Alerts This Week
Warning Icon 1 664
Alerts This Week
Warning Icon 1 664

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebianremote access

Debian 5.0 DSA-1739-1 Moderate: Mldonkey Remote Path Traversal Threat

It has been discovered that mldonkey, a client for several P2P networks, allows attackers to download arbitrary files using crafted requests to the HTTP console. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1739-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Florian Weimer March 13, 2009 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : mldonkey Vulnerability : path traversal Problem type : remote Debian-specific: no CVE Id(s) : CVE-2009-0753 Debian Bug : 516829 It has been discovered that mldonkey, a client for several P2P networks, allows attackers to download arbitrary files using crafted requests to the HTTP console. For the stable distribution (etch), this problem has been fixed in version 2.9.5-2+lenny1. For the unstable distribution (sid), this problem will be fixed soon. The old stable distribution (etch) is not affected by this problem. We recommend that you upgrade your mldonkey packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny - -------------------------------- Source archives: Size/MD5 checksum: 1894 80d8a01209691f1ab695073a77bf671a Size/MD5 checksum: 3346730 280207370693e16ae51d4a3b28d6424e Size/MD5 checksum: 141220 515bfab6892fc58b4a46fc0b26a1fd72 alpha architecture (DEC Alpha) Size/MD5 checksum: 2950652 d344e8130032020b12862ff2c4b973d1 Size/MD5 checksum: 2123122 0e0b5b4aa226a5447e84154666cd3880 amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 2693524 eee55c6718a61403aedfeb2ff4fdc285 Size/MD5 checksum: 3945406 ed6496fb59f045cf00191d627ebe35fd arm architecture (ARM) Size/MD5 checksum: 2807094 4f979e8cf35a3f6fcbe67aa623bad40d Size/MD5 checksum: 2022926 d707587954b43a950f3d9bd944876cab armel architecture (ARM EABI) Size/MD5 checksum: 2008824 6c96ac0d574ed19b006e165a4e9cb344 Size/MD5 checksum: 2817946 c6f55245d4aa3151b9bc22237239f357 hppa architecture (HP PA RISC) Size/MD5 checksum: 2114000 47a512a8de09ab95d1d91b007accbf7e Size/MD5 checksum: 2889248 029f2ab69fd534512cca380396dc952b i386 architecture (Intel ia32) Size/MD5 checksum: 3683876 8ce12ce87061b61d7e4cb5c67dc963a9 Size/MD5 checksum: 2501302 4341f0bf5e24ce5422931c0ab108f32f ia64 architecture (Intel ia64) Size/MD5 checksum: 2163096 174b9b0a75831066f21055198ecd4d31 Size/MD5 checksum: 3000352 6e78f5ceccac87e2b15e169c0acee411 mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 2136466 7cf59869940cc4d6afd9b873f391a5c2 Size/MD5 checksum: 2869464 265d5e3c6a74202ecef638300c6e8397 mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 2846658 009ac5c09b749eb9a000fddbd5ac8433 Size/MD5 checksum: 2106860 bc87908cae2094944ed5502e6b821609 powerpc architecture (PowerPC) Size/MD5 checksum: 2928596 f1015d4d46ceab971d0acf93a75aab0a Size/MD5 checksum: 4279076 2f10a109630f7cc6dc5813507a006bc3 s390 architecture (IBM S/390) Size/MD5 checksum: 2076138 32d816b48fae49b535821ea350e6bada Size/MD5 checksum: 2999080 e1535e41938c76dc4fb6f441fb89473a sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 2870322 34a2b0276e6bb38f1cb11bb0769a18b1 Size/MD5 checksum: 4232002 5d2e6e79eb759ad3290c513e6767bb51 These files will probably be moved into the stable distribution on its next update. ---------------------------------------------------------------------------------- For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Debian Security Advisory DSA-1739-2 tackles a vulnerability in mldonkey, which poses a risk of unauthorized access to sensitive data and allows unintended file retrieval.. Mldonkey Threat, Debian DSA-1739-1, Remote Path Exploit. . LinuxSecurity.com Team

