Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 533
Alerts This Week
Warning Icon 1 533

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is application sandboxing truly safe?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/155-is-application-sandboxing-truly-safe?task=poll.vote&format=json
155
radio
0
[{"id":500,"title":"Malware still escapes container walls.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":501,"title":"Supply chains corrupt trusted packages.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":502,"title":"Convenience consistently compromises strict security.","votes":1,"type":"x","order":3,"pct":100,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 0 articles for you...
98

Red Hat Enterprise Linux 9 RHSA-2023:2633-01 Moderate DoS Fix for Libreswan

An update for libreswan is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: libreswan security update Advisory ID: RHSA-2023:2633-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:2633 Issue date: 2023-05-09 CVE Names: CVE-2023-23009 ==================================================================== 1. Summary: An update for libreswan is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64 3. Description: Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network (VPN). Security Fix(es): * libreswan: remote DoS via crafted TS payload with an incorrect selector length (CVE-2023-23009) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, referto: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2173610 - CVE-2023-23009 libreswan: remote DoS via crafted TS payload with an incorrect selector length 6. Package List: Red Hat Enterprise Linux AppStream (v. 9): Source: libreswan-4.9-2.el9_2.src.rpm aarch64: libreswan-4.9-2.el9_2.aarch64.rpm libreswan-debuginfo-4.9-2.el9_2.aarch64.rpm libreswan-debugsource-4.9-2.el9_2.aarch64.rpm ppc64le: libreswan-4.9-2.el9_2.ppc64le.rpm libreswan-debuginfo-4.9-2.el9_2.ppc64le.rpm libreswan-debugsource-4.9-2.el9_2.ppc64le.rpm s390x: libreswan-4.9-2.el9_2.s390x.rpm libreswan-debuginfo-4.9-2.el9_2.s390x.rpm libreswan-debugsource-4.9-2.el9_2.s390x.rpm x86_64: libreswan-4.9-2.el9_2.x86_64.rpm libreswan-debuginfo-4.9-2.el9_2.x86_64.rpm libreswan-debugsource-4.9-2.el9_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2023-23009 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBZFo1ttzjgjWX9erEAQgZXQ//UQvyPxc6t0XOwsPkwx3/c3OBa8s8k5AQ 2BNC4MtLcMEZC5uoUkcW03oAWYweIZhY0gI4T++WfdhYrq54YMswJlvYY9Hh1Q4N qHcKqLrBFAu2g6AQAXn/7Z3eIbJgxXI8K8/zMeNyYbezF6DlV9S6Va9GpLMBZ9Ka 0GAOA5fdl1sYAJOWMFiZEjQB+utQUQCQndb+tGQoUIwEJjD5OWgge0iJXdWQQjTt IfxCmDsp3rfjZ47jONERiSxzZPXx7PZZCd13Dy0riLGHZ5fSjmNMeNVppaYOiYWF uxmT2MWuqtVcx0v4jjg7rxCsfVdpaQwLAfLhEpE1w0M805IlsD8Aew1RuMjMD2YH d8PqIR65/Zr6cmviYB6KlJMHpW9kCSbnUtC/mNpEaJoRXCO4yQnwbzDvqbyUFvXs nxG/hGhpLyDGnc7aRJuVOVlJBAKerqe3Y5+t9h20ZJKPkC33/ead469UFvQIcXhh 4Mm9eaNlLJSBCV4QtcIpGmKYSHF9UOs+AezkSCIRbclwetqqhK27cu0BFd557C07 W7AAXgr/r+oCEBwdrTRmNRZ0MpsmFJGdfyYiQK6cINKXeO5E5dQDWqbVNUMRX/xG fpBf+5OLqK2EuEE46ePQJHmSUIMpAMK52Y/pIIm3H1k6Cy7XpzZhCD60ELi8TGWK qcGsUob7QDQ=GgpK -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . An updated version of Libreswan has been released for Red Hat Enterprise Linux 9, addressing vulnerabilities with a moderate severity rating and a fix for a remote denial of service issue.. Libreswan Update, Red Hat Advisory, Linux Security Patch. . LinuxSecurity.com Team

