Alerts This Week
Warning Icon 1 609
Alerts This Week
Warning Icon 1 609

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Calendar White Jun 05, 2026
Important
Fedora Large Esm H800
Fedora

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Calendar White Jun 05, 2026
Critical
Fedora Large Esm H900
Fedora

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Calendar White Jun 05, 2026
high
Fedora Large Esm H800
Fedora

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisoryhigh severityremote issue

Debian High: DSA-2366-1 MediaWiki Multiple Remote Issues

Several problems have been discovered in mediawiki, a website engine for collaborative work. CVE-2011-1578 CVE-2011-1587 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2366-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Jonathan Wiltshire December 18, 2011 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : mediawiki Vulnerability : multiple Problem type : remote Debian-specific: no CVE ID : CVE-2011-1578 CVE-2011-1579 CVE-2011-1580 CVE-2011-1587 CVE-2011-4360 CVE-2011-4361 Debian Bug : 650434 Several problems have been discovered in mediawiki, a website engine for collaborative work. CVE-2011-1578 CVE-2011-1587 Masato Kinugawa discovered a cross-site scripting (XSS) issue, which affects Internet Explorer clients only, and only version 6 and earlier. Web server configuration changes are required to fix this issue. Upgrading MediaWiki will only be sufficient for people who use Apache with AllowOverride enabled. For details of the required configuration changes, see the upstream announcements: https://lists.wikimedia.org/pipermail/mediawiki-announce/2011-April/000096.html https://lists.wikimedia.org/pipermail/mediawiki-announce/2011-April/000097.html CVE-2011-1579 Wikipedia user Suffusion of Yellow discovered a CSS validation error in the wikitext parser. This is an XSS issue for Internet Explorer clients, and a privacy loss issue for other clients since it allows the embedding of arbitrary remote images. CVE-2011-1580 MediaWiki developer Happy-Melon discovered that the transwiki import feature neglected to perform access control checks on form submission. The transwiki import feature is disabled by default. If it is enabled, it allows wiki pages to be copied from a remotewiki listed in $wgImportSources. The issue means that any user can trigger such an import to occur. CVE-2011-4360 Alexandre Emsenhuber discovered an issue where page titles on private wikis could be exposed bypassing different page ids to index.php. In the case of the user not having correct permissions, they will now be redirected to Special:BadTitle. CVE-2011-4361 Tim Starling discovered that action=ajax requests were dispatched to the relevant function without any read permission checks being done. This could have led to data leakage on private wikis. For the oldstable distribution (lenny), these problems have been fixed in version 1:1.12.0-2lenny9. For the stable distribution (squeeze), these problems have been fixed in version 1:1.15.5-2squeeze2. For the unstable distribution (sid), these problems have been fixed in version 1:1.15.5-5. We recommend that you upgrade your mediawiki packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Various vulnerabilities identified in MediaWiki result in potential security threats including XSS and unauthorized data exposure, necessitating suggested software updates.. MediaWiki Update, Debian Advisory, XSS Issues, Security Risks, Remote Exploits. . LinuxSecurity.com Team

Calendar 2 Dec 19, 2011 Debian
87
Ls Advisories Debian Esm H240
Price Tag 1security advisoryremote attacksession hijack

Debian: DSA-1944-2 Urgent: Request-Tracker Session Hijack Exploit

Mikal Gule discovered that request-tracker, an extensible trouble-ticket tracking system, is prone to an attack, where an attacker with access to the same domain can hijack a user's RT session. . - ------------------------------------------------------------------------ Debian Security Advisory DSA-1944-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Steffen Joeris December 03, 2009 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : request-tracker3.4/request-tracker3.6 Vulnerability : session hijack Problem type : remote Debian-specific: no CVE Id : CVE-2009-3585 Mikal Gule discovered that request-tracker, an extensible trouble-ticket tracking system, is prone to an attack, where an attacker with access to the same domain can hijack a user's RT session. For the stable distribution (lenny), this problem has been fixed in version 3.6.7-5+lenny3. For the oldstable distribution (etch), this problem has been fixed in version 3.6.1-4+etch1 of request-tracker3.6 and version 3.4.5-2+etch1 of request-tracker3.4. For the testing distribution (squeeze), this problem will be fixed soon. For the unstable distribution (sid), this problem has been fixed in version 3.6.9-2. We recommend that you upgrade your request-tracker packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 4.0 alias etch - ------------------------------- Debian (oldstable) - ------------------ Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64,mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 24450 41891b8a012e671b706facdf4ece3402 Size/MD5 checksum: 23488 3c3914d16ad3e719cd502e2490561cc0 Size/MD5 checksum: 916 c03c1972b5ccab3574f9dfdd3fec0bee Size/MD5 checksum: 876 5a18cf29db217c6fd2265f6923a938cb Size/MD5 checksum: 1410154 16c8007cba54669e6c9de95cfc680b2a Size/MD5 checksum: 1545708 40c5a828fadaeef9e150255a517d0b17 Architecture independent packages: Size/MD5 checksum: 118264 318517b3d5539a84dee1639710048d92 Size/MD5 checksum: 117786 6f3da07edc9499cc282ceed8e71cf26d Size/MD5 checksum: 120578 e404452bd2f9128255550644b26c72de Size/MD5 checksum: 1198788 9af1648e53a722155dfd9acaaaf364cd Size/MD5 checksum: 92002 009fe1090c6142409210f3304f63240d Size/MD5 checksum: 1315556 9a06544261bd4b7800ae89065d4f4317 Size/MD5 checksum: 146902 8c4a83429ef704025849373a24cf06d5 Size/MD5 checksum: 92402 2737f376b27e6c3087dd355e5977edb5 Debian GNU/Linux 5.0 alias lenny - -------------------------------- Debian (stable) - --------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 1764471 46c0b29cd14010ee6a3f181743aeb6ef Size/MD5 checksum: 1623 b8a904d8fa89cf4ea78fce2d95d95701 Size/MD5 checksum: 51485 7b588a81fe9cbaa4bd9ac7d07b76d8f8 Architecture independent packages: Size/MD5 checksum: 185574 f71cdd55d18a69d908eea7f35434098c Size/MD5 checksum: 185676 82fe2682e028c113f469117937649636 Size/MD5 checksum: 187274 15328ffc1f76bd4e864c9c0faf4a4724 Size/MD5 checksum: 185576 6c40b8a471370911da6e12cdc6b85727 Size/MD5 checksum: 1540476 9d2cff7aca09a68a7b2707f91a6272ca Size/MD5 checksum: 215800 5052e370d018a81b9b786eb539b7cb05 These files will probably be moved into the stable distribution on its next update. ---------------------------------------------------------------------------------- For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Ubuntu Security Notice USN-4267-1 tackles a vulnerability in OpenSSH that could allow for unauthorized access. Update advised.. Session Hijack, Request Tracker, Debian Security, Remote Attack. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 03, 2009 Important Debian
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here