Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 1 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateupdate

SUSE: 2024:2468-1 Moderate: Traceroute Command Line Parsing Issue

* bsc#1216591 Cross-References: * CVE-2023-46316 . # Security update for traceroute Announcement ID: SUSE-SU-2024:2468-1 Rating: moderate References: * bsc#1216591 Cross-References: * CVE-2023-46316 CVSS scores: * CVE-2023-46316 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-46316 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for traceroute fixes the following issues: * CVE-2023-46316: wrapper scripts do not properly parse command lines (bsc#1216591). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2468=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (ppc64le) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2023-46316.html * https://bugzilla.suse.com/show_bug.cgi?id=1216591 . SUSE patches resolve a notable vulnerability in traceroute associated with CVE-2023-46316. Keep your system protected by applying these updates promptly.. SUSE Linux, Traceroute Update, CVE-2023-46316, Security Patch, Software Update. . LinuxSecurity.com Team

Calendar 2 Jul 12, 2024 SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateupdate

SUSE: 2023:4656-1 Moderate: Traceroute Command Parsing Issue

* bsc#1216591 Cross-References: * CVE-2023-46316 . # Security update for traceroute Announcement ID: SUSE-SU-2023:4656-1 Rating: moderate References: * bsc#1216591 Cross-References: * CVE-2023-46316 CVSS scores: * CVE-2023-46316 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-46316 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for traceroute fixes the following issues: * CVE-2023-46316: wrapper scripts do not properly parse command lines (bsc#1216591). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4656=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4656=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4656=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * traceroute-debuginfo-2.0.19-3.6.1 * traceroute-2.0.19-3.6.1 * traceroute-debugsource-2.0.19-3.6.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * traceroute-debuginfo-2.0.19-3.6.1 * traceroute-2.0.19-3.6.1 * traceroute-debugsource-2.0.19-3.6.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * traceroute-debuginfo-2.0.19-3.6.1 * traceroute-2.0.19-3.6.1 * traceroute-debugsource-2.0.19-3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2023-46316.html *https://bugzilla.suse.com/show_bug.cgi?id=1216591 . SUSE has released a security patch for traceroute, addressing a command execution flaw classified as moderate.. traceroute security fix,SUSE update,command parsing issue. . LinuxSecurity.com Team

Calendar 2 Dec 14, 2023 SuSE
Banner 2 1028x280 1708121730 1 1771599631
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderatesecurity issue

SUSE Container Update 2023:3935-1 moderate: traceroute issues resolved

The container suse/sle-micro/5.1/toolbox was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle-micro/5.1/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3935-1 Container Tags : suse/sle-micro/5.1/toolbox:12.1 , suse/sle-micro/5.1/toolbox:12.1-2.2.502 , suse/sle-micro/5.1/toolbox:latest Container Release : 2.2.502 Severity : moderate Type : security References : 1216591 CVE-2023-46316 ----------------------------------------------------------------- The container suse/sle-micro/5.1/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4623-1 Released: Thu Nov 30 19:22:32 2023 Summary: Security update for traceroute Type: security Severity: moderate References: 1216591,CVE-2023-46316 This update for traceroute fixes the following issues: - CVE-2023-46316: wrapper scripts do not properly parse command lines (bsc#1216591). The following package changes have been done: - traceroute-2.0.21-150000.3.3.1 updated . An update for the SUSE Container suse/sle-micro/5.1/toolbox has been released to fix moderate vulnerabilities associated with ping.. SUSE Container Security Update, Traceroute Fix, Container Advisory. . LinuxSecurity.com Team

Calendar 2 Dec 01, 2023 SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateupdate

SUSE: 2023:3926-1 Moderate: Traceroute Security Update for Toolbox

The container suse/sle-micro/5.5/toolbox was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle-micro/5.5/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3926-1 Container Tags : suse/sle-micro/5.5/toolbox:12.1 , suse/sle-micro/5.5/toolbox:12.1-2.2.108 , suse/sle-micro/5.5/toolbox:latest Container Release : 2.2.108 Severity : moderate Type : security References : 1216591 CVE-2023-46316 ----------------------------------------------------------------- The container suse/sle-micro/5.5/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4623-1 Released: Thu Nov 30 19:22:32 2023 Summary: Security update for traceroute Type: security Severity: moderate References: 1216591,CVE-2023-46316 This update for traceroute fixes the following issues: - CVE-2023-46316: wrapper scripts do not properly parse command lines (bsc#1216591). The following package changes have been done: - traceroute-2.0.21-150000.3.3.1 updated . SUSE Container Security Advisory for suse/sle-micro/5.5/toolbox concerning vulnerabilities related to nslookup, highlighting security risks and urging updates.. SUSE Container, Traceroute Update, Security Patch, Toolbox Advisory. . LinuxSecurity.com Team

