Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -4 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderatesecurity issue

Fedora 12: 2009-12674 Moderate: dstat Security Issue Update

This release fixes above mentioned security issue, adds several enhancements and fixes few other bugs. For complete information, please see changelog.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-12674 2009-12-04 22:41:38 -------------------------------------------------------------------------------- Name : dstat Product : Fedora 12 Version : 0.7.0 Release : 1.fc12 URL : Summary : Versatile resource statistics tool Description : Dstat is a versatile replacement for vmstat, iostat, netstat and ifstat. Dstat overcomes some of their limitations and adds some extra features, more counters and flexibility. Dstat is handy for monitoring systems during performance tuning tests, benchmarks or troubleshooting. Dstat allows you to view all of your system resources instantly, you can eg. compare disk usage in combination with interrupts from your IDE controller, or compare the network bandwidth numbers directly with the disk throughput (in the same interval). Dstat gives you detailed selective information in columns and clearly indicates in what magnitude and unit the output is displayed. Less confusion, less mistakes. -------------------------------------------------------------------------------- Update Information: This release fixes above mentioned security issue, adds several enhancements and fixes few other bugs. For complete information, please see changelog. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 3 2009 Jan Zeleny - 0.7.0-1 - rebased to 0.7.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #538459 - CVE-2009-3894 dstat insecure module search path https://bugzilla.redhat.com/show_bug.cgi?id=538459 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update dstat' atthe command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . This revision of dstat in Fedora 12 tackles vulnerabilities as it improves the efficiency of system resource tracking functionalities.. dstat security,Fedora update,system monitoring,software fix,resource statistics. . LinuxSecurity.com Team

Calendar 2 Dec 04, 2009 Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoramoderate severity

Fedora 11 Security Update: dstat Insecure Module Issue (2009-12663)

. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-12663 2009-12-04 22:41:27 -------------------------------------------------------------------------------- Name : dstat Product : Fedora 11 Version : 0.6.9 Release : 5.fc11 URL : Summary : Versatile resource statistics tool Description : Dstat is a versatile replacement for vmstat, iostat, netstat and ifstat. Dstat overcomes some of their limitations and adds some extra features, more counters and flexibility. Dstat is handy for monitoring systems during performance tuning tests, benchmarks or troubleshooting. Dstat allows you to view all of your system resources instantly, you can eg. compare disk usage in combination with interrupts from your IDE controller, or compare the network bandwidth numbers directly with the disk throughput (in the same interval). Dstat gives you detailed selective information in columns and clearly indicates in what magnitude and unit the output is displayed. Less confusion, less mistakes. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 3 2009 Jan Zeleny - 0.6.9-5 - added patch fixing security issue CVE-2009-3894 -------------------------------------------------------------------------------- References: [ 1 ] Bug #538459 - CVE-2009-3894 dstat insecure module search path https://bugzilla.redhat.com/show_bug.cgi?id=538459 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update dstat' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora 11 dstat revision resolves the vulnerability CVE-2009-3894 and improves performance tracking capabilities.. Fedora 11,Dstat Update,Security Issue,Performance Monitoring. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 04, 2009 Important Fedora
Banner 2 1028x280 1708121730 1 1771599631
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorymoderate severitydstat

Scientific Linux 5.x: CVE-2009-3894 Moderate Dstat Insecure Path

Moderate: dstat security update. Date: Tue, 1 Dec 2009 11:19:28 -0600 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA Moderate: dstat on SL5.x i386/x86_64 Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it." Synopsis: Moderate: dstat security update Issue date: 2009-11-30 CVE Names: CVE-2009-3894 CVE-2009-3894 dstat insecure module search path Robert Buchholz of the Gentoo Security Team reported a flaw in the Python module search path used in dstat. If a local attacker could trick a local user into running dstat from a directory containing a Python script that is named like an importable module, they could execute arbitrary code with the privileges of the user running dstat. (CVE-2009-3894) SL 5.x SRPMS: dstat-0.6.6-3.el5_4.1.src.rpm i386: dstat-0.6.6-3.el5_4.1.noarch.rpm x86_64: dstat-0.6.6-3.el5_4.1.noarch.rpm -Connie Sieh -Troy Dawson . A critical patch for dstat rectifies a vulnerable module directory issue found in Scientific Linux 5.x.. Dstat Security Update, Scientific Linux Security, Linux Application Security. . LinuxSecurity.com Team

