Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
197
security advisoryDebiancompatibility updateDebian LTS DLA-3640-1: Update for Distro-Info Test-Suite Released
This is a non-security update, enabling distro-info to continue to build with the distro-info-data update in DLA-3639-1, which broke some test-suite assumptions. . ------------------------------------------------------------------------- Debian LTS Advisory DLA-3640-1
Oct 30, 2023
•Informational
Debian LTS
89
security advisoryFedorasecurity fixFedora 36: FEDORA-2022-89a17be281 Critical: OpenSSL 1.1 Security Fix
**Changelog** ``` * Thu Jul 07 2022 Clemens Lang - 1:1.1.1q-1 - Upgrade to 1.1.1q Resolves: CVE-2022-2097 ``` . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-89a17be281 2022-07-15 01:15:23.605110 --------------------------------------------------------------------------------Name : openssl1.1 Product : Fedora 36 Version : 1.1.1q Release : 1.fc36 URL : https://www.openssl.org:443/ Summary : Compatibility version of the OpenSSL library Description : The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is provided for compatibility with previous releases. --------------------------------------------------------------------------------Update Information: **Changelog** ``` * Thu Jul 07 2022 Clemens Lang -1:1.1.1q-1 - Upgrade to 1.1.1q Resolves: CVE-2022-2097 ``` --------------------------------------------------------------------------------ChangeLog: * Thu Jul 7 2022 Clemens Lang - 1:1.1.1q-1 - Upgrade to 1.1.1q Resolves: CVE-2022-2097 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-89a17be281' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jul 14, 2022
•Critical
Fedora
89
security advisoryFedoraweb browserFedora 36 SeaMonkey 2.53.12 Critical Compatibility Update
Update to 2.53.12 For compatibility with modern sites the default version of Firefox for the User-Agent string has now been set to 78.0 . The value can be changed in Preferences--> Advanced--> HTTP Networking . Note that besides the ordinary builds for the current Fedora and EPEL branches, there is an additional distro-independed build available at https://buc.fedorapeople.org/seamonkey/ . So. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-bbee226200 2022-05-12 01:12:10.550887 --------------------------------------------------------------------------------Name : seamonkey Product : Fedora 36 Version : 2.53.12 Release : 1.fc36 URL : https://www.seamonkey-project.org/ Summary : Web browser, e-mail, news, IRC client, HTML editor Description : SeaMonkey is an all-in-one Internet application suite (previously made popular by Netscape and Mozilla). It includes an Internet browser, advanced e-mail, newsgroup and feed client, a calendar, IRC client, HTML editor and a tool to inspect the DOM for web pages. It is derived from the application formerly known as Mozilla Application Suite. --------------------------------------------------------------------------------Update Information: Update to 2.53.12 For compatibility with modern sites the default version of Firefox for the User-Agent string has now been set to 78.0 . The value can be changed in Preferences--> Advanced--> HTTP Networking . Note that besides the ordinary builds for the current Fedora and EPEL branches, there is an additional distro-independed build available at https://buc.fedorapeople.org/seamonkey/ . So if you have friends who use other Linux distro, but that distro does not provide SeaMonkey yet, you can recommend it for them. --------------------------------------------------------------------------------ChangeLog: * Tue May 3 2022 Dmitry Butskoy 2.53.12-1 - update to2.53.12 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-bbee226200' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
May 11, 2022
•Critical
Fedora
89
security advisorymoderateFedoraFedora 26: 2017-7f30914972 Moderate: OpenSSL Communication Flaws
Minor update release 1.0.2m from upstream.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-7f30914972 2017-11-22 01:03:54.848814 --------------------------------------------------------------------------------Name : compat-openssl10 Product : Fedora 26 Version : 1.0.2m Release : 1.fc26 URL : https://www.openssl.org:443/ Summary : Compatibility version of the OpenSSL library Description : The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries and is provided for compatibility with previous releases and software that does not support compilation with OpenSSL-1.1. --------------------------------------------------------------------------------Update Information: Minor update release 1.0.2m from upstream. --------------------------------------------------------------------------------References: [ 1 ] Bug #1486146 - CVE-2017-3735 CVE-2017-3736 openssl: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1486146 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade compat-openssl10' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Nov 22, 2017
