Alerts This Week
Warning Icon 1 631
Alerts This Week
Warning Icon 1 631

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of serviceUbuntu

Ubuntu 23.04 USN-6401-1 Critical FreeRDP Input Denial of Service

Several security issues were fixed in FreeRDP.. ========================================================================== Ubuntu Security Notice USN-6401-1 October 04, 2023 freerdp2 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 23.04 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS (Available with Ubuntu Pro) Summary: Several security issues were fixed in FreeRDP. Software Description: - freerdp2: RDP client for Windows Terminal Services Details: It was discovered that FreeRDP did not properly manage certain inputs. A malicious server could use this issue to cause FreeRDP clients to crash, resulting in a denial of service, or possibly obtain sensitive information. (cve-2023-39350, cve-2023-39351, CVE-2023-39353, CVE-2023-39354, CVE-2023-40181, CVE-2023-40188, CVE-2023-40589) It was discovered that FreeRDP did not properly manage certain inputs. A malicious server could use this issue to cause FreeRDP clients to crash, resulting in a denial of service, or possibly execute arbitrary code. (cve-2023-40186 CVE-2023-40567, CVE-2023-40569) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 23.04: libfreerdp2-2 2.10.0+dfsg1-1ubuntu0.2 Ubuntu 22.04 LTS: libfreerdp2-2 2.6.1+dfsg1-3ubuntu2.4 libwinpr2-2 2.6.1+dfsg1-3ubuntu2.4 libwinpr2-dev 2.6.1+dfsg1-3ubuntu2.4 Ubuntu 20.04 LTS: libfreerdp2-2 2.2.0+dfsg1-0ubuntu0.20.04.5 libwinpr2-2 2.2.0+dfsg1-0ubuntu0.20.04.5 libwinpr2-dev 2.2.0+dfsg1-0ubuntu0.20.04.5 Ubuntu 18.04 LTS (Available with Ubuntu Pro): libfreerdp2-22.2.0+dfsg1-0ubuntu0.18.04.4+esm1 libwinpr2-2 2.2.0+dfsg1-0ubuntu0.18.04.4+esm1 libwinpr2-dev 2.2.0+dfsg1-0ubuntu0.18.04.4+esm1 In general, a standard system update will make all the necessary changes. References: CVE-2023-39350, CVE-2023-39351, CVE-2023-39353, CVE-2023-39354, CVE-2023-40181, CVE-2023-40186, CVE-2023-40188, CVE-2023-40567, CVE-2023-40569, CVE-2023-40589 Package Information: https://launchpad.net/ubuntu/+source/freerdp2/2.10.0+dfsg1-1ubuntu0.2 https://launchpad.net/ubuntu/+source/freerdp2/2.6.1+dfsg1-3ubuntu2.4 https://launchpad.net/ubuntu/+source/freerdp2/2.2.0+dfsg1-0ubuntu0.20.04.5 . Debian Security Advisory DSA-4801-1 details essential patches for OpenSSL, impacting various Debian releases.. FreeRDP Update, Ubuntu Security Notice, Security Patch, Denial of Service, Input Issues. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 04, 2023 Critical Ubuntu
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity update

