Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticaldebian

Debian: DSA 160-1 Critical: Scrollkeeper File Manipulation Risk

The scrollkeeper-get-cl program creates temporary files in an insecure manner in /tmp using guessable filenames. Since scrollkeeper is called automatically when a user logs into a Gnome session, an attacker with local access can easily create and overwrite files as another user.. - -------------------------------------------------------------------------- Debian Security Advisory DSA 160-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Martin Schulze September 3rd, 2002 Debian -- Debian security FAQ - -------------------------------------------------------------------------- Package : scrollkeeper Vulnerability : insecure temporary file creation Problem-Type : local Debian-specific: no CVE Id : CAN-2002-0662 Spybreak discovered a problem in scrollkeeper, a free electronic cataloging system for documentation. The scrollkeeper-get-cl program creates temporary files in an insecure manner in /tmp using guessable filenames. Since scrollkeeper is called automatically when a user logs into a Gnome session, an attacker with local access can easily create and overwrite files as another user. This problem has been fixed in version 0.3.6-3.1 for the current stable distribution (woody) and in version 0.3.11-2 for the unstable distribution (sid). The old stable distribution (potato) is not affected, since it doesn't contain the scrollkeeper package. We recommend that you upgrade your scrollkeeper packages immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody - -------------------------------- Source archives: Size/MD5 checksum: 761 f0ab585dd23c31804f94c9a97c4c3d8d Size/MD5 checksum: 72068 889445a036c7b618e87a7e23aca5f641 Size/MD5 checksum: 405812 6500ce56d6926443fc8c15f37c79aa0a Alpha architecture: Size/MD5 checksum: 18446 471e49dab7c97860af932c3a09639c04 Size/MD5 checksum: 88266 e6e04bcd74a54a7196113d791205029a Size/MD5 checksum: 82398 033f27b836ffaf8f08f36177f8253651 ARM architecture: Size/MD5 checksum: 13412 6425afd69256a6333748d30d346e3482 Size/MD5 checksum: 86326 e50819ee737f344459e6ec6b9ddbf5d6 Size/MD5 checksum: 78352 bde15d75ee4ff34314c897ab61e2c55b Intel IA-32 architecture: Size/MD5 checksum: 12282 69e797d0c3e5e87bf59411f3b9416062 Size/MD5 checksum: 85814 c2124cd6d3528ec36d05c7bfe1a99a07 Size/MD5 checksum: 78818 a7e536042ebad89ed21fb27dcf41fc8f Intel IA-64 architecture: Size/MD5 checksum: 18888 13604ae70ee15f87d708806c5de55e2a Size/MD5 checksum: 93456 d9b42065cfcdd6b8b284b18505b06f07 Size/MD5 checksum: 84730 54d3894395f4298f247cec050c18ac5e HP Precision architecture: Size/MD5 checksum: 17086 deadc423ce2455865656a3ea33914425 Size/MD5 checksum: 88734 61ebf5f9dcffd70b15600f811a19c0b4 Size/MD5 checksum: 80562 00a782bf063d4427e38d72de655985e1 Motorola 680x0 architecture: Size/MD5 checksum: 12066 dc7607140883648fdd3b425301cf9163 Size/MD5 checksum: 85998 d93a48006aa2ed9b44927d6641802182 Size/MD5 checksum: 78362 2af3cf86241f588f94a4cde333ecf2f4 Big endian MIPS architecture: Size/MD5 checksum: 15956 cc2e36432ec953056d108c8579193758 Size/MD5 checksum: 86102 09d6dd555e2a25ed352e7744e2eff1c9 Size/MD5 checksum: 79290 14e96a71b680fcc5ce5444152fb6359d Little endian MIPS architecture: Size/MD5checksum: 16008 c9ef5a7a29cfd246f87890333bad1e07 Size/MD5 checksum: 85978 7b35ce0248eaf5b8ba49a321cf110f24 Size/MD5 checksum: 79144 9f1516c111cda395d16e90c9483cdda9 PowerPC architecture: Size/MD5 checksum: 15294 b3333f4be631fe8a97682e5223e07f18 Size/MD5 checksum: 87168 971f19bc3c3794ef79a81da9ba4ef38d Size/MD5 checksum: 79056 b9832303c7bdcf69cefc9d34a6fe1fb9 IBM S/390 architecture: Size/MD5 checksum: 12718 4f1be77aab7f2e5cc0931e7bdfc812c3 Size/MD5 checksum: 86248 a2a24819fe422346952b9798b40a110e Size/MD5 checksum: 79796 cb948cba0731dfb6906c12b6f7e98a80 Sun Sparc architecture: Size/MD5 checksum: 13238 58b8da744d314f15b3f2291d8e528baa Size/MD5 checksum: 86094 b0096bef6320d2a8dc4090d6e40cb523 Size/MD5 checksum: 82830 47b6895582d7be37526fd17a3816469a These files will probably be moved into the stable distribution on its next revision. - --------------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Critical Scrollkeeper vulnerability in Debian allows local attackers to manipulate files in a user's session.. Scrollkeeper Vulnerability, Local Access Risk, Temporary Files Issue. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 03, 2002 Critical Debian
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderateupdate

Red Hat Linux 7.3 RHSA-2002:186-07 Moderate: ScrollKeeper Tempfile Threat

Updated scrollkeeper packages are now available for Red Hat Linux 7.3 whichfix a tempfile vulnerability.. --------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated scrollkeeper packages fix tempfile vulnerability Advisory ID: RHSA-2002:186-07 Issue date: 2002-08-19 Updated on: 2002-08-28 Product: Red Hat Linux Keywords: scrollkeeper tmpfile symlink Cross references: Obsoletes: CVE Names: CAN-2002-0662 --------------------------------------------------------------------- 1. Topic: Updated scrollkeeper packages are now available for Red Hat Linux 7.3 which fix a tempfile vulnerability. 2. Relevant releases/architectures: Red Hat Linux 7.3 - i386 3. Problem description: ScrollKeeper is a cataloging system for documentation. All versions of ScrollKeeper between 0.3 and 0.3.11 have a tempfile vulnerability. The scrollkeeper-get-cl command generates temporary files in the /tmp directory. These files are named scrollkeeper-tempfile.[0-4], and while creating these files scrollkeeper-get-cl follows symbolic links. These files are created when a user logs in to a GNOME session and are created as the user who logged in. This means an attacker with local access can easily create and overwrite files as another user. This errata updates ScrollKeeper packages for Red Hat Linux 7.3 with patches that prevent ScrollKeeper from following symlinks when creating temporary files. Previous releases of Red Hat Linux do not contain vulnerable versions of Scrollkeeper. Thanks go to Spybreak for discovering and responsibly disclosing this vulnerability. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. To update all RPMs for your particular architecture, run: rpm -Fvh [filenames] where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installedwill be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory *only* contains the desired RPMs. Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. 5. RPMs required: Red Hat Linux 7.3: SRPMS: i386: 6. Verification: MD5 sum Package Name -------------------------------------------------------------------------- 3b2ca2295952d763516669a0a3dcc74d 7.3/en/os/SRPMS/scrollkeeper-0.3.4-5.src.rpm 392a5149a4b0e8abce9c350c88ee827a 7.3/en/os/i386/scrollkeeper-0.3.4-5.i386.rpm These packages are GPG signed by Red Hat, Inc. for security. Our key is available at: About You can verify each package with the following command: rpm --checksig If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: rpm --checksig --nogpg 7. References: CVE -CVE-2002-0662 Copyright(c) 2000, 2001, 2002 Red Hat, Inc. . Recent Scrollkeeper enhancements for Red Hat Linux tackle transient file vulnerabilities, bolstering overall system security.. ScrollKeeper Fix, Linux Security Updates, Red Hat Advisory. . LinuxSecurity.com Team

Calendar 2 Sep 02, 2002 Red Hat
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here