Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorysecurity issuegentoo

Gentoo: GLSA-200505-17 Normal: Qpopper File Overwrite Threat

Qpopper contains two vulnerabilities allowing an attacker to overwrite arbitrary files and create files with insecure permissions.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200505-17 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Qpopper: Multiple Vulnerabilities Date: May 23, 2005 Bugs: #90622 ID: 200505-17 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Qpopper contains two vulnerabilities allowing an attacker to overwrite arbitrary files and create files with insecure permissions. Background ========= Qpopper is a widely used server for the POP3 protocol. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-mail/qpopper < 4.0.5-r3 > = 4.0.5-r3 Description ========== Jens Steube discovered that Qpopper doesn't drop privileges to process local files from normal users (CAN-2005-1151). The upstream developersdiscovered that Qpopper can be forced to create group or world writeable files (CAN-2005-1152). Impact ===== A malicious local attacker could exploit Qpopper to overwrite arbitrary files as root or create new files which are group or world writeable. Workaround ========= There is no known workaround at this time. Resolution ========= All Qpopper users should upgrade to the latest available version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-mail/qpopper-4.0.5-r3" References ========= [ 1 ] CAN-2005-1151 [ 2 ] CAN-2005-1152 Availability =========== This GLSA and any updates toit are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200505-17 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2005 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.0/ . Unveil numerous security flaws in Qpopper leading to unauthorized file overwrites and unsafe file generation in Gentoo Linux.. Qpopper, File Overwrite, Security Advisory, Gentoo, Software Update. . LinuxSecurity.com Team

Calendar 2 May 23, 2005 Gentoo
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderatebuffer overflow