Calendar 2 Dec 01, 2009 Scientific Linux
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity update

Red Hat Enterprise Linux 5: RHSA-2009:1619-01 Moderate Dstat Local Risk

An updated dstat package that fixes one security issue is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: dstat security update Advisory ID: RHSA-2009:1619-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2009:1619.html Issue date: 2009-11-30 CVE Names: CVE-2009-3894 ==================================================================== 1. Summary: An updated dstat package that fixes one security issue is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - noarch Red Hat Enterprise Linux Desktop (v. 5 client) - noarch 3. Description: Dstat is a versatile replacement for the vmstat, iostat, and netstat tools. Dstat can be used for performance tuning tests, benchmarks, and troubleshooting. Robert Buchholz of the Gentoo Security Team reported a flaw in the Python module search path used in dstat. If a local attacker could trick a local user into running dstat from a directory containing a Python script that is named like an importable module, they could execute arbitrary code with the privileges of the user running dstat. (CVE-2009-3894) All dstat users should upgrade to this updated package, which contains a backported patch to correct this issue. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 538459 - CVE-2009-3894 dstatinsecure module search path 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: noarch: dstat-0.6.6-3.el5_4.1.noarch.rpm Red Hat Enterprise Linux (v. 5 server): Source: noarch: dstat-0.6.6-3.el5_4.1.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2009-3894 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2009 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFLE+gYXlSAg2UNWIIRAr8iAJ4sJyTH6JKXhhVQ6BmqZQB614VWcgCdEbd0 pdjTrNWrUgFaLQWp0EhGX1U=FRhK -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The recent update to the dstat package for Red Hat Enterprise Linux 5 has resolved a moderate security vulnerability that could be exploited through local means.. Red Hat dstat Update,System Security Update,Local Attack Risk. . LinuxSecurity.com Team

Calendar 2 Nov 30, 2009 Red Hat
Banner 2 1028x280 1708121730 1 1771599631
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoocode execution

Gentoo: GLSA-200911-04 Normal: Dstat Untrusted Path Code Execution

An untrusted search path vulnerability in the dstat might result in the execution of arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200911-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: dstat: Untrusted search path Date: November 25, 2009 Bugs: #293497 ID: 200911-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= An untrusted search path vulnerability in the dstat might result in the execution of arbitrary code. Background ========= dstat is a versatile system resource monitor written in Python. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sys-apps/dstat < 0.6.9-r1 > = 0.6.9-r1 Description ========== Robert Buchholz of the Gentoo Security Team reported that dstat includes the current working directory and subdirectories in the Python module search path (sys.path) before calling "import". Impact ===== A local attacker could entice a user to run "dstat" from a directory containing a specially crafted Python module, resulting in the execution of arbitrary code with the privileges of the user running the application. Workaround ========= Do not run "dstat" from untrusted working directories. Resolution ========= All dstat users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =sys-apps/dstat-0.6.9-r1" References ========= [ 1 ] CVE-2009-3894 https://www.cve.org/CVERecord?id=CVE-2009-3894 Availability =========== This GLSA and any updates to it areavailable for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200911-04 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2009 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Gentoo Security Advisory GLSA 202311-05 highlights a vulnerability in the utility 'appname' which could lead to unauthorized memory access.. dstat security, untrusted path issue, code execution risk. . LinuxSecurity.com Team

Calendar 2 Nov 25, 2009 Gentoo
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here