Alerts This Week
Warning Icon 1 537
Alerts This Week
Warning Icon 1 537

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorybuffer overflowprivilege escalation

Gentoo: GLSA-200701-18 Critical: libgtk Privilege Heightening Concern

libgtop improperly handles filenames, possibly allowing for the execution of arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200701-17 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: libgtop: Privilege escalation Date: January 23, 2007 Bugs: #162169 ID: 200701-17 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= libgtop improperly handles filenames, possibly allowing for the execution of arbitrary code. Background ========= libgtop facilitates the libgtop_daemon, which is used by GNOME to obtain information about remote systems. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 gnome-base/libgtop < 2.14.6 > = 2.14.6 Description ========== Liu Qishuai discovered that glibtop_get_proc_map_s() in sysdeps/linux/procmap.c does not properly allocate memory for storing a filename, allowing certain filenames to cause the buffer to overflow on the stack. Impact ===== By tricking a victim into executing an application that uses the libgtop library (e.g. libgtop_daemon or gnome-system-monitor), a local attacker could specify a specially crafted filename to be used by libgtop causing a buffer overflow and possibly execute arbitrary code with the rights of the user running the application. Workaround ========= There is no known workaround at this time. Resolution ========= All libgtop users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=gnome-base/libgtop-2.14.6" References ========= [ 1 ] CVE-2007-0235 https://www.cve.org/CVERecord?id=CVE-2007-0235 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200701-17 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2007 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . libtop in Gentoo is exposed to privilege escalation due to inadequate filename management, resulting in a potential for code execution threats.. Libgtop, Privilege Escalation, Gentoo Security. . LinuxSecurity.com Team

Calendar 2 Jan 23, 2007 Gentoo
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticaldebian

Debian 2.2: DSA-098-1 Severe: Libgtop Unauthorized Access Vulnerability

libgtop_daemon runs as user nobody both bugs could be usedto gain access as the nobody user to a system running libgtop_daemon.. ------------------------------------------------------------------------ Debian Security Advisory DSA-098-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Wichert Akkerman January 9, 2002 ------------------------------------------------------------------------ Package : libgtop Problem type : remote nobody exploit Debian-specific: no Two different problems where found in libgtop-daemon: * The laboratory intexxia found a format string problem in the logging code from libgtop_daemon. There were two logging functions which are called when authorizing a client which could be exploited by a remote user. * Flavio Veloso found a buffer overflow in the function that authorizes clients Since libgtop_daemon runs as user nobody both bugs could be used to gain access as the nobody user to a system running libgtop_daemon. Both problems have been fixed in version 1.0.6-1.1 and we recommend you upgrade your libgtop-daemon package immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.2 alias potato --------------------------------- Potato was released for alpha, arm, i386, m68k, powerpc and sparc. Source archives: MD5 checksum: 19c9689fb62dd1ab26dcfc0a2580280d MD5 checksum: 3441b7110981688ecdb0e6941e5d4fb3 MD5 checksum: ad63df637697915b5326494a0ae4a337 Alpha architecture: MD5 checksum: 43c25fd2d11a6cc5c0f4c3d8f504a607 MD5 checksum: 264a9de99851b0e93521882c7bd1f0ed MD5 checksum: 951612c2774818884adbdfcaedfb6470 ARM architecture: MD5 checksum: eb273da007eb9687b0c9bc8891c6d515 MD5 checksum: e1b5a197e408b8d47af8324757449a46 MD5 checksum: 2ee33ee2f8d1816a16a078ea95bbfe09 Intel IA-32 architecture: MD5 checksum: 169c014d0fff9d24045ed733fb26aacc MD5 checksum: 9ed2aea64be71cf4c4e5dc6274d9c774 MD5 checksum: 321badb855ed000452f0180a2e557388 Motorola 680x0 architecture: MD5 checksum: b8b3aeee96118803d74b37b3a8a5d240 MD5 checksum: c530ab0d06eb946ae297748fcc616368 MD5 checksum: befab934a9b20ad578a59e4876cd941b PowerPC architecture: MD5 checksum: c7a4e133d3c23909d5467f2a96171a35 MD5 checksum: 433f3d7a8ccdff27b41f60ca6b57d4d8 MD5 checksum: c54fb9a3383358c613948785f525e57f Sun Sparc architecture: MD5 checksum: 506997561175c2d2428ad40bab64729f MD5 checksum: d9609e50f4feb156621e5970a93d81a8 MD5 checksum: c10da9a8c30b7570a95d82e73da6bf38 These packages will be moved into the stable distribution on its next revision. -- ---------------------------------------------------------------------------- apt-get: deb Debian -- Security Information stable/updates main dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian addresses critical unauthorized access issues in libgtop; updating recommended to safeguard systems.. libgtop Exploit,Nobody Access,Debian Updates,Buffer Overflow Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 08, 2002 Critical Debian
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here