Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryUbuntuevolution-data-server

Ubuntu 11.10: 1547-1 Moderate: libGData Man In The Middle Attack

Applications using GData services could be made to expose sensitiveinformation over the network.. =========================================================================Ubuntu Security Notice USN-1547-1 August 28, 2012 libgdata, evolution-data-server vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.04 LTS Summary: Applications using GData services could be made to expose sensitive information over the network. Software Description: - libgdata: Library to access GData services - evolution-data-server: Evolution suite data server Details: Vreixo Formoso discovered that the libGData library, as used by Evolution and other applications, did not properly verify SSL certificates. A remote attacker could exploit this to perform a man in the middle attack to view sensitive information or alter data transmitted via the GData protocol. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: libgdata13 0.9.1-0ubuntu2.1 Ubuntu 11.04: libgdata11 0.8.0-0ubuntu1.1 Ubuntu 10.04 LTS: libgdata-google1.2-1 2.28.3.1-0ubuntu6.1 libgdata1.2-1 2.28.3.1-0ubuntu6.1 libgdata6 0.5.2-0ubuntu1.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1547-1 CVE-2012-1177 Package Information: https://launchpad.net/ubuntu/+source/libgdata/0.9.1-0ubuntu2.1 https://launchpad.net/ubuntu/+source/libgdata/0.8.0-0ubuntu1.1 https://launchpad.net/ubuntu/+source/evolution-data-server/2.28.3.1-0ubuntu6.1 https://launchpad.net/ubuntu/+source/libgdata/0.5.2-0ubuntu1.1 . Security advisory for Ubuntu regarding vulnerabilities in libGData and evolution-data-server, which may lead to exposure of confidential information.. data exposure,security advisory, libgdata update, ubuntu security. . LinuxSecurity.com Team

Calendar 2 Aug 28, 2012 Ubuntu
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisoryGentooremote threat

Gentoo: GLSA-201208-06 Normal: libgdata Man-in-the-Middle Attack

A vulnerability in libgdata could allow remote attackers to perform man-in-the-middle attacks.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201208-06 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: libgdata: Man-in-the-Middle attack Date: August 14, 2012 Bugs: #408245 ID: 201208-06 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= A vulnerability in libgdata could allow remote attackers to perform man-in-the-middle attacks. Background ========= libgdata is a GLib-based library for accessing online service APIs using the GData protocol. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-libs/libgdata < 0.8.1-r2 > = 0.8.1-r2 Description ========== An error in the "_gdata_service_build_session()" function of gdata-service.c prevents libgdata from properly validating certificates. Impact ===== A remote attacker could perform man-in-the-middle attacks to spoof arbitrary SSL servers via a crafted certificate. Workaround ========= There is no known workaround at this time. Resolution ========= All libgdata users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =dev-libs/libgdata-0.8.1-r2" References ========= [ 1 ] CVE-2012-1177 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1177 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201208-06 Concerns? ======== Security is a primary focus ofGentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2012 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . A vulnerability in libgdata exposes users to man-in-the-middle attacks. Immediate upgrading is recommended to mitigate threats.. libgdata,Gentoo Security,Remote Threats,Man-in-the-Middle,Security Advisory. . LinuxSecurity.com Team

Calendar 2 Aug 14, 2012 Gentoo
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebianmoderate severity

Debian: DSA-2482-1 Moderate: Libgdata Certificate Validation Issue

Vreixo Formoso discovered that libgdata, a library used to access various Google services, wasn't validating certificates against trusted system root CAs when using an https connection. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-2482-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Yves-Alexis Perez June 2, 2012 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : libgdata Vulnerability : insufficient certificate validation Problem type : remote Debian-specific: no CVE ID : CVE-2012-2653 Debian Bug : 664032 Vreixo Formoso discovered that libgdata, a library used to access various Google services, wasn't validating certificates against trusted system root CAs when using an https connection. For the stable distribution (squeeze), this problem has been fixed in version 0.6.4-2+squeeze1. For the testing distribution (wheezy), this problem has been fixed in version 0.10.2-1. For the unstable distribution (sid), this problem has been fixed in version 0.10.2-1. We recommend that you upgrade your libgdata packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Improve libgdata to address the inadequate certificate verification problems highlighted in the recent Debian security announcement.. Libgdata Security Update,Debian Certificate Issue,Remote Security Threat. . LinuxSecurity.com Team

Calendar 2 Jun 02, 2012 Debian
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysecurity issueremote access

Debian: DSA-2482-1 Moderate: libgdata Insufficient Certificate Check

Vreixo Formoso discovered that libgdata, a library used to access various Google services, wasn't validating certificates against trusted system root CAs when using an https connection. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-2482-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Yves-Alexis Perez June 2, 2012 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : libgdata Vulnerability : insufficient certificate validation Problem type : remote Debian-specific: no CVE ID : CVE-2012-2653 Debian Bug : 664032 Vreixo Formoso discovered that libgdata, a library used to access various Google services, wasn't validating certificates against trusted system root CAs when using an https connection. For the stable distribution (squeeze), this problem has been fixed in version 0.6.4-2+squeeze1. For the testing distribution (wheezy), this problem has been fixed in version 0.10.2-1. For the unstable distribution (sid), this problem has been fixed in version 0.10.2-1. We recommend that you upgrade your libgdata packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . The latest Debian update DSA-2482-2 tackles vulnerabilities in libgdata related to secure HTTP links and trust verification concerns in certificates.. Debian Security Advisory, libgdata, insufficient validation, certificate trust, remote access. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 02, 2012 Important Debian
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here