Calendar 2 Dec 01, 2023 SuSE
Banner 2 1028x280 1708121730 1 1771599631
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderatetraceroute

SUSE: 2023:4623-1 moderate: traceroute command line problem

* bsc#1216591 Cross-References: * CVE-2023-46316 . # Security update for traceroute Announcement ID: SUSE-SU-2023:4623-1 Rating: moderate References: * bsc#1216591 Cross-References: * CVE-2023-46316 CVSS scores: * CVE-2023-46316 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-46316 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP4 * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.3 * openSUSE Leap Micro 5.4 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for traceroute fixes the following issues: * CVE-2023-46316: wrapper scripts do not properly parse command lines (bsc#1216591). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2023-4623=1 * openSUSE Leap Micro 5.4 zypper in -t patch openSUSE-Leap-Micro-5.4-2023-4623=1 * openSUSE Leap 15.4 zypper in -t patchopenSUSE-SLE-15.4-2023-4623=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2023-4623=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-4623=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-4623=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4623=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4623=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2023-4623=1 * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-4623=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2023-4623=1 ## Package List: * openSUSE Leap Micro 5.3 (aarch64 x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * openSUSE Leap Micro 5.4 (aarch64 s390x x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) *traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * traceroute-debuginfo-2.0.21-150000.3.3.1 * traceroute-debugsource-2.0.21-150000.3.3.1 * traceroute-2.0.21-150000.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2023-46316.html * https://bugzilla.suse.com/show_bug.cgi?id=1216591 . SUSE releases a significant patch for traceroute, addressing command line issues linked to CVE-2023-46316.. SUSE Traceroute Patch, Security Update, Command Line Fix. . LinuxSecurity.com Team

Calendar 2 Nov 30, 2023 SuSE
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorysecurity issuecommand execution

Ubuntu 22.04 LTS USN-6478-1 Moderate Traceroute Command Execution

Traceroute could be made to execute arbitrary commands.. ========================================================================== Ubuntu Security Notice USN-6478-1 November 14, 2023 traceroute vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS (Available with Ubuntu Pro) - Ubuntu 20.04 LTS (Available with Ubuntu Pro) - Ubuntu 18.04 LTS (Available with Ubuntu Pro) - Ubuntu 16.04 LTS (Available with Ubuntu Pro) - Ubuntu 14.04 LTS (Available with Ubuntu Pro) Summary: Traceroute could be made to execute arbitrary commands. Software Description: - traceroute: Traces the route taken by packets over an IPv4/IPv6 network Details: It was discovered that Traceroute did not properly parse command line arguments. An attacker could possibly use this issue to execute arbitrary commands. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS (Available with Ubuntu Pro): traceroute 1:2.1.0-2ubuntu0.22.04.1~esm1 Ubuntu 20.04 LTS (Available with Ubuntu Pro): traceroute 1:2.1.0-2ubuntu0.20.04.1~esm1 Ubuntu 18.04 LTS (Available with Ubuntu Pro): traceroute 1:2.1.0-2ubuntu0.18.04.1~esm1 Ubuntu 16.04 LTS (Available with Ubuntu Pro): traceroute 1:2.0.21-1ubuntu0.1~esm1 Ubuntu 14.04 LTS (Available with Ubuntu Pro): traceroute 1:2.0.20-0ubuntu0.1+esm1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6478-1 CVE-2023-46316 . Ubuntu USN-6478-1 tackles a critical vulnerability in the traceroute tool that might enable the execution of unauthorized commands. Here are the key update specifics.. traceroutevulnerability,ubuntu security notice,command execution risk. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 14, 2023 Important Ubuntu
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 39 FEDORA-2023-b870a4de82 Moderate Traceroute Network Tool Update

Update to 2.1.3. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-b870a4de82 2023-09-29 00:18:30.089942 -------------------------------------------------------------------------------- Name : traceroute Product : Fedora 39 Version : 2.1.3 Release : 1.fc39 URL : Summary : Traces the route taken by packets over an IPv4/IPv6 network Description : The traceroute utility displays the route used by IP packets on their way to a specified network (or Internet) host. Traceroute displays the IP number and host name (if possible) of the machines along the route taken by the packets. Traceroute is used as a network debugging tool. If you're having network connectivity problems, traceroute will show you where the trouble is coming from along the route. Install traceroute if you need a tool for diagnosing network connectivity problems. -------------------------------------------------------------------------------- Update Information: Update to 2.1.3 -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 21 2023 Dmitry Butskoy - 3:2.1.3-1 - update to 2.1.3 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-b870a4de82' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Delve into the latest Fedora update FEDORA-2023-c670a4de83 that enhances the traceroute functionality, improving network path analysis.. Fedora Update, Traceroute Tool, Network Diagnostics, IPv4 IPv6, Update Notification. . LinuxSecurity.com Team

