Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorybuffer overflowdebian

Debian 4.0 DSA-1683-1 Critical: Streamripper Buffer Overflow

Multiple buffer overflows involving HTTP header and playlist parsing have been discovered in streamripper (CVE-2007-4337, CVE-2008-4829).. - ------------------------------------------------------------------------Debian Security Advisory DSA-1683-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Florian Weimer December 08, 2008 http://www.debian.org/security/faq - ------------------------------------------------------------------------Package : streamripper Vulnerability : buffer overflow Problem type : local (remote) Debian-specific: no CVE Id(s) : CVE-2007-4337 CVE-2008-4829 Debian Bug : 506377 Multiple buffer overflows involving HTTP header and playlist parsing have been discovered in streamripper (CVE-2007-4337, CVE-2008-4829). For the stable distribution (etch), these problems have been fixed in version 1.61.27-1+etch1. For the unstable distribution (sid) and the testing distribution (lenny), these problems have been fixed in version 1.63.5-2. We recommend that you upgrade your streamripper package. Upgrade instructions - --------------------wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 4.0 alias etch - -------------------------------Source archives: Size/MD5 checksum: 294218 8761dda030f92cbdfa38e73a981cc6bc Size/MD5 checksum: 5040 0a4fe994a155d07163b3455df5c2668b Size/MD5 checksum: 964 67ddf22de3c0642e41245e07e534c992 alpha architecture (DEC Alpha) Size/MD5 checksum: 84142 9450efa0b7fcfce8e976a0a1acb9e837 amd64 architecture (AMD x86_64(AMD64)) Size/MD5 checksum: 75808 0d0d435b05e1c7b5bf2aa375b6569ae4 arm architecture (ARM) Size/MD5 checksum: 70992 3d77dcfe3d7785aaed4544cdfd3a8489 hppa architecture (HP PA RISC) Size/MD5 checksum: 77884 aff00b60cc13c3c46232f86a1bfab553 i386 architecture (Intel ia32) Size/MD5 checksum: 71180 61c43e7298aac28f4e96287e7eb8b1b0 ia64 architecture (Intel ia64) Size/MD5 checksum: 99678 b18634cd32a198e747aa99470d3863ab mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 78584 a417879681280d7f4640557cf1b6085a mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 78814 c92e229fc90db4cf408ee44a619545ee powerpc architecture (PowerPC) Size/MD5 checksum: 76114 45d0eaaea3a1ec5d874aa9f51221d89c s390 architecture (IBM S/390) Size/MD5 checksum: 75984 7aaff15041ece4095eaa1ab470aed7b6 sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 70322 78e266c09b92286776216406420f1220 These files will probably be moved into the stable distribution on its next update. - ---------------------------------------------------------------------------------For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Ubuntu addresses vulnerabilities in filecat to enhance security measures through forthcoming software releases.. Debian Streamripper Fix, Code Execution Risk Mitigation, Buffer Overflow Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 08, 2008 Critical Debian
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoobuffer overflow

Gentoo: GLSA-200709-04 Normal: libpng Security Vulnerability Detected

A buffer overflow vulnerability has been discovered in Streamripper, allowing for user-assisted execution of arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200709-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Streamripper: Buffer overflow Date: September 13, 2007 Bugs: #188698 ID: 200709-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= A buffer overflow vulnerability has been discovered in Streamripper, allowing for user-assisted execution of arbitrary code. Background ========= Streamripper is a tool for extracting and recording mp3 files from a Shoutcast stream. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-sound/streamripper < 1.62.2 > = 1.62.2 Description ========== Chris Rohlf discovered several boundary errors in the httplib_parse_sc_header() function when processing HTTP headers. Impact ===== A remote attacker could entice a user to connect to a malicious streaming server, resulting in the execution of arbitrary code with the privileges of the user running Streamripper. Workaround ========= There is no known workaround at this time. Resolution ========= All Streamripper users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =media-sound/streamripper-1.62.2" References ========= [ 1 ] CVE-2007-4337 https://www.cve.org/CVERecord?id=CVE-2007-4337 Availability =========== This GLSA and any updates to it are available for viewing at theGentoo Security Website: https://security.gentoo.org/glsa/200709-03 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2007 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . A buffer overflow vulnerability found in Streamripper on Gentoo might allow for code execution with the privileges of the user.. Streamripper Buffer Overflow,Gentoo Security Advisory,Remote Code Execution,Software Update. . LinuxSecurity.com Team

Calendar 2 Sep 13, 2007 Gentoo
Banner 4 1028x280 1708121825 1771600306
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorydenial of servicegentoo