SuSE: SA:2003:018 Moderate: qpopper Buffer Overflow Risk

The sample exploit requires a valid user account and password, and overflows a string in the pop_msg() function to give the user "mail" group privileges and a shell on the system. Since the Qvsnprintf function is used elsewhere in qpopper, additional exploits may be possible.. ______________________________________________________________________________ SuSE Security Announcement Package: qpopper Announcement-ID: SuSE-SA:2003:018 Date: Friday, Mar 21th 2003 10:11 MET Affected products: 7.3, 8.0, 8.1 SuSE Linux Enterprise Server 8 Vulnerability Type: remote system compromise Severity (1-10): 3 SuSE default package: no Cross References: CAN-2003-0143 Content of this advisory: 1) security vulnerability resolved: buffer overflow problem description, discussion, solution and upgrade information 2) pending vulnerabilities, solutions, workarounds: - mutt - kernel - ethereal - apcupsd - vnc - openssl - mod_php4 - pgp4pine - nethack - netpbm - man 3) standard appendix (further information) ______________________________________________________________________________ 1) problem description, brief discussion, solution, upgrade information The Post-Office-Protocol- (POP-) Server qpopper (version 4) was vulnerable to a buffer overflow. The buffer overflow occurs after authentication has taken place. Therefore pop-users with a valid account can execute arbitrary code on the system running qpopper. Depending on the setup, the malicious code is run with higher privileges. There is no temporary fix known, please update your system. Please download the update package for your distribution and verify its integrity by the methods listedin section 3) of this announcement. Then, install the package using the command "rpm -Fhv file.rpm" to apply the update. Our maintenance customers are being notified individually. The packages are being offered to install from the maintenance web. Please note, missing packages will be published as soon as possible. Intel i386 Platform: SuSE-8.1: 45017728d71adab5aa1b335878666369 patch rpm(s): 06c56a877950b5285164b77e7818a3df source rpm(s): c8e7be3433bddadc73aac4251faa9b27 SuSE-8.0: e62034de0ab73f1f563950a34047493f patch rpm(s): 0f0b17a2efd99edb840b559095d5b8f0 source rpm(s): 2e8023638bd7c5d71ac5fe55f9bd6036 ______________________________________________________________________________ 2) Pending vulnerabilities in SuSE Distributions and Workarounds: - mutt A buffer overflow in mutt's IMAP code may result in remote system compromise. New packages are currently being build and will be available soon. - kernel A bug in the Linux kernel was found that allows local users to become root. The bug can just be exploited if ptrace(2) is allowed, LKM and kmod support is enabled. We already build new kernels and are currently testing them. As a workaround kernel module loading can be disabled after every boot by executing the following action as root: # echo /just/a/temporary/workaround > /proc/sys/kernel/modprobe Please note, that this will disable some services. - ethereal A format string bug in ethereal's SOCKS handling code and a buffer overflow in the NTLMSSP was found in ethereal. Both bugs may lead to remote system compromise. New packages are currently being build and will be available soon. - apcupsd The control and management daemon for APC UPS systems is vulnerable to remote code execution due to buffer overflow and format string bugs. A dedicatedadvisory for this issue will be released as soon as all packages are being build. - vnc VNC (Virtual Network Computing) uses a weak cookie generation process which can be exploited by an attacker to bypass authentication. New packages are currently being tested and will be available on our FTP servers soon. - openssl A paper regarding remote timing attacks against OpenSSL has been published by researchers of the Stanford University. It is possible to extract the private RSA key used by services using OpenSSL by observing their timing behavior. Additionally czech researchers found another bug in OpenSSL which is an extension of the "Bleichenbacher Attack". Fixed packages will be available on our FTP servers soon. - mod_php4 4.3.0 A serious security vulnerability was found in mod_php 4.3.0 which allows a remote attacker to read files or even execute PHP-code. This was possible due to direct access to the CGI module. SuSE does not ship this vulnerable version. - pgp4pine A buffer overflow in pine's filter add-on pgp4pine can be abused to execute arbitrary commands remotely. The pgp4pine version SuSE ships is not vulnerable to this bug. - nethack A buffer overflow in nethack can be exploited local users to gain higher privileges if the nethack binary is installed setuid/setgid. This bug is fixed for upcoming SuSE Linux versions. As a temporary workaround you should disable all s-bits on the nethack binary (/etc/permissions.local). - netpbm The netpbm package contains various integer overflows which can lead to arbitrary code execution. New packages are published on our FTP servers. - man A vulnerability in man was published that allows local privilege escalation. SuSE Linux does not ship this vulnerable version of man. ______________________________________________________________________________ 3) standard appendix: authenticity verification, additional information - Package authenticity verification: SuSE update packages are available on many mirror ftp servers all over the world. While this service is being considered valuable and important to the free and open source software community, many users wish to be sure about the origin of the package and its content before installing the package. There are two verification methods that can be used independently from each other to prove the authenticity of a downloaded file or rpm package: 1) md5sums as provided in the (cryptographically signed) announcement. 2) using the internal gpg signatures of the rpm package. 1) execute the command md5sum after you downloaded the file from a SuSE ftp server or its mirrors. Then, compare the resulting md5sum with the one that is listed in the announcement. Since the announcement containing the checksums is cryptographically signed (usually using the key This email address is being protected from spambots. You need JavaScript enabled to view it. ), the checksums show proof of the authenticity of the package. We disrecommend to subscribe to security lists which cause the email message containing the announcement to be modified so that the signature does not match after transport through the mailing list software. Downsides: You must be able to verify the authenticity of the announcement in the first place. If RPM packages are being rebuilt and a new version of a package is published on the ftp server, all md5 sums for the files are useless. 2) rpm package signatures provide an easy way to verify the authenticity of an rpm package. Use the command rpm -v --checksig to verify the signature of the package, where is the filename of the rpm package that you have downloaded. Of course, package authenticity verification can only target an un-installed rpm package file. Prerequisites: a) gpg isinstalled b) The package is signed using a certain key. The public part of this key must be installed by the gpg program in the directory ~/.gnupg/ under the user's home directory who performs the signature verification (usually root). You can import the key that is used by SuSE in rpm packages for SuSE Linux by saving this announcement to a file ("announcement.txt") and running the command (do "su -" to be root): gpg --batch; gpg < announcement.txt | gpg --import SuSE Linux distributions version 7.1 and thereafter install the key " This email address is being protected from spambots. You need JavaScript enabled to view it. " upon installation or upgrade, provided that the package gpg is installed. The file containing the public key is placed at the top-level directory of the first CD (pubring.gpg) and at . - SuSE runs two security mailing lists to which any interested party may subscribe: This email address is being protected from spambots. You need JavaScript enabled to view it. - general/linux/SuSE security discussion. All SuSE security announcements are sent to this list. To subscribe, send an email to . This email address is being protected from spambots. You need JavaScript enabled to view it. - SuSE's announce-only mailing list. Only SuSE's security announcements are sent to this list. To subscribe, send an email to . For general information or the frequently asked questions (faq) send mail to: or respectively. ==================================================================== SuSE's security contact is or . The public key is listed below. ====================================================================______________________________________________________________________________ The information in this advisory may be distributed or reproduced, provided that the advisory is not modified in any way. In particular, it is desired that the clear-text signature shows proof of the authenticity of the text. SuSE Linux AG makes no warranties of any kind whatsoever with respect to the information contained in this security advisory. Type Bits/KeyID Date User ID pub 2048R/3D25D3D9 1999-03-06 SuSE Security Team pub 1024D/9C800ACA 2000-10-19 SuSE Package Signing Key . Ubuntu uncovers critical vsftpd flaw, exposing systems to potential breaches. It's crucial to apply the latest patches promptly.. qpopper buffer overflow, remote system compromise, suse security update. . LinuxSecurity.com Team

Calendar 2 Mar 21, 2003 SuSE
Banner 2 1028x280 1708121730 1 1771599631
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoobuffer overflow