Calendar%202 May 09, 2023 Red Hat
100

SUSE: 2022:478-1 Important: Remote Code Execution in json-cpp

The container suse/sle15 was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:477-1 Container Tags : suse/sle15:15.0 , suse/sle15:15.0.4.22.537 Container Release : 4.22.537 Severity : moderate Type : security References : 1121227 1121230 1122004 1122021 CVE-2018-20573 CVE-2018-20574 CVE-2019-6285 CVE-2019-6292 ----------------------------------------------------------------- The container suse/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:1073-1 Released: Fri Apr 1 11:45:01 2022 Summary: Security update for yaml-cpp Type: security Severity: moderate References: 1121227,1121230,1122004,1122021,CVE-2018-20573,CVE-2018-20574,CVE-2019-6285,CVE-2019-6292 This update for yaml-cpp fixes the following issues: - CVE-2018-20573: Fixed remote DOS via a crafted YAML file in function Scanner:EnsureTokensInQueue (bsc#1121227). - CVE-2018-20574: Fixed remote DOS via a crafted YAML file in function SingleDocParser:HandleFlowMap (bsc#1121230). - CVE-2019-6285: Fixed remote DOS via a crafted YAML file in function SingleDocParser::HandleFlowSequence (bsc#1122004). - CVE-2019-6292: Fixed DOS by stack consumption in singledocparser.cpp (bsc#1122021). The following package changes have been done: - libyaml-cpp0_6-0.6.1-4.5.1 updated . SUSE Container Security Bulletin: suse/sle15 has received updates addressing vulnerabilities related to potential remote denial-of-service threats of a moderate level.. SUSE Update, Security Patch, Remote DoS, yaml-cpp Patch. . LinuxSecurity.com Team

Calendar%202 Apr 02, 2022 SuSE
89

Fedora 26 Asterisk 13.18.4 Critical: Remote DoS Advisory AST-2017-012

Update to upstream 13.18.4 release to address AST-2017-012/CVE-2017-17664 security issue. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-38fbcdffc3 2017-12-26 15:02:57.898103 --------------------------------------------------------------------------------Name : asterisk Product : Fedora 26 Version : 13.18.4 Release : 1.fc26 URL : https://www.asterisk.org/ Summary : The Open Source PBX Description : Asterisk is a complete PBX in software. It runs on Linux and provides all of the features you would expect from a PBX and more. Asterisk does voice over IP in three protocols, and can interoperate with almost all standards-based telephony equipment using relatively inexpensive hardware. --------------------------------------------------------------------------------Update Information: Update to upstream 13.18.4 release to address AST-2017-012/CVE-2017-17664 security issue --------------------------------------------------------------------------------References: [ 1 ] Bug #1525689 - CVE-2017-17664 asterisk: Remote DOS via compound RTCP packet https://bugzilla.redhat.com/show_bug.cgi?id=1525689 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade asterisk' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Upgrade your Asterisk to version 13.18.4 on Fedora 26 toaddress the security risk from CVE-2017-17664, which could lead to a remote Denial of Service (DoS) attack. Fedora 26 Asterisk Update, Remote DoS Threat, Asterisk Security Fix. . LinuxSecurity.com Team