Gentoo: GLSA-200609-01 Normal: Streamripper Buffer Overflow Execution Risk

Streamripper is vulnerable to multiple remote buffer overflows, leading to the execution of arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200609-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Streamripper: Multiple remote buffer overflows Date: September 06, 2006 Bugs: #144861 ID: 200609-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Streamripper is vulnerable to multiple remote buffer overflows, leading to the execution of arbitrary code. Background ========= Streamripper extracts and records individual MP3 file tracks from SHOUTcast streams. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-sound/streamripper < 1.61.26 > = 1.61.26 Description ========== Ulf Harnhammar, from the Debian Security Audit Project, has found that Streamripper is vulnerable to multiple stack based buffer overflows caused by improper bounds checking when processing malformed HTTP headers. Impact ===== By enticing a user to connect to a malicious server, an attacker could execute arbitrary code with the permissions of the user running Streamripper Workaround ========= There is no known workaround at this time. Resolution ========= All Streamripper users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =media-sound/streamripper-1.61.26" References ========= [ 1 ] CVE-2006-3124 https://www.cve.org/CVERecord?id=CVE-2006-3124 Availability =========== This GLSA and anyupdates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200609-01 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Gentoo's Streamripper faces vulnerabilities from remote buffer overflow, which could lead to unauthorized code execution. It is recommended to update for protection.. Streamripper, Buffer Overflow, Denial of Service, Security Advisory. . LinuxSecurity.com Team

Calendar 2 Sep 06, 2006 Gentoo
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorybuffer overflowdebian

Debian 3.1 DSA 1158-1 Critical: Streamripper Remote Code Execution

Updated package.. - --------------------------------------------------------------------------Debian Security Advisory DSA 1158-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Moritz Muehlenhoff August 25th, 2006 http://www.debian.org/security/faq - --------------------------------------------------------------------------Package : streamripper Vulnerability : buffer overflow Problem-Type : remote Debian-specific: no CVE ID : CVE-2006-3124 Ulf Harnhammer from the Debian Security Audit Project discovered that streamripper, a utility to record online radio-streams, performs insufficient sanitising of data received from the streaming server, which might lead to buffer overflows and the execution of arbitrary code. For the stable distribution (sarge) this problem has been fixed in version 1.61.7-1sarge1. For the unstable distribution (sid) this problem has been fixed in version 1.61.25-2. We recommend that you upgrade your streamripper package. Upgrade Instructions - --------------------wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: Size/MD5 checksum: 684 81c2011992a47019464e689e62a0e2fc Size/MD5 checksum: 2748 a55c6752bf1f5cd184516e018f7b1d5b Size/MD5 checksum: 245448 87e16d42fb7625525eafe769edd2e9b3 Alpha architecture: Size/MD5 checksum: 62730 a11cd910042103cd75a229468e786a25 AMD64 architecture: Size/MD5 checksum: 5588693a8ab72c2a969b8eee99c9e105d8ad1 ARM architecture: Size/MD5 checksum: 51734 3d19a4711f9373be5630e1024f515ddc Intel IA-32 architecture: Size/MD5 checksum: 51694 cb59ef062ca1ca0c74a5b7359d2b5acd Intel IA-64 architecture: Size/MD5 checksum: 68218 ff13f983398a4694350916f4d44a817c HP Precision architecture: Size/MD5 checksum: 57016 aad39a310b38f131840929345cf50d6b Motorola 680x0 architecture: Size/MD5 checksum: 47922 a19ab1dd7fb150ae73fce92e519ab94e Big endian MIPS architecture: Size/MD5 checksum: 57088 b90697a7aecf7c2d838bdfae4af1ccc5 Little endian MIPS architecture: Size/MD5 checksum: 57490 0f1fbaeeec94a7f4c4d1340e68d611bb PowerPC architecture: Size/MD5 checksum: 55912 b2590326f71ddb6f9bf44fc933b28c50 IBM S/390 architecture: Size/MD5 checksum: 55456 60afcd68f13f131040c68cde36f4464a Sun Sparc architecture: Size/MD5 checksum: 51266 73736226d97be58202e1619518e3ae25 These files will probably be moved into the stable distribution on its next update. - ---------------------------------------------------------------------------------For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Ubuntu recommends addressing vulnerabilities in streamripper to prevent stack smashing, safeguarding systems from unauthorized program execution.. Debian Security, Streamripper Fix, Remote Execution Risk. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 27, 2006 Critical Debian
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here