Red Hat: RHSA-2011:1360-01 Moderate Advisory for Xorg Input Problems

Updated xorg-x11 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: xorg-x11 security update Advisory ID: RHSA-2011:1360-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2011:1360.html Issue date: 2011-10-06 CVE Names: CVE-2010-4818 CVE-2010-4819 ==================================================================== 1. Summary: Updated xorg-x11 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Description: X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Multiple input sanitization flaws were found in the X.Org GLX (OpenGL extension to the X Window System) extension. A malicious, authorized client could use these flaws to crash the X.Org server or, potentially, execute arbitrary code with root privileges. (CVE-2010-4818) An input sanitization flaw was found in the X.Org Render extension. A malicious, authorized client could use this flaw to leak arbitrary memory from the X.Org server process, or possibly crash the X.Orgserver. (CVE-2010-4819) Users of xorg-x11 should upgrade to these updated packages, which contain a backported patch to resolve these issues. All running X.Org server instances must be restarted for this update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 740954 - CVE-2010-4818 X.org: multiple GLX input sanitization flaws 740961 - CVE-2010-4819 X.org: ProcRenderAddGlyphs input sanitization flaw 6. Package List: Red Hat Enterprise Linux AS version4: Source: i386: xorg-x11-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.i386.rpm xorg-x11-Xnest-6.8.2-1.EL.70.i386.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-doc-6.8.2-1.EL.70.i386.rpm xorg-x11-font-utils-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-sdk-6.8.2-1.EL.70.i386.rpm xorg-x11-tools-6.8.2-1.EL.70.i386.rpm xorg-x11-twm-6.8.2-1.EL.70.i386.rpm xorg-x11-xauth-6.8.2-1.EL.70.i386.rpm xorg-x11-xdm-6.8.2-1.EL.70.i386.rpm xorg-x11-xfs-6.8.2-1.EL.70.i386.rpm ia64: xorg-x11-6.8.2-1.EL.70.ia64.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.ia64.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.ia64.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.ia64.rpm xorg-x11-Xnest-6.8.2-1.EL.70.ia64.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.ia64.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.ia64.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.ia64.rpm xorg-x11-devel-6.8.2-1.EL.70.ia64.rpm xorg-x11-doc-6.8.2-1.EL.70.ia64.rpm xorg-x11-font-utils-6.8.2-1.EL.70.ia64.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.ia64.rpm xorg-x11-sdk-6.8.2-1.EL.70.ia64.rpm xorg-x11-tools-6.8.2-1.EL.70.ia64.rpm xorg-x11-twm-6.8.2-1.EL.70.ia64.rpm xorg-x11-xauth-6.8.2-1.EL.70.ia64.rpm xorg-x11-xdm-6.8.2-1.EL.70.ia64.rpm xorg-x11-xfs-6.8.2-1.EL.70.ia64.rpm ppc: xorg-x11-6.8.2-1.EL.70.ppc.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.ppc.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.ppc64.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.ppc.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.ppc64.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.ppc.rpm xorg-x11-Xnest-6.8.2-1.EL.70.ppc.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.ppc.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.ppc.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.ppc64.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.ppc.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.ppc64.rpm xorg-x11-devel-6.8.2-1.EL.70.ppc.rpm xorg-x11-devel-6.8.2-1.EL.70.ppc64.rpm xorg-x11-doc-6.8.2-1.EL.70.ppc.rpm xorg-x11-font-utils-6.8.2-1.EL.70.ppc.rpm xorg-x11-libs-6.8.2-1.EL.70.ppc.rpm xorg-x11-libs-6.8.2-1.EL.70.ppc64.rpm xorg-x11-sdk-6.8.2-1.EL.70.ppc.rpm xorg-x11-tools-6.8.2-1.EL.70.ppc.rpm xorg-x11-twm-6.8.2-1.EL.70.ppc.rpm xorg-x11-xauth-6.8.2-1.EL.70.ppc.rpm xorg-x11-xdm-6.8.2-1.EL.70.ppc.rpm xorg-x11-xfs-6.8.2-1.EL.70.ppc.rpm s390: xorg-x11-6.8.2-1.EL.70.s390.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.s390.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.s390.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.s390.rpm xorg-x11-Xnest-6.8.2-1.EL.70.s390.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.s390.