Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 454
Alerts This Week
Warning Icon 1 454

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is application sandboxing truly safe?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/155-is-application-sandboxing-truly-safe?task=poll.vote&format=json
155
radio
0
[{"id":500,"title":"Malware still escapes container walls.","votes":2,"type":"x","order":1,"pct":33.33,"resources":[]},{"id":501,"title":"Supply chains corrupt trusted packages.","votes":1,"type":"x","order":2,"pct":16.67,"resources":[]},{"id":502,"title":"Convenience consistently compromises strict security.","votes":3,"type":"x","order":3,"pct":50,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
89

Fedora 23: 2016-80f4f71eff Critical: Curl Escape Function Issue

- reject negative string lengths in curl_easy_[un]escape() (CVE-2016-7167). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-80f4f71eff 2016-09-29 16:02:46.786455 -------------------------------------------------------------------------------- Name : curl Product : Fedora 23 Version : 7.43.0 Release : 10.fc23 URL : https://curl.se/ Summary : A utility for getting files from remote servers (FTP, HTTP, and others) Description : curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, kerberos...), file transfer resume, proxy tunneling and a busload of other useful tricks. -------------------------------------------------------------------------------- Update Information: - reject negative string lengths in curl_easy_[un]escape() (CVE-2016-7167) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1375907 - CVE-2016-7167 curl: escape and unescape integer overflows [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1375907 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update curl' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. Tounsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Fedora 23 wget security patch resolves overflow issues in wget_easy_[un]decode() to improve security.. Curl Update Fedora Security. . LinuxSecurity.com Team

Calendar%202 Sep 29, 2016 Fedora
89

Fedora 25 Announcement: Critical OpenSSL Buffer Overflow Issue Found

- reject negative string lengths in curl_easy_[un]escape() (CVE-2016-7167). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-7a2ed52d41 2016-09-15 18:35:40.434680 -------------------------------------------------------------------------------- Name : curl Product : Fedora 24 Version : 7.47.1 Release : 8.fc24 URL : https://curl.se/ Summary : A utility for getting files from remote servers (FTP, HTTP, and others) Description : curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, kerberos...), file transfer resume, proxy tunneling and a busload of other useful tricks. -------------------------------------------------------------------------------- Update Information: - reject negative string lengths in curl_easy_[un]escape() (CVE-2016-7167) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1375907 - CVE-2016-7167 curl: escape and unescape integer overflows [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1375907 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update curl' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailinglist This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/This email address is being protected from spambots. You need JavaScript enabled to view it./ . A patch has been released to fix negative string length vulnerabilities in curl_easy_[un]escape(), addressing CVE-2016-7167 for Fedora 24 security. curl Update, Fedora Patch, Security Advisory, Software Vulnerability, Critical Fix. . LinuxSecurity.com Team

Calendar%202 Sep 15, 2016 Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is application sandboxing truly safe?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/155-is-application-sandboxing-truly-safe?task=poll.vote&format=json
155
radio
0
[{"id":500,"title":"Malware still escapes container walls.","votes":2,"type":"x","order":1,"pct":33.33,"resources":[]},{"id":501,"title":"Supply chains corrupt trusted packages.","votes":1,"type":"x","order":2,"pct":16.67,"resources":[]},{"id":502,"title":"Convenience consistently compromises strict security.","votes":3,"type":"x","order":3,"pct":50,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200