Calendar%202 Dec 26, 2017 Fedora
98

Red Hat Enterprise Linux 4.7: RHSA-2010:0111-01 Critical: Kernel Remote DoS

Updated kernel packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4.7 Extended Update Support. This update has been rated as having important security impact by the Red Hat Security Response Team.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2010:0111-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2010:0111.html Issue date: 2010-02-16 CVE Names: CVE-2009-4536 CVE-2009-4537 CVE-2009-4538 ==================================================================== 1. Summary: Updated kernel packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4.7 Extended Update Support. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4.7.z - i386, ia64, noarch, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux ES version 4.7.z - i386, ia64, noarch, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: * a flaw was found in each of the following Intel PRO/1000 Linux drivers in the Linux kernel: e1000 and e1000e. A remote attacker using packets larger than the MTU could bypass the existing fragment check, resulting in partial, invalid frames being passed to the network stack. These flaws could also possibly be used to trigger a remote denial of service. (CVE-2009-4536, CVE-2009-4538, Important) * a flaw was found in the Realtek r8169 Ethernet driver in the Linux kernel. Receiving overly-long frames with a certain revision of the network cards supported by this driver could possibly result in a remote denial of service. (CVE-2009-4537, Important) Users should upgradeto these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 550907 - CVE-2009-4537 kernel: r8169 issue reported at 26c3 551214 - CVE-2009-4538 kernel: e1000e frame fragment issue 552126 - CVE-2009-4536 kernel: e1000 issue reported at 26c3 6. Package List: Red Hat Enterprise Linux AS version4.7.z: Source: kernel-2.6.9-78.0.29.EL.src.rpm i386: kernel-2.6.9-78.0.29.EL.i686.rpm kernel-debuginfo-2.6.9-78.0.29.EL.i686.rpm kernel-devel-2.6.9-78.0.29.EL.i686.rpm kernel-hugemem-2.6.9-78.0.29.EL.i686.rpm kernel-hugemem-devel-2.6.9-78.0.29.EL.i686.rpm kernel-smp-2.6.9-78.0.29.EL.i686.rpm kernel-smp-devel-2.6.9-78.0.29.EL.i686.rpm kernel-xenU-2.6.9-78.0.29.EL.i686.rpm kernel-xenU-devel-2.6.9-78.0.29.EL.i686.rpm ia64: kernel-2.6.9-78.0.29.EL.ia64.rpm kernel-debuginfo-2.6.9-78.0.29.EL.ia64.rpm kernel-devel-2.6.9-78.0.29.EL.ia64.rpm kernel-largesmp-2.6.9-78.0.29.EL.ia64.rpm kernel-largesmp-devel-2.6.9-78.0.29.EL.ia64.rpm noarch: kernel-doc-2.6.9-78.0.29.EL.noarch.rpm ppc: kernel-2.6.9-78.0.29.EL.ppc64.rpm kernel-2.6.9-78.0.29.EL.ppc64iseries.rpm kernel-debuginfo-2.6.9-78.0.29.EL.ppc64.rpm kernel-debuginfo-2.6.9-78.0.29.EL.ppc64iseries.rpm kernel-devel-2.6.9-78.0.29.EL.ppc64.rpm kernel-devel-2.6.9-78.0.29.EL.ppc64iseries.rpm kernel-largesmp-2.6.9-78.0.29.EL.ppc64.rpm kernel-largesmp-devel-2.6.9-78.0.29.EL.ppc64.rpm s390: kernel-2.6.9-78.0.29.EL.s390.rpm kernel-debuginfo-2.6.9-78.0.29.EL.s390.rpm kernel-devel-2.6.9-78.0.29.EL.s390.rpm s390x: kernel-2.6.9-78.0.29.EL.s390x.rpm kernel-debuginfo-2.6.9-78.0.29.EL.s390x.rpm kernel-devel-2.6.9-78.0.29.EL.s390x.rpm x86_64: kernel-2.6.9-78.0.29.EL.x86_64.rpm kernel-debuginfo-2.6.9-78.0.29.EL.x86_64.rpm kernel-devel-2.6.9-78.0.29.EL.x86_64.rpm kernel-largesmp-2.6.9-78.0.29.EL.x86_64.rpm kernel-largesmp-devel-2.6.9-78.0.29.EL.x86_64.rpm kernel-smp-2.6.9-78.0.29.EL.x86_64.rpm kernel-smp-devel-2.6.9-78.0.29.EL.x86_64.rpm kernel-xenU-2.6.9-78.0.29.EL.x86_64.rpm kernel-xenU-devel-2.6.9-78.0.29.EL.x86_64.rpm Red Hat Enterprise Linux ES version4.7.z: Source: kernel-2.6.9-78.0.29.EL.src.rpm i386: kernel-2.6.9-78.0.29.EL.i686.rpm kernel-debuginfo-2.6.9-78.0.29.EL.i686.rpm kernel-devel-2.6.9-78.0.29.EL.i686.rpm kernel-hugemem-2.6.9-78.0.29.EL.i686.rpm kernel-hugemem-devel-2.6.9-78.0.29.EL.i686.rpm kernel-smp-2.6.9-78.0.29.EL.i686.rpm kernel-smp-devel-2.6.9-78.0.29.EL.i686.rpm kernel-xenU-2.6.9-78.0.29.EL.i686.rpm kernel-xenU-devel-2.6.9-78.0.29.EL.i686.rpm ia64: kernel-2.6.9-78.0.29.EL.ia64.rpm kernel-debuginfo-2.6.9-78.0.29.EL.ia64.rpm kernel-devel-2.6.9-78.0.29.EL.ia64.rpm kernel-largesmp-2.6.9-78.0.29.EL.ia64.rpm kernel-largesmp-devel-2.6.9-78.0.29.EL.ia64.rpm noarch: kernel-doc-2.6.9-78.0.29.EL.noarch.rpm x86_64: kernel-2.6.9-78.0.29.EL.x86_64.rpm kernel-debuginfo-2.6.9-78.0.29.EL.x86_64.rpm kernel-devel-2.6.9-78.0.29.EL.x86_64.rpm kernel-largesmp-2.6.9-78.0.29.EL.x86_64.rpm kernel-largesmp-devel-2.6.9-78.0.29.EL.x86_64.rpm kernel-smp-2.6.9-78.0.29.EL.x86_64.rpm kernel-smp-devel-2.6.9-78.0.29.EL.x86_64.rpm kernel-xenU-2.6.9-78.0.29.EL.x86_64.rpm kernel-xenU-devel-2.6.9-78.0.29.EL.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2009-4536 https://access.redhat.com/security/cve/CVE-2009-4537 https://access.redhat.com/security/cve/CVE-2009-4538 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2010 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFLetDUXlSAg2UNWIIRAooiAKCwdWEZRLDgl6LGGnwLrGlwJ9FBFwCgm7UJ xWaGjHj04vBsJpDydM4zJ58=X+Fe -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Crucial core security patch for CentOS addressing numerous high-severity vulnerabilities. Update immediately!. Kernel Update, RedHat Security, Remote Dos Issues, Linux Kernel. . LinuxSecurity.com Team