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.s390.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.s390.rpm xorg-x11-devel-6.8.2-1.EL.70.s390.rpm xorg-x11-font-utils-6.8.2-1.EL.70.s390.rpm xorg-x11-libs-6.8.2-1.EL.70.s390.rpm xorg-x11-tools-6.8.2-1.EL.70.s390.rpm xorg-x11-twm-6.8.2-1.EL.70.s390.rpm xorg-x11-xauth-6.8.2-1.EL.70.s390.rpm xorg-x11-xdm-6.8.2-1.EL.70.s390.rpm xorg-x11-xfs-6.8.2-1.EL.70.s390.rpm s390x: xorg-x11-6.8.2-1.EL.70.s390x.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.s390.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.s390x.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.s390.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.s390x.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.s390x.rpm xorg-x11-Xnest-6.8.2-1.EL.70.s390x.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.s390x.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.s390.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.s390x.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.s390.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.s390x.rpm xorg-x11-devel-6.8.2-1.EL.70.s390.rpm xorg-x11-devel-6.8.2-1.EL.70.s390x.rpm xorg-x11-font-utils-6.8.2-1.EL.70.s390x.rpm xorg-x11-libs-6.8.2-1.EL.70.s390.rpm xorg-x11-libs-6.8.2-1.EL.70.s390x.rpm xorg-x11-tools-6.8.2-1.EL.70.s390x.rpm xorg-x11-twm-6.8.2-1.EL.70.s390x.rpm xorg-x11-xauth-6.8.2-1.EL.70.s390x.rpm xorg-x11-xdm-6.8.2-1.EL.70.s390x.rpm xorg-x11-xfs-6.8.2-1.EL.70.s390x.rpm x86_64: xorg-x11-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xnest-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.x86_64.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.x86_64.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.x86_64.rpm xorg-x11-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-devel-6.8.2-1.EL.70.x86_64.rpm xorg-x11-doc-6.8.2-1.EL.70.x86_64.rpm xorg-x11-font-utils-6.8.2-1.EL.70.x86_64.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.x86_64.rpm xorg-x11-sdk-6.8.2-1.EL.70.x86_64.rpm xorg-x11-tools-6.8.2-1.EL.70.x86_64.rpm xorg-x11-twm-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xauth-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xdm-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xfs-6.8.2-1.EL.70.x86_64.rpm Red Hat Enterprise Linux Desktop version4: Source: i386: xorg-x11-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.i386.rpm xorg-x11-Xnest-6.8.2-1.EL.70.i386.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-doc-6.8.2-1.EL.70.i386.rpm xorg-x11-font-utils-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-sdk-6.8.2-1.EL.70.i386.rpm xorg-x11-tools-6.8.2-1.EL.70.i386.rpm xorg-x11-twm-6.8.2-1.EL.70.i386.rpm xorg-x11-xauth-6.8.2-1.EL.70.i386.rpm xorg-x11-xdm-6.8.2-1.EL.70.i386.rpm xorg-x11-xfs-6.8.2-1.EL.70.i386.rpm x86_64: xorg-x11-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xnest-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.x86_64.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.x86_64.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.x86_64.rpm xorg-x11-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-devel-6.8.2-1.EL.70.x86_64.rpm xorg-x11-doc-6.8.2-1.EL.70.x86_64.rpm xorg-x11-font-utils-6.8.2-1.EL.70.x86_64.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.x86_64.rpm xorg-x11-sdk-6.8.2-1.EL.70.x86_64.rpm xorg-x11-tools-6.8.2-1.EL.70.x86_64.rpm xorg-x11-twm-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xauth-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xdm-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xfs-6.8.2-1.EL.70.x86_64.rpm Red Hat Enterprise Linux ES version4: Source: i386: xorg-x11-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.i386.rpm xorg-x11-Xnest-6.8.2-1.EL.70.i386.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-doc-6.8.2-1.EL.70.i386.rpm xorg-x11-font-utils-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-sdk-6.8.2-1.EL.70.i386.rpm xorg-x11-tools-6.8.2-1.EL.70.i386.rpm xorg-x11-twm-6.8.2-1.EL.70.i386.rpm xorg-x11-xauth-6.8.2-1.EL.70.i386.rpm xorg-x11-xdm-6.8.2-1.EL.70.i386.rpm xorg-x11-xfs-6.8.2-1.EL.70.i386.rpm ia64: xorg-x11-6.8.2-1.EL.70.ia64.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.ia64.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.ia64.