Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity updatecritical

Red Hat: RHSA-2005:069-01 Critical: Perl DBI File Exploit

An updated perl-DBI package that fixes a temporary file flaw in DBI::ProxyServer is now available.. - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Updated perl-DBI package fixes security issue Advisory ID: RHSA-2005:069-01 Advisory URL: https://access.redhat.com/errata/RHSA-2005:069.html Issue date: 2005-02-01 Updated on: 2005-02-01 Product: Red Hat Enterprise Linux CVE Names: CAN-2005-0077 - ---------------------------------------------------------------------1. Summary: An updated perl-DBI package that fixes a temporary file flaw in DBI::ProxyServer is now available. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64 Red Hat Linux Advanced Workstation 2.1 - ia64 Red Hat Enterprise Linux ES version 2.1 - i386 Red Hat Enterprise Linux WS version 2.1 - i386 Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 3. Problem description: DBI is a database access Application Programming Interface (API) for the Perl programming language. The Debian Security Audit Project discovered that the DBI library creates a temporary PID file in an insecure manner. A local user could overwrite or create files as a different user who happens to run an application which uses DBI::ProxyServer. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0077 to this issue. Users should update to this erratum package which disables the temporary PID file unless configured. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the RedHat Update Agent, use the following command: up2date For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system: https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/10/ 5. Bug IDs fixed (http://bugzilla.redhat.com/): 145577 - CAN-2005-0077 perl-DBI insecure temporary file usage 6. RPMs required: Red Hat Enterprise Linux AS (Advanced Server) version 2.1: SRPMS: b614c046679c98e6cee4b3ef143aff6e perl-DBI-1.18-3.src.rpm i386: 22af0266ecb99d0997a2d9f245e3a048 perl-DBI-1.18-3.i386.rpm ia64: c77842c2d3164aaaccbdbc835b28834b perl-DBI-1.18-3.ia64.rpm Red Hat Linux Advanced Workstation 2.1: SRPMS: b614c046679c98e6cee4b3ef143aff6e perl-DBI-1.18-3.src.rpm ia64: c77842c2d3164aaaccbdbc835b28834b perl-DBI-1.18-3.ia64.rpm Red Hat Enterprise Linux ES version 2.1: SRPMS: b614c046679c98e6cee4b3ef143aff6e perl-DBI-1.18-3.src.rpm i386: 22af0266ecb99d0997a2d9f245e3a048 perl-DBI-1.18-3.i386.rpm Red Hat Enterprise Linux WS version 2.1: SRPMS: b614c046679c98e6cee4b3ef143aff6e perl-DBI-1.18-3.src.rpm i386: 22af0266ecb99d0997a2d9f245e3a048 perl-DBI-1.18-3.i386.rpm Red Hat Enterprise Linux AS version 3: SRPMS: eabf3cd83dd61c9b09d2bb6e2160755a perl-DBI-1.32-9.src.rpm i386: 6aea6d47ab2a26300af6ed577405e6b7 perl-DBI-1.32-9.i386.rpm ia64: 9f9dbb9313e84f86908b00aeb737c424 perl-DBI-1.32-9.ia64.rpm ppc: ff90be122c3636ba3b2b253428092633 perl-DBI-1.32-9.ppc.rpm s390: fc8faf4640441c1b5cd77972a23ac4ec perl-DBI-1.32-9.s390.rpm s390x: 371823a6fb25f64dd773073c814d513b perl-DBI-1.32-9.s390x.rpm x86_64: 86936f627f02c8f96da5467c536997e6 perl-DBI-1.32-9.x86_64.rpm Red Hat Desktop version 3: SRPMS: eabf3cd83dd61c9b09d2bb6e2160755a perl-DBI-1.32-9.src.rpm i386: 6aea6d47ab2a26300af6ed577405e6b7 perl-DBI-1.32-9.i386.rpm x86_64: 86936f627f02c8f96da5467c536997e6 perl-DBI-1.32-9.x86_64.rpm Red HatEnterprise Linux ES version 3: SRPMS: eabf3cd83dd61c9b09d2bb6e2160755a perl-DBI-1.32-9.src.rpm i386: 6aea6d47ab2a26300af6ed577405e6b7 perl-DBI-1.32-9.i386.rpm ia64: 9f9dbb9313e84f86908b00aeb737c424 perl-DBI-1.32-9.ia64.rpm x86_64: 86936f627f02c8f96da5467c536997e6 perl-DBI-1.32-9.x86_64.rpm Red Hat Enterprise Linux WS version 3: SRPMS: eabf3cd83dd61c9b09d2bb6e2160755a perl-DBI-1.32-9.src.rpm i386: 6aea6d47ab2a26300af6ed577405e6b7 perl-DBI-1.32-9.i386.rpm ia64: 9f9dbb9313e84f86908b00aeb737c424 perl-DBI-1.32-9.ia64.rpm x86_64: 86936f627f02c8f96da5467c536997e6 perl-DBI-1.32-9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CAN-2005-0077 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2005 Red Hat, Inc. . Debian releases updated version of python-requests to address CVE-2023-XXXX vulnerability. Critical fix provided for various editions.. perl DBI, security patch, Red Hat advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 01, 2005 Critical Red Hat
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebianaccess control