Gentoo: 200303-12 Critical: Qpopper Buffer Overflow Remote Execute

Under certain conditions it is possible to execute arbitrary code using a buffer overflow in the recent qpopper.. - - --------------------------------------------------------------------- GENTOO LINUX SECURITY ANNOUNCEMENT 200303-12 - - --------------------------------------------------------------------- PACKAGE : qpopper SUMMARY : buffer overflow DATE : 2003-03-17 09:50 UTC EXPLOIT : remote VERSIONS AFFECTED : =4.0.5 CVE : CAN-2003-0143 - - --------------------------------------------------------------------- - From advisory: "Under certain conditions it is possible to execute arbitrary code using a buffer overflow in the recent qpopper. You need a valid username/password-combination and code is (depending on the setup) usually executed with the user's uid and gid mail." Read the full advisory at: http://marc.theaimsgroup.com/?l=bugtraq&m=104739841223916&w=2 SOLUTION It is recommended that all Gentoo Linux users who are running net-mail/qpopper upgrade to qpopper-4.0.5 as follows: emerge sync emerge qpopper emerge clean - - --------------------------------------------------------------------- This email address is being protected from spambots. You need JavaScript enabled to view it. - GnuPG key is available at - - --------------------------------------------------------------------- . Gentoo Linux security advisory 200303-12 addresses critical qpopper buffer overflow risk requiring immediate update.. buffer Overflow,Gentoo Security,Remote Exploit,Qpopper Vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 17, 2003 Critical Gentoo
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorybuffer overflowdebian

Debian 3.0 DSA-259-1 Critical: Qpopper Privilege Escalation Exploit

The sample exploit requires a valid user account and password, and overflows astring in the pop_msg() function to give the user "mail" group privileges and ashell on the system. Since the Qvsnprintf function is used elsewhere inqpopper, additional exploits may be possible.. ---------------------------------------------------------------------------- Debian Security Advisory DSA-259-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Michael Stone March 12, 2003 Debian -- Debian security FAQ ---------------------------------------------------------------------------- Package: qpopper Vulnerability: mail user privilege escalation Debian-specific: no Florian Heinz posted to the Bugtraq mailing list an exploit for qpopper based on a bug in the included vsnprintf implementation. The sample exploit requires a valid user account and password, and overflows a string in the pop_msg() function to give the user "mail" group privileges and a shell on the system. Since the Qvsnprintf function is used elsewhere in qpopper, additional exploits may be possible. The qpopper package in Debian 2.2 (potato) does not include the vulnerable snprintf implementation. For Debian 3.0 (woody) an updated package is available in version 4.0.4-2.woody.3. Users running an unreleased version of Debian should upgrade to 4.0.4-9 or newer. We recommend you upgrade your qpopper package immediately. Upgrade Instructions -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. For not yet released architectures please refer to the appropriate directory . Debian 3.0(stable) ------------------- Stable was released for alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 17597 616085ddf35ce9411138ab75418de581 Size/MD5 checksum: 2261992 77f0968cd10b0d5236114838d9f507e5 Size/MD5 checksum: 755 20d92c6f738531ea0e88952aaf25f657 alpha architecture (DEC Alpha) Size/MD5 checksum: 458262 47ad6c478b9c0e51bc342d0af9f05f25 Size/MD5 checksum: 459040 fe910c2aa4af88eb54aa083fe8a112d5 arm architecture (ARM) Size/MD5 checksum: 433164 4d5e9c9f5958499abbd782839a0071f7 Size/MD5 checksum: 433986 6aed1bc4b62538159430a1609d6ee677 hppa architecture (HP PA RISC) Size/MD5 checksum: 443738 f25659b295630a8596f32013d6934acc Size/MD5 checksum: 442642 1a50380c3d06a7b187a3b9b6eb070c52 i386 architecture (Intel ia32) Size/MD5 checksum: 423226 6a00f3aacf1a94586fc83e92894e0f3a Size/MD5 checksum: 424134 b80a81713471f455c6753e8282f1171d ia64 architecture (Intel ia64) Size/MD5 checksum: 485762 05d0d18b15afd1a0d226c1a1475db46b Size/MD5 checksum: 484806 91a028b1c2ae3f9f46724d73a22ca207 m68k architecture (Motorola Mc680x0) Size/MD5 checksum: 416152 8a6c88357f3cba4e9e476622aabf24ed Size/MD5 checksum: 417078 40d2cf356478c5118f1b3cd34089cdd9 mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 439804 0745fd47dcc5866c5b2959e05e71c887 Size/MD5 checksum: 439032 761f1d0d35077248e67aec7c781ee298 mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 440472 e34fc8e7cee49c7fb6078647cb9fda8c Size/MD5 checksum: 439190 c38aa7a39e4a3576a0ccc095c116a047 powerpc architecture (PowerPC) Size/MD5 checksum: 433784 347933c60ea9c6141a6841dc635162e1 Size/MD5 checksum: 433174 96b976ec3699f271624cd6e3636b3a60 s390architecture (IBM S/390) Size/MD5 checksum: 429504 cc439406d24627b7ecdf8c68430f1739 Size/MD5 checksum: 428378 378aacc3dd88bacd05ac0dfc5f986c7f sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 435246 5bae131b4c78401e0067070f74a82108 Size/MD5 checksum: 434584 d35bab252208ca7a4de67e2513638b9d ---------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Debian addresses security flaws in sendmail by applying updates to reduce the threat of information disclosure from format string vulnerabilities across various operating systems.. Debian Security, Privilege Escalation, Qpopper Exploit. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 13, 2003 Critical Debian
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here