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.ia64.rpm xorg-x11-Xnest-6.8.2-1.EL.70.ia64.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.ia64.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.ia64.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.ia64.rpm xorg-x11-devel-6.8.2-1.EL.70.ia64.rpm xorg-x11-doc-6.8.2-1.EL.70.ia64.rpm xorg-x11-font-utils-6.8.2-1.EL.70.ia64.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.ia64.rpm xorg-x11-sdk-6.8.2-1.EL.70.ia64.rpm xorg-x11-tools-6.8.2-1.EL.70.ia64.rpm xorg-x11-twm-6.8.2-1.EL.70.ia64.rpm xorg-x11-xauth-6.8.2-1.EL.70.ia64.rpm xorg-x11-xdm-6.8.2-1.EL.70.ia64.rpm xorg-x11-xfs-6.8.2-1.EL.70.ia64.rpm x86_64: xorg-x11-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xnest-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.x86_64.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.x86_64.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.x86_64.rpm xorg-x11-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-devel-6.8.2-1.EL.70.x86_64.rpm xorg-x11-doc-6.8.2-1.EL.70.x86_64.rpm xorg-x11-font-utils-6.8.2-1.EL.70.x86_64.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.x86_64.rpm xorg-x11-sdk-6.8.2-1.EL.70.x86_64.rpm xorg-x11-tools-6.8.2-1.EL.70.x86_64.rpm xorg-x11-twm-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xauth-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xdm-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xfs-6.8.2-1.EL.70.x86_64.rpm Red Hat Enterprise Linux WS version4: Source: i386: xorg-x11-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.i386.rpm xorg-x11-Xnest-6.8.2-1.EL.70.i386.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-doc-6.8.2-1.EL.70.i386.rpm xorg-x11-font-utils-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-sdk-6.8.2-1.EL.70.i386.rpm xorg-x11-tools-6.8.2-1.EL.70.i386.rpm xorg-x11-twm-6.8.2-1.EL.70.i386.rpm xorg-x11-xauth-6.8.2-1.EL.70.i386.rpm xorg-x11-xdm-6.8.2-1.EL.70.i386.rpm xorg-x11-xfs-6.8.2-1.EL.70.i386.rpm ia64: xorg-x11-6.8.2-1.EL.70.ia64.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.ia64.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.ia64.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.ia64.rpm xorg-x11-Xnest-6.8.2-1.EL.70.ia64.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.ia64.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.ia64.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.ia64.rpm xorg-x11-devel-6.8.2-1.EL.70.ia64.rpm xorg-x11-doc-6.8.2-1.EL.70.ia64.rpm xorg-x11-font-utils-6.8.2-1.EL.70.ia64.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.ia64.rpm xorg-x11-sdk-6.8.2-1.EL.70.ia64.rpm xorg-x11-tools-6.8.2-1.EL.70.ia64.rpm xorg-x11-twm-6.8.2-1.EL.70.ia64.rpm xorg-x11-xauth-6.8.2-1.EL.70.ia64.rpm xorg-x11-xdm-6.8.2-1.EL.70.ia64.rpm xorg-x11-xfs-6.8.2-1.EL.70.ia64.rpm x86_64: xorg-x11-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGL-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.i386.rpm xorg-x11-Mesa-libGLU-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xdmx-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xnest-6.8.2-1.EL.70.x86_64.rpm xorg-x11-Xvfb-6.8.2-1.EL.70.x86_64.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-6.8.2-1.EL.70.x86_64.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-deprecated-libs-devel-6.8.2-1.EL.70.x86_64.rpm xorg-x11-devel-6.8.2-1.EL.70.i386.rpm xorg-x11-devel-6.8.2-1.EL.70.x86_64.rpm xorg-x11-doc-6.8.2-1.EL.70.x86_64.rpm xorg-x11-font-utils-6.8.2-1.EL.70.x86_64.rpm xorg-x11-libs-6.8.2-1.EL.70.i386.rpm xorg-x11-libs-6.8.2-1.EL.70.x86_64.rpm xorg-x11-sdk-6.8.2-1.EL.70.x86_64.rpm xorg-x11-tools-6.8.2-1.EL.70.x86_64.rpm xorg-x11-twm-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xauth-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xdm-6.8.2-1.EL.70.x86_64.rpm xorg-x11-xfs-6.8.2-1.EL.70.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2010-4818 https://access.redhat.com/security/cve/CVE-2010-4819 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2011 Red Hat, Inc. . New xorg-x11 updates released for Red Hat Enterprise Linux 4 fix various moderate security vulnerabilities.. xorg-x11 security update, Red Hat security advisory, input issues fixes. . LinuxSecurity.com Team