Calendar 2 Mar 13, 2009 Debian
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoranetwork access

Fedora: 2009-2122 Critical: mldonkey Remote File Exposure

Fix remote arbitrary file disclosure via a GET request with more than one leading / (slash) character in the filename. Ver. 2.9.7. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-2122 2009-02-26 15:02:36 --------------------------------------------------------------------------------Name : mldonkey Product : Fedora 10 Version : 2.9.7 Release : 3.fc10 URL : Summary : Client for several P2P networks Description : MLDonkey is a door to the 'donkey' network, a decentralized network used to exchange big files on the Internet. It is written in a wonderful language, called Objective-Caml, and present most features of the basic Windows donkey client, plus some more: - It should work on most UNIX-compatible platforms. - You can remotely command your client, either by telnet (port 4000), by a WEB browser (), or with a classical client interface (see - You can connect to several servers, and each search will query all the connected servers. - You can select mp3s by bitrates in queries (useful ?). - You can select the name of a downloaded file before moving it to your incoming directory. - You can have several queries in the graphical user interface at the same time. - You can remember your old queries results in the command-line interface. - You can search in the history of all files you have seen on the network. It can also access other peer-to-peer networks: - BitTorrent - Fasttrack - FileTP (wget-clone) - DC++ --------------------------------------------------------------------------------Update Information: Fix remote arbitrary file disclosure via a GET request with more than one leading / (slash) character in the filename. Ver. 2.9.7 --------------------------------------------------------------------------------ChangeLog: --------------------------------------------------------------------------------References: [ 1 ] Bug #487132- MLDonkey: remote arbitrary file disclosure via a GET request with more than one leading / (slash) character in the filename. https://bugzilla.redhat.com/show_bug.cgi?id=487132 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update mldonkey' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . This patch focuses on mitigating user authentication flaws in OpenVPN on Ubuntu 20.04, enhancing system integrity against breaches.. Fedora Update, MLDonkey Client, Remote Access Issue. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 26, 2009 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraremote access

Fedora 9: 2009-2108 Moderate Risk of MLDonkey File Disclosure Issue

Fix remote arbitrary file disclosure via a GET request with more than one leading / (slash) character in the filename.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-2108 2009-02-26 15:02:21 --------------------------------------------------------------------------------Name : mldonkey Product : Fedora 9 Version : 2.9.7 Release : 3.fc9 URL : https://sourceforge.net/projects/mldonkey/ Summary : Client for several P2P networks Description : MLDonkey is a door to the 'donkey' network, a decentralized network used to exchange big files on the Internet. It is written in a wonderful language, called Objective-Caml, and present most features of the basic Windows donkey client, plus some more: - It should work on most UNIX-compatible platforms. - You can remotely command your client, either by telnet (port 4000), by a WEB browser (), or with a classical client interface (see - You can connect to several servers, and each search will query all the connected servers. - You can select mp3s by bitrates in queries (useful ?). - You can select the name of a downloaded file before moving it to your incoming directory. - You can have several queries in the graphical user interface at the same time. - You can remember your old queries results in the command-line interface. - You can search in the history of all files you have seen on the network. It can also access other peer-to-peer networks: - BitTorrent - Fasttrack - FileTP (wget-clone) - DC++ --------------------------------------------------------------------------------Update Information: Fix remote arbitrary file disclosure via a GET request with more than one leading / (slash) character in the filename. --------------------------------------------------------------------------------References: [ 1 ] Bug #487132 - MLDonkey: remote arbitrary file disclosure via a GET request with morethan one leading / (slash) character in the filename. https://bugzilla.redhat.com/show_bug.cgi?id=487132 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update mldonkey' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . This Fedora patch addresses a data exposure vulnerability in mldonkey. Discover its implications and the steps to apply the update.. mldonkey update,Fedora security,remote file access. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 26, 2009 Important Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here