsh(1) manual page is included. (BZ#730957) All libcap users are advised to upgrade to these updated packages, which contain backported patches tocorrect these issues. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 722694 - CVE-2011-4099 capsh: does not chdir after chroot 730957 - Add missing capsh man page in libcap 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: i386: libcap-2.16-5.5.el6.i686.rpm libcap-debuginfo-2.16-5.5.el6.i686.rpm x86_64: libcap-2.16-5.5.el6.i686.rpm libcap-2.16-5.5.el6.x86_64.rpm libcap-debuginfo-2.16-5.5.el6.i686.rpm libcap-debuginfo-2.16-5.5.el6.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): Source: i386: libcap-debuginfo-2.16-5.5.el6.i686.rpm libcap-devel-2.16-5.5.el6.i686.rpm x86_64: libcap-debuginfo-2.16-5.5.el6.i686.rpm libcap-debuginfo-2.16-5.5.el6.x86_64.rpm libcap-devel-2.16-5.5.el6.i686.rpm libcap-devel-2.16-5.5.el6.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: x86_64: libcap-2.16-5.5.el6.i686.rpm libcap-2.16-5.5.el6.x86_64.rpm libcap-debuginfo-2.16-5.5.el6.i686.rpm libcap-debuginfo-2.16-5.5.el6.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: x86_64: libcap-debuginfo-2.16-5.5.el6.i686.rpm libcap-debuginfo-2.16-5.5.el6.x86_64.rpm libcap-devel-2.16-5.5.el6.i686.rpm libcap-devel-2.16-5.5.el6.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: i386: libcap-2.16-5.5.el6.i686.rpm libcap-debuginfo-2.16-5.5.el6.i686.rpm libcap-devel-2.16-5.5.el6.i686.rpm ppc64: libcap-2.16-5.5.el6.ppc.rpm libcap-2.16-5.5.el6.ppc64.rpm libcap-debuginfo-2.16-5.5.el6.ppc.rpm libcap-debuginfo-2.16-5.5.el6.ppc64.rpm libcap-devel-2.16-5.5.el6.ppc.rpm libcap-devel-2.16-5.5.el6.ppc64.rpm s390x: libcap-2.16-5.5.el6.s390.rpm libcap-2.16-5.5.el6.s390x.rpm libcap-debuginfo-2.16-5.5.el6.s390.rpm libcap-debuginfo-2.16-5.5.el6.s390x.rpm libcap-devel-2.16-5.5.el6.s390.rpm libcap-devel-2.16-5.5.el6.s390x.rpm x86_64: libcap-2.16-5.5.el6.i686.rpm libcap-2.16-5.5.el6.x86_64.rpm libcap-debuginfo-2.16-5.5.el6.i686.rpm libcap-debuginfo-2.16-5.5.el6.x86_64.rpm libcap-devel-2.16-5.5.el6.i686.rpm libcap-devel-2.16-5.5.el6.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: i386: libcap-2.16-5.5.el6.i686.rpm libcap-debuginfo-2.16-5.5.el6.i686.rpm libcap-devel-2.16-5.5.el6.i686.rpm x86_64: libcap-2.16-5.5.el6.i686.rpm libcap-2.16-5.5.el6.x86_64.rpm libcap-debuginfo-2.16-5.5.el6.i686.rpm libcap-debuginfo-2.16-5.5.el6.x86_64.rpm libcap-devel-2.16-5.5.el6.i686.rpm libcap-devel-2.16-5.5.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2011-4099 https://access.redhat.com/security/updates/classification/#low 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2011 Red Hat, Inc. . The advisory from Red Hat highlights a minor severity vulnerability in libcap, accompanied by a patch intended for RHEL 6 clients.. Libcap Update, Red Hat Security Advisory, RHEL Bug Fix. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Dec 06, 2011 Low Red Hat
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisoryhigh severitygentoo

Gentoo GLSA 200512-15 High: rssh Privilege Escalation Attack

Local users could gain root privileges by chrooting into arbitrary directories.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200512-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: rssh: Privilege escalation Date: December 27, 2005 Bugs: #115082 ID: 200512-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Local users could gain root privileges by chrooting into arbitrary directories. Background ========= rssh is a restricted shell, allowing only a few commands like scp or sftp. It is often used as a complement to OpenSSH to provide limited access to users. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-shells/rssh < 2.3.0 > = 2.3.0 Description ========== Max Vozeler discovered that the rssh_chroot_helper command allows local users to chroot into arbitrary directories. Impact ===== A local attacker could exploit this vulnerability to gain root privileges by chrooting into arbitrary directories. Workaround ========= There is no known workaround at this time. Resolution ========= All rssh users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =app-shells/rssh-2.3.0" References ========= [ 1 ] CVE-2005-3345 [ 2 ] rssh security announcement Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200512-15 Concerns? ======== Security is a primary focusof Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2005 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.0/ . Community members might obtain administrative privileges via rssh chroot exploit in Gentoo Linux. Update advised for protection.. Privilege Escalation,rssh,Gentoo Security Advisory,Chroot Vulnerability,High Severity. . LinuxSecurity.com Team

Calendar 2 Dec 27, 2005 Gentoo
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here