Fedora
197
security advisorydebiansoftware upgradeDebian 7 Wheezy DLA-1086-1: Enigmail 1.9.8.1 Compatibility Update
In DLA 1007-1 Thunderbird was upgraded to the latest ESR series. This update upgrades Enigmail, the OpenPGP extention for Thunderbird, to version 1.9.8.1 to restore full compatibility. . Package : enigmail Version : 2:1.9.8.1-1~deb7u1 In DLA 1007-1 Thunderbird was upgraded to the latest ESR series. This update upgrades Enigmail, the OpenPGP extention for Thunderbird, to version 1.9.8.1 to restore full compatibility. For Debian 7 "Wheezy", these problems have been fixed in version 2:1.9.8.1-1~deb7u1. We recommend that you upgrade your enigmail packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Update Enigmail to the latest version 1.9.8.1 to ensure complete compatibility with Thunderbird. This is a critical upgrade for users on Debian.. Debian Security, Enigmail Update, OpenPGP Extension, Thunderbird Compatibility. . Severity: Important. LinuxSecurity.com Team
Sep 03, 2017
•Important
Debian LTS
89
security advisorymoderateFedoraFedora 9 Moderate Advisory for ruby-gnome2 Compatibility Fix
https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-3875 2009-04-22 19:42:15 -------------------------------------------------------------------------------- Name : ruby-gnome2 Product : Fedora 9 Version : 0.17.0 Release : 8.fc9 URL : Summary : Ruby binding of libgnome/libgnomeui-2.x Description : This is a set of bindings for the GNOME-2.x libraries for use from Ruby. -------------------------------------------------------------------------------- Update Information: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 21 2009 Christopher Aillon - 0.17.0-8 - Rebuild against newer gecko * Fri Mar 27 2009 Christopher Aillon - 0.17.0-7 - Rebuild against newer gecko * Fri Mar 6 2009 Jan Horak - 0.17.0-6 - Rebuild against newer gecko * Wed Feb 4 2009 Christopher Aillon - 0.17.0-5 - Rebuild against newer gecko * Wed Dec 17 2008 Christopher Aillon - 0.17.0-4 - Rebuild against newer gecko * Wed Nov 12 2008 Christopher Aillon - 0.17.0-3 - Rebuild against newer gecko * Wed Sep 24 2008 Christopher Aillon - 0.17.0-2 - Rebuild against newer gecko * Thu Sep 18 2008 Mamoru Tasaka 0.17.0-1 - Update to 0.17.0 - Patch from svn to fix Ruby/GLib bug (bug 456816) * Sat Jul 19 2008 Mamoru Tasaka - 0.17.0-0.4.rc1 - F-9+: relax gecko libs dependency - F-9+: bump version to fix EVR problem between F-8 branch * Fri Jun 20 2008 Martin Stransky - 0.17.0-0.2.rc1 - Rebuild against new xulrunner * Sun Jun 8 2008 Mamoru Tasaka - 0.17.0-0.1.rc1 - 0.17.0 rc1 - Remove upstreamed patches - 2 patches remain - ruby-gnome2-0.17.0-rc1-script.patch - ruby-gnome2-all-0.16.0-xulrunner.patch - Restrict ruby abi dependency to exact 1.8 version - Fix the license (to strictLGPLv2) -------------------------------------------------------------------------------- References: [ 1 ] Bug #496252 - CVE-2009-1302 Firefox 3 Layout engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=496252 [ 2 ] Bug #496253 - CVE-2009-1303 Firefox 2 and 3 Layout engine crash https://bugzilla.redhat.com/show_bug.cgi?id=496253 [ 3 ] Bug #496255 - CVE-2009-1304 Firefox 3 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=496255 [ 4 ] Bug #496256 - CVE-2009-1305 Firefox 2 and 3 JavaScript engine crash https://bugzilla.redhat.com/show_bug.cgi?id=496256 [ 5 ] Bug #486704 - CVE-2009-0652 firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks) https://bugzilla.redhat.com/show_bug.cgi?id=486704 [ 6 ] Bug #496262 - CVE-2009-1306 Firefox jar: scheme ignores the content-disposition: header on the inner URI https://bugzilla.redhat.com/show_bug.cgi?id=496262 [ 7 ] Bug #496263 - CVE-2009-1307 Firefox Same-origin violations when Adobe Flash loaded via view-source: protocol https://bugzilla.redhat.com/show_bug.cgi?id=496263 [ 8 ] Bug #496266 - CVE-2009-1308 Firefox XSS hazard using third-party stylesheets and XBL bindings https://bugzilla.redhat.com/show_bug.cgi?id=496266 [ 9 ] Bug #496267 - CVE-2009-1309 Firefox Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString https://bugzilla.redhat.com/show_bug.cgi?id=496267 [ 10 ] Bug #496270 - CVE-2009-1310 Firefox Malicious search plugins can inject code into arbitrary sites https://bugzilla.redhat.com/show_bug.cgi?id=496270 [ 11 ] Bug #496271 - CVE-2009-1311 Firefox POST data sent to wrong site when saving web page with embedded frame https://bugzilla.redhat.com/show_bug.cgi?id=496271 [ 12 ] Bug #496274 - CVE-2009-1312 Firefox allows Refresh header to redirect to javascript: URIs https://bugzilla.redhat.com/show_bug.cgi?id=496274 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update ruby-gnome2' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list
Apr 23, 2009
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!