Alerts This Week
Warning Icon 1 697
Alerts This Week
Warning Icon 1 697

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":547,"type":"x","order":1,"pct":78.48,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.88,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.34,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentooprivilege escalation

Gentoo: 202303-07 Urgent: Netwatchdog Vulnerability Exploit Notification

tcptraceroute 1.4 and earlier does not fully drop privileges after obtaining a file descriptor for capturing packets, which may allow local users to gain access to the descriptor via a separate vulnerability in tcptraceroute.. - - - --------------------------------------------------------------------- GENTOO LINUX SECURITY ANNOUNCEMENT 200306-14 - - - --------------------------------------------------------------------- PACKAGE : tcptraceroute SUMMARY : problems dropping root privileges DATE : 2003-06-28 20:21 UTC EXPLOIT : local VERSIONS AFFECTED : =tcptraceroute-1.4 CVE : CAN-2003-0489 - - - --------------------------------------------------------------------- quote from cve: "tcptraceroute 1.4 and earlier does not fully drop privileges after obtaining a file descriptor for capturing packets, which may allow local users to gain access to the descriptor via a separate vulnerability in tcptraceroute." SOLUTION It is recommended that all Gentoo Linux users who are running net-analyzer/tcptraceroute upgrade to tcptraceroute-1.4-r1 as follows emerge sync emerge tcptraceroute emerge clean - - - --------------------------------------------------------------------- This email address is being protected from spambots. You need JavaScript enabled to view it. - GnuPG key is available at - - - --------------------------------------------------------------------- . Enhance your system's security by following procedures to upgrade tcptraceroute on Gentoo, addressing the privilege escalation issue in advisory 200306-14. Gentoo Linux Security, Tcptraceroute Upgrade, Privilege Escalation Issue. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 01, 2003 Critical Gentoo
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebianprivilege escalation

Debian: DSA 330-1 Critical: Tcptraceroute Root Privileges

tcptraceroute is a setuid-root program which drops root privileges after obtaining a file descriptor used for raw packet capture. However, it did not fully relinquish all privileges, and in the event of an exploitable vulnerability, root privileges could be regained.. - -------------------------------------------------------------------------- Debian Security Advisory DSA 330-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Matt Zimmerman June 23rd, 2003 Debian -- Debian security FAQ - -------------------------------------------------------------------------- Package : tcptraceroute Vulnerability : failure to drop root privileges Problem-Type : local Debian-specific: no tcptraceroute is a setuid-root program which drops root privileges after obtaining a file descriptor used for raw packet capture. However, it did not fully relinquish all privileges, and in the event of an exploitable vulnerability, root privileges could be regained. No current exploit is known, but this safeguard is being repaired in order to provide a measure of containment in the event that an exploitable flaw should be discovered. For the stable distribution (woody) this problem has been fixed in version 1.2-2. The old stable distribution (potato) does not contain a tcptraceroute package. For the unstable distribution (sid) this problem is fixed in version 1.4-4. We recommend that you update your tcptraceroute package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody --------------------------------- Source archives: Size/MD5 checksum: 587 18ca2e69514a091fed7da65e5ca21323 Size/MD5 checksum: 985 a4ffe45dc75fe376fb5dc1f9d5fe1bfc Size/MD5 checksum: 25096 e31e3f5bfd817d32ed6d954382ca768d Alpha architecture: Size/MD5 checksum: 25426 bef51e445c5bbb672b98fec7d77d1b14 ARM architecture: Size/MD5 checksum: 22670 0750b8988f18cfe84b00712852cd3f6e Intel IA-32 architecture: Size/MD5 checksum: 21706 1fe11254d8dff3563f5e7874e243f317 Intel IA-64 architecture: Size/MD5 checksum: 29094 9f9b1d0f35c551b85580794d1483877e HP Precision architecture: Size/MD5 checksum: 23958 559580a3b8907c051c286a741ac7b433 Motorola 680x0 architecture: Size/MD5 checksum: 21116 e42d766086dc3aadc8b9f1034bc1257a Big endian MIPS architecture: Size/MD5 checksum: 23882 2541f59185b058a9c13c54958a4a1640 Little endian MIPS architecture: Size/MD5 checksum: 23974 01605e3ad001ca65c1a2ec4fb1fee447 PowerPC architecture: Size/MD5 checksum: 22544 7b9e6944134027de8a6093dcfab0a2d1 IBM S/390 architecture: Size/MD5 checksum: 22896 77ab846ecd80f4ee22fae0c427766fac Sun Sparc architecture: Size/MD5 checksum: 25154 48e700ba7f127f40e068632fb2fa6bdd These files will probably be moved into the stable distribution on its next revision. - --------------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . DSA 330-1 warns of a vulnerability in tcptraceroute that may lead to superuser privilege escalation. Users are urged to apply updates immediately. tcptraceroute exploit, privilege escalationdebian, local exploit fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 23, 2003 Critical Debian
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":547,"type":"x","order":1,"pct":78.48,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.88,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.34,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here