Calendar%202 Feb 16, 2010 Red Hat
87

Debian 3.1 DSA-740-1: Serious Zlib Remote Denial of Service Problem

An error in the way zlib handles the inflation of certain compressed files can cause a program which uses zlib to crash when opening an invalid file.. - ------------------------------------------------------------------------Debian Security Advisory DSA 740-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Michael Stone July 06, 2005 http://www.debian.org/security/faq - ------------------------------------------------------------------------Package : zlib Vulnerability : buffer overflow Problem type : remote DOS Debian-specific: no CVE Id(s) : CAN-2005-2096 An error in the way zlib handles the inflation of certain compressed files can cause a program which uses zlib to crash when opening an invalid file. This problem does not affect the old stable distribution (woody). For the stable distribution (sarge), this problem has been fixed in version 1.2.2-4.sarge.1. For the unstable distribution, this problem has been fixed in version 1.2.2-7. We recommend that you upgrade your clamav package. Upgrade instructions - --------------------wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian 3.1 (sarge) - ------------------ Sarge was released for alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 807 dc3fcabef1acff1c01e2f0ebf492bf66 Size/MD5 checksum: 14253 2b6eeb5cca5debe943582e1266f0b70d Size/MD5 checksum: 430700 d43dabe3d374e299f2631c5fc5ce31f5 Alpha architecture: Size/MD5 checksum: 305267a8a3ee419fbc7917a4c1034d9902474 Size/MD5 checksum: 82036 3f7d5435d3658a0e6e9026242dd0169b Size/MD5 checksum: 533998 20c2841937e5de74fdddd464e81d2ad1 ARM architecture: Size/MD5 checksum: 25248 dccb0d7c752b806d8c0b43f657cee265 Size/MD5 checksum: 66734 16f44bc4d254ed6398666c2a2a9298cc Size/MD5 checksum: 498336 9ff727e49b121802ec0de0d55b920f7a Intel IA-32 architecture: Size/MD5 checksum: 25838 7730eb446f1cbf3f4f23955ba4d0a0ad Size/MD5 checksum: 63196 2bdd404fb56394e4495434c7f6a9b284 Size/MD5 checksum: 487094 2498ca72ccc359a86e8d993b485d275f Intel IA-64 architecture: Size/MD5 checksum: 39204 4223a66e9097199b94b5de1ca217986c Size/MD5 checksum: 93428 17b2187034b9e3961c3a21b221612558 Size/MD5 checksum: 553636 73a0490e7c575c10a97a3390a11c88ed HP Precision architecture: Size/MD5 checksum: 29260 f26944aa8cfb195b9b9dc30ece012f17 Size/MD5 checksum: 70356 e92b967975428c72678fdaa6bb483d7d Size/MD5 checksum: 512480 1d49177f3c704ea216c0fbd78dc82735 Motorola 680x0 architecture: Size/MD5 checksum: 24028 53d352633677d62fd9c194996c60d31f Size/MD5 checksum: 58850 2aae7ad830e0ad011b6800025130ff1c Size/MD5 checksum: 485972 e4a948ba9ef16ba4ae5b9636ba831879 Big endian MIPS architecture: Size/MD5 checksum: 31504 474d31e3ca6b4e058b4e13090238425f Size/MD5 checksum: 68768 e401a7314e1105b067696f48814de63a Size/MD5 checksum: 510190 717a0a41c644cdc87125a48520aa9e0b Little endian MIPS architecture: Size/MD5 checksum: 31494 0a6a0845e7195161393b1fdb08f69560 Size/MD5 checksum: 69098 bafde67f893e248cf7dd16e96bc12edc Size/MD5 checksum: 509520 b147287aec201423bcb951034b68c936 PowerPC architecture: Size/MD5 checksum: 29974 9b0f7475d2a194ea569a10d8999b631c Size/MD5checksum: 69632 dd73e85b2079144f56b45d43ae0a27ee Size/MD5 checksum: 522806 4aaef30ee2563e810606180e8ff984da IBM S/390 architecture: Size/MD5 checksum: 52588 6d8ec4a1c12fd602af9a4e9f22b66b59 Size/MD5 checksum: 55514 4f60ea5ef3a0158c3c05ac7d2ce29f05 Size/MD5 checksum: 27186 baf3f833f392985bf22676f0a705e777 Size/MD5 checksum: 67048 5db51f522598fc5fcffbc1fcc4d5b15d Size/MD5 checksum: 539008 38b2186f712c47abb03fe4b7f12d7a74 Sun Sparc architecture: Size/MD5 checksum: 54532 8ad5d51800c4d2b4a939b30fbe8c0a60 Size/MD5 checksum: 57318 cdfcd9fe8ed1e87d3c6cffa831241c91 Size/MD5 checksum: 25768 ef14f68160c1672db1474406ea92f830 Size/MD5 checksum: 66868 3a5e4a67ef146cac5a8be1e4a65eb977 Size/MD5 checksum: 499186 03c0f468129c9b7c03e4f9a7ba39a339 - -------------------------------------------------------------------------------For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . - ------------------------------------------------------------------------Debian Security Advisory D. error, handles, inflation, certain, compressed, files, cause, program, which. . LinuxSecurity.com Team