Calendar 2 Oct 06, 2011 Red Hat
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity updatefedora

Fedora 11: 2009-7315 Critical: Drupal XSS & Input Format Flaws

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-7315 2009-07-03 18:38:14 -------------------------------------------------------------------------------- Name : drupal Product : Fedora 11 Version : 6.13 Release : 1.fc11 URL : Summary : An open-source content-management platform Description : Equipped with a powerful blend of features, Drupal is a Content Management System written in PHP that can support a variety of websites ranging from personal weblogs to large community-driven websites. Drupal is highly configurable, skinnable, and secure. -------------------------------------------------------------------------------- Update Information: Fixes SA-CORE-2009-007 ( ). Remember to log in to your site as the admin user before upgrading this package. After upgrading the package, browse to to run the upgrade script. Multiple vulnerabilities and weaknesses were discovered in Drupal. Cross-site scripting The Forum module does not correctly handle certain arguments obtained from the URL. By enticing a suitably privileged user to visit a specially crafted URL, a malicious user is able to insert arbitrary HTML and script code into forum pages. Such a cross-site scripting attack may lead to the malicious user gaining administrative access. Wikipedia has more information about cross-site scripting (XSS). This issue affects Drupal 6.x only. Input format access bypass User signatures have no separate input format, they use the format of the comment with which they are displayed. A user will no longer be able to edit a comment when an administrator changes the comment's input format to a format that is not accessible to the user. However they will still be able to modify their signature, which will then be processed by the new input format. If the new format is very permissive, via their signature, the user may be able to insert arbitrary HTML and script code into pages or, when the PHP filter isenabled for the new format, execute PHP code. This issue affects Drupal 6.x only. Password leaked in URL When an anonymous user fails to login due to mistyping his username or password, and the page he is on contains a sortable table, the (incorrect) username and password are included in links on the table. If the user visits these links the password may then be leaked to external sites via the HTTP referer. In addition, if the anonymous user is enticed to visit the site via a specially crafted URL while the Drupal page cache is enabled, a malicious user might be able to retrieve the (incorrect) username and password from the page cache. This issue affects both Drupal 5.x and Drupal 6.x -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 2 2009 Jon Ciesla - 6.13-1 - Update to 6.11, SA-CORE-2009-007. - Added clarifying text on module installation to readme, BZ 500707. -------------------------------------------------------------------------------- References: [ 1 ] Bug #500707 - drupal-README.fedora should give hints about where to install modules https://bugzilla.redhat.com/show_bug.cgi?id=500707 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update drupal' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Fixes SA-CORE-2009-007 ( ). Remember to log in to your site as the admin user before upgrading this package. After upgrading the package, browse to to run the upgrade script. Multiple vulnerabilitiesand weaknesses were discovered in Drupal. Cross-site scripting The Forum module does not correctly handle certain arguments obtained from the URL. By enticing a suitably privileged user to visit a specially crafted URL, a malicious user is able to insert arbitrary HTML and script code into forum pages. Such a cross-site scripting attack may lead to the malicious user gaining administrative access. Wikipedia has more information about cross-site scripting (XSS). This issue affects Drupal 6.x only. Input format access bypass User signatures have no separate input format, they use the format of the comment with which they are displayed. A user will no longer be able to edit a comment when an administrator changes the comment's input format to a format that is not accessible to the user. However they will still be able to modify their signature, which will then be processed by the new input format. If the new format is very permissive, via their signature, the user may be able to insert arbitrary HTML and script code into pages or, when the PHP filter is enabled for the new format, execute PHP code. This issue affects Drupal 6.x only. Password leaked in URL When an anonymous user fails to login due to mistyping his username or password, and the page he is on contains a sortable table, the (incorrect) username and password are included in links on the table. If the user visits these links the password may then be leaked to external sites via the HTTP referer. In addition, if the anonymous user is enticed to visit the site via a specially crafted URL while the Drupal page cache is enabled, a malicious user might be able to retrieve the (incorrect) username and password from the page cache. This issue affects both Drupal 5.x and Drupal 6.x. The recent Fedora enhancement from Drupal tackles various vulnerabilities and enhances the stability of the system.. Drupal Update,Fedora Security,XSS Fix,Input Issues,PHP CMS. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 03, 2009 Critical Fedora
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoocacti

Gentoo: GLSA-200803-18 Normal Severity: Cacti Input Issues

Multiple vulnerabilities were discovered in Cacti.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200803-18 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Cacti: Multiple vulnerabilities Date: March 10, 2008 Bugs: #209918 ID: 200803-18 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities were discovered in Cacti. Background ========= Cacti is a web-based network graphing and reporting tool. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-analyzer/cacti < 0.8.7b > = 0.8.7b Description ========== The following inputs are not properly sanitized before being processed: * "view_type" parameter in the file graph.php, "filter" parameter in the file graph_view.php, "action" and "login_username" parameters in the file index.php (CVE-2008-0783). * "local_graph_id" parameter in the file graph.php (CVE-2008-0784). * "graph_list" parameter in the file graph_view.php, "leaf_id" and "id" parameters in the file tree.php, "local_graph_id" in the file graph_xport.php (CVE-2008-0785). Furthermore, CRLF injection attack are possible via unspecified vectors(CVE-2008-0786). Impact ===== A remote attacker could exploit these vulnerabilities, leading to path disclosure, Cross-Site Scripting attacks, SQL injection, and HTTP response splitting. Workaround ========= There is no known workaround at this time. Resolution ========= All Cacti users should upgrade tothe latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-analyzer/cacti-0.8.7b" References ========= [ 1 ] CVE-2008-0783 https://www.cve.org/CVERecord?id=CVE-2008-0783 [ 2 ] CVE-2008-0784 https://www.cve.org/CVERecord?id=CVE-2008-0784 [ 3 ] CVE-2008-0785 https://www.cve.org/CVERecord?id=CVE-2008-0785 [ 4 ] CVE-2008-0786 https://www.cve.org/CVERecord?id=CVE-2008-0786 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200803-18 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2008 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - iD8DBQFH1bqruhJ+ozIKI5gRAsm3AJ9yHCjQWtpGb/2/IFipT1RsnasHkQCfSFwX /qhL5im0bEtuQPwuSa4xaVA=KmiL -----END PGP SIGNATURE----- . Numerous security flaws identified in Cacti impact various interfaces. Users must update to the latest secure release without delay.. Cacti Exploits,Gentoo Upgrades,Network Graphing Security. . LinuxSecurity.com Team

Calendar 2 Mar 10, 2008 Gentoo
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here