Debian: Serious Access Control Vulnerability in Ntop Exposure Risk

Using ntop to distribute network traffic through the network, it is possible to access arbitrary files on the local filesystem. Since ntop runs as root uid, guess what that means, even /etc/shadow got unsecured.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------------- Debian Security Advisory This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Martin Schulze August 7, 2000 - ---------------------------------------------------------------------------- Package: ntop Vulnerability: remote file exploit Debian-specific: no Vulnerable: yes Using ntop to distribute network traffic through the network, i.e. running ntop as webserver, it is possible to access arbitrary files on the local filesystem. Since ntop runs as root uid, guess what that means, even /etc/shadow got unsecured. Since ntop comes with its own simple web server this problem is not a result of another webserver insecurity. Debian GNU/Linux 2.1 alias slink - -------------------------------- The "ntop" package is not a part of Debian 2.1. No fix is necessary. Debian 2.2 alias potato - ----------------------- This version of Debian is not yet released. Fixes are currently available for Alpha, ARM, Intel ia32, Motorola 680x0, PowerPC and the Sun Sparc architecture. Source archives: MD5 checksum: 8d39ab8c1d330ade898bf0ebf78b829f MD5 checksum: 5259e2f5b4a191836dca47c3d354f4f0 MD5 checksum: 9031a2001935b7a4882f8427f0edea15 Alpha architecture: MD5 checksum: 517dbc9a62c246931dcd48e213bfbe3f ARM architecture: MD5 checksum: bf0e6a3d630bb71b24f26457be93d362 Intel ia32 architecture: MD5 checksum: 1da340aa9ef9131e17edb3f656c167e0 Motorola 680x0 architecture: MD5 checksum: fcb78534a1dbaf29994e4a9e49909d96 PowerPC architecture: MD5 checksum: b2322adefed307c07b243aeab0d3a41a Sun Sparcarchitecture: MD5 checksum: 0b5b46223a907dfd931d59d8025e73e9 Debian Unstable alias woody - --------------------------- This version of Debian is not yet released and reflects the current development release. Fixes are the same as for potato. - ---------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable updates For dpkg-ftp: dists/stable/updates Mailing list: debian-security- This email address is being protected from spambots. You need JavaScript enabled to view it. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.1 (GNU/Linux) Comment: For info see The GNU Privacy Guard iD8DBQE5jyi+W5ql+IAeqTIRAiFGAJ9EtloI2O+JOx9RE47TZ3bMv9meEQCcDjsk DVwsZ/8wxXl5yzPch/efuMA=mon4 -----END PGP SIGNATURE----- . Explore the ntop weakness enabling unauthorized file access on Debian systems; prompt fixes released.. Ntop Security, Debian Access Issue, File Exploit Details. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 08, 2000 Critical Debian
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here