Calendar%202 Jul 06, 2005 Debian
91

Gentoo: GLSA-200403-10 Critical: Fetchmail Remote DoS Risk Upgrade

Fetchmail versions 6.2.4 and earlier can be crashed by sending a specially-crafted email to a fetchmail user.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200403-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Fetchmail 6.2.5 fixes a remote DoS Date: March 30, 2004 Bugs: #37717 ID: 200403-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Fetchmail versions 6.2.4 and earlier can be crashed by sending a specially-crafted email to a fetchmail user. Background ========= Fetchmail is a utility that retrieves and forwards mail from remote systems using IMAP, POP, and other protocols. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- net-mail/fetchmail = 6.2.5 Description ========== Fetchmail versions 6.2.4 and earlier can be crashed by sending a specially-crafted email to a fetchmail user. This problem occursbecause Fetchmail does not properly allocate memory for long lines in an incoming email. Impact ===== Fetchmail users who receive a malicious email may have their fetchmail program crash. Workaround ========= While a workaround is not currently known for this issue, all users are advised to upgrade to the latest version of the affected package. Resolution ========= Fetchmail users should upgrade to version 6.2.5 or later: # emerge sync # emerge -pv "> =net-mail/fetchmail-6.2.5" # emerge "> =net-mail/fetchmail-6.2.5" References ========= [ 1 ] [ 2 ] https://www.cve.org/CVERecord?id=CAN-2003-0792 Concerns? ======== Security is aprimary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. . Fetchmail version 6.2.5 rectifies a vulnerability that may lead to remote system crashes. It is advised that all users upgrade promptly to prevent potential exploitation.. Fetchmail Security,Gentoo Advisory,Remote Denial of Service,Email Exploit,Software Fix. . LinuxSecurity.com Team

