Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisoryhigh severitysecurity issue

Gentoo: 200903-02 High Severity: ZNC Privilege Escalation Risk

A vulnerability in ZNC allows for privilege escalation.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200903-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: ZNC: Privilege escalation Date: March 06, 2009 Bugs: #260148 ID: 200903-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= A vulnerability in ZNC allows for privilege escalation. Background ========= ZNC is an advanced IRC bouncer. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-irc/znc < 0.066 > = 0.066 Description ========== cnu discovered multiple CRLF injection vulnerabilities in ZNC's webadmin module. Impact ===== A remote authenticated attacker could modify the znc.conf configuration file and gain privileges via newline characters in e.g. the QuitMessage field, and possibly execute arbitrary code. Workaround ========= There is no known workaround at this time. Resolution ========= All ZNC users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-irc/znc-0.066" References ========= [ 1 ] CVE-2009-0759 https://www.cve.org/CVERecord?id=CVE-2009-0759 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200903-02 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concernsshould be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2009 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Investigate the critical ZNC privilege escalation vulnerability found in Gentoo, encompassing specifics of the exploit and measures for mitigation.. Gentoo ZNC Exploit, Security Risk Management, Privilege Escalation. . LinuxSecurity.com Team

Calendar 2 Mar 06, 2009 Gentoo
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryred hatcritical

Red Hat 5.2, 6.x, 7: RHSA-2001:024-03 Critical Symlink Attack Fix

When starting, joe looks for a configuration file in the current working directory, the user's home directory, and /etc/joe. A malicious user can use a symlink attack by putting a file in the cwd if it is world writable.. ` --------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated joe packages are available for Red Hat Linux 5.2, 6.x and 7. Advisory ID: RHSA-2001:024-03 Issue date: 2001-02-28 Updated on: 2001-03-02 Product: Red Hat Linux Keywords: joe joerc cwd DEADJOE symlink vulnerability Cross references: Obsoletes: RHSA-2000:110 --------------------------------------------------------------------- 1. Topic: Updated joe packages are available for Red Hat Linux 5.2, 6.x and 7. 2. Relevant releases/architectures: Red Hat Linux 5.2 - alpha, i386, sparc Red Hat Linux 6.2 - alpha, i386, sparc Red Hat Linux 7.0 - alpha, i386 3. Problem description: When starting, joe looks for a configuration file in the current working directory, the user's home directory, and /etc/joe. A malicious user could create a .joerc file in a world writable directory such as /tmp and make users running joe inside that directory using a .joerc file that is customized to execute commands with their own userids. The current working directory has been removed from the list of possible directories with the .joerc configuration file. 4. Solution: To update all RPMs for your particular architecture, run: rpm -Fvh where is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directly *only* contains the desired RPMs. Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red HatUpdate Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. 5. Bug IDs fixed ( for more info): 30031 - joe tries to use ./.joerc 6. RPMs required: Red Hat Linux 5.2: SRPMS: alpha: i386: sparc: Red Hat Linux 6.2: SRPMS: alpha: i386: sparc: Red Hat Linux 7.0: SRPMS: alpha: i386: 7. Verification: MD5 sum Package Name -------------------------------------------------------------------------- 95488606ed844778f2a521ad0325f507 5.2/SRPMS/joe-2.8-43.52.src.rpm 2dc3a1c635eded9cbb6fc16dab977606 5.2/alpha/joe-2.8-43.52.alpha.rpm ea707c3f5c2fd31673b44865ac589288 5.2/i386/joe-2.8-43.52.i386.rpm 5bd049373c8fd6441294d29c1b39d86d 5.2/sparc/joe-2.8-43.52.sparc.rpm 592fd7aa75424a973b6ee9616f64795b 6.2/SRPMS/joe-2.8-43.62.src.rpm 0f024c104d66746002dd9901e90232cc 6.2/alpha/joe-2.8-43.62.alpha.rpm 4a267a16e25cf49bffaa5e2a8d14060c 6.2/i386/joe-2.8-43.62.i386.rpm c75027b88a9d2c36064c3ae57e914887 6.2/sparc/joe-2.8-43.62.sparc.rpm 457e77acf9ca708332cb761dfe476f64 7.0/SRPMS/joe-2.8-43.7.src.rpm 54314afa4b55889eb86413119379e29b 7.0/alpha/joe-2.8-43.7.alpha.rpm 86c53275430df95d2674b2805c960f5c 7.0/i386/joe-2.8-43.7.i386.rpm These packages are GPG signed by Red Hat, Inc. for security. Our key is available at: You can verify each package with the following command: rpm --checksig If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: rpm --checksig --nogpg 8. References: WSIR-01/02-02 Copyright(c) 2000, 2001 Red Hat, Inc. `. Updates fix Alice's shortcut loophole preventing unauthorized settings file leaks on Red Hat systems.. Red Hat Linux, Joe Text Editor, Symlink Issue, Security Patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 03, 2001 Critical Red Hat
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here