Calendar%202 Mar 31, 2004 Gentoo
91

Gentoo: 200303-5 Critical Advisory on Tcpdump Remote DoS Vulnerability

A vulnerability exists in the parsing of ISAKMP packets (UDP port 500) that allows an attacker to force TCPDUMP into an infinite loop upon receipt of a specially crafted packet.. - - --------------------------------------------------------------------- GENTOO LINUX SECURITY ANNOUNCEMENT 200303-5 - - --------------------------------------------------------------------- PACKAGE : tcpdump SUMMARY : remote dos DATE : 2003-03-05 10:19 UTC EXPLOIT : remote VERSIONS AFFECTED : 3.7.2 CVE : CAN-2003-0108 - - --------------------------------------------------------------------- - From advisory: "A vulnerability exists in the parsing of ISAKMP packets (UDP port 500) that allows an attacker to force TCPDUMP into an infinite loop upon receipt of a specially crafted packet." Read the full advisory at: /us-en SOLUTION It is recommended that all Gentoo Linux users who are running net-analyzer/tcpdump upgrade to tcpdump-3.7.2 as follows: emerge sync emerge -u tcpdump emerge clean - - --------------------------------------------------------------------- This email address is being protected from spambots. You need JavaScript enabled to view it. - GnuPG key is available at - - --------------------------------------------------------------------- . The Gentoo Linux Security Notice 202303-6 highlights a critical remote Denial of Service flaw in TCPDUMP, urging users to upgrade to version 3.7.3 for better security. Gentoo Linux,tcpdump,denial of service,security update,remote exploit. . LinuxSecurity.com Team

Calendar%202 Mar 05, 2003 Gentoo
87

Debian: DSA-077-1 Critical Remote DoS Threat In Squid Proxy Cache

Vladimir Ivaschenko found a problem in squid (a popular proxy cache).. ------------------------------------------------------------------------ Debian Security Advisory DSA-077-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Wichert Akkerman September 24, 2001 ------------------------------------------------------------------------ Package : squid Problem type : remote DoS Debian-specific: no Vladimir Ivaschenko found a problem in squid (a popular proxy cache). He discovered that there was a flaw in the code to handle FTP PUT commands: when a mkdir-only request was done squid would detect an internal error and exit. Since squid is configured to restart itself on problems this is not a big problem. This has been fixed in version 2.2.5-3.2. This problem is logged as bug 233 in the squid bugtracker and will also be fixed in future squid releases. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.2 alias potato --------------------------------- Potato was released for alpha, arm, i386, m68k, powerpc and sparc. Source archives: MD5 checksum: 313ec322ee2f0a1ada034b663e3c1900 MD5 checksum: b5bee93a16b453ddfcfcba47ff890e15 MD5 checksum: 3ae40a4f21b110553446fe3d92ed2bda Alpha architecture: MD5 checksum: fae45705a7ee232f8d03b4732a12df63 MD5 checksum: eadbb969803ff90c5dcdc303045d62ea MD5 checksum: 30928ec74d7e99c6153e2955d9cd1ab6 ARM architecture: MD5 checksum: 7a35d908fa1d2388085a0298701bee04 MD5 checksum: e4370d9686faf2e9b60c2014fb912255 MD5 checksum: 3e14d433f3032c5b1877591aa6fb9b83 Intel IA-32 architecture: MD5 checksum: 1e13385cb135b8b887055b8de6122b28 MD5 checksum: edaf764ff5b74e852385668f72d9f637 MD5 checksum: e5c24bec77c9dcaf4025dce215821bc3 Motorola 680x0 architecture: MD5 checksum:3585d677749848a5137cd28047c3279c MD5 checksum: 62d419bafd69b29dce27726ee7abee40 MD5 checksum: a3008be51bf14268e155230c194e2281 PowerPC architecture: MD5 checksum: 76c77d85a764797fc89f1b0112a141e9 MD5 checksum: 9170efeb0e7507aa0e2757877aee2b7b MD5 checksum: 3b0aa78c0eab2e27e09aa10f8972aa25 Sun Sparc architecture: MD5 checksum: 3d072245558b082c58b7446af5bedeba MD5 checksum: 40cb9da4742bfd4cd1c11536a360f384 MD5 checksum: b77a77b1f119cf3b371bd9a87f3ebd6a These packages will be moved into the stable distribution on its next revision. For not yet released architectures please refer to the appropriate directory . -- ---------------------------------------------------------------------------- apt-get: deb Debian -- Security Information stable/updates main dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Critical advisory for Debian addressing remote DoS threat in Squid, ensuring robust protection for systems.. Debian Advisory,Squid Security,Remote DoS Issue. . LinuxSecurity.com Team

Calendar%202 Sep 24, 2001 Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is application sandboxing truly safe?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/155-is-application-sandboxing-truly-safe?task=poll.vote&format=json
155
radio
0
[{"id":500,"title":"Malware still escapes container walls.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":501,"title":"Supply chains corrupt trusted packages.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":502,"title":"Convenience consistently compromises strict security.","votes":1,"type":"x","order":3,"pct":100,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200