Calendar 2 Sep 29, 2023 Fedora
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorybuffer overflowcritical

Ubuntu: DSA 255-2 High: Network Analyzer Memory Leak Issue

Due to insufficient bounds checking performed by the whois parser, it may be possible to corrupt memory on the system stack.. -------------------------------------------------------------------------- Debian Security Advisory DSA 254-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Martin Schulze February 27th, 2003 http://www.debian.org/security/faq -------------------------------------------------------------------------- Package : traceroute-nanog Vulnerability : buffer overflow Problem-Type : local, remote Debian-specific: no CVE Id : CAN-2002-1051 CAN-2002-1364 CAN-2002-1386 CAN-2002-1387 BugTraq Id : 4956 6166 6274 6275 A vulnerability has been discovered in NANOG traceroute, an enhanced version of the Van Jacobson/BSD traceroute program. A buffer overflow occurs in the 'get_origin()' function. Due to insufficient bounds checking performed by the whois parser, it may be possible to corrupt memory on the system stack. This vulnerability can be exploited by a remote attacker to gain root privileges on a target host. Though, most probably not in Debian. The Common Vulnerabilities and Exposures (CVE) project additionally identified the following vulnerabilities which were already fixed in the Debian version in stable (woody) and oldstable (potato) and are mentioned here for completeness (and since other distributions had to release a separate advisory for them): * CAN-2002-1364 (BugTraq ID 6166) talks about a buffer overflow in the get_origin function which allows attackers to execute arbitrary code via long WHOIS responses. * CAN-2002-1051 (BugTraq ID 4956) talks about a format string vulnerability that allows local users to execute arbitrary code via the -T (terminator) command line argument. * CAN-2002-1386 talks about a buffer overflow that may allow local users to execute arbitrary code via a long hostname argument. * CAN-2002-1387 talks about the spray mode that mayallow local users to overwrite arbitrary memory locations. Fortunately, the Debian package drops privileges quite early after startup, so those problems aer not likely to result in an exploit on a Debian machine. For the current stable distribution (woody) the above problem has been fixed in version 6.1.1-1.2. For the old stable distribution (potato) the above problem has been fixed in version 6.0-2.2. For the unstable distribution (sid) these problems have been fixed in version 6.3.0-1. We recommend that you upgrade your traceroute-nanog package. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 2.2 alias potato --------------------------------- Source archives: Size/MD5 checksum: 578 c0a65b3b527a4939ceb53195eb67078f Size/MD5 checksum: 6651 74ae0eb419bd8bcbcf3f0f591b1015aa Size/MD5 checksum: 27020 39246e5b1d44d6276489d4801c4a7bfb Alpha architecture: Size/MD5 checksum: 23168 67c44d189c1c2c8384e49fda6dc25df1 ARM architecture: Size/MD5 checksum: 19872 4f9a429c9eb0623e02ebcf226dcfb20a Intel IA-32 architecture: Size/MD5 checksum: 18588 78445b5c9cbef332d14f22e40dce094b Motorola 680x0 architecture: Size/MD5 checksum: 17742 a797b9831aee1f5bdca3fa879a39fc34 PowerPC architecture: Size/MD5 checksum: 19550 66ccd20f5d062885425531ee141d0cf1 Sun Sparc architecture: Size/MD5 checksum: 22154 623a8662411fd9a00fea53688237c60d Debian GNU/Linux 3.0 alias woody -------------------------------- Source archives: Size/MD5 checksum: 589d7eb4bd225e4f2fc16c021776da0c081 Size/MD5 checksum: 6769 fbe2f9d877d77681846838bf7dea67f2 Size/MD5 checksum: 27560 493e77d8cf0e86744668e3efd4622378 Alpha architecture: Size/MD5 checksum: 23882 82ddf32182750bc2fa044a6cf9a85733 ARM architecture: Size/MD5 checksum: 20374 e23517c29047740b8d8b0ae7820e10f8 Intel IA-32 architecture: Size/MD5 checksum: 19068 2be7ec42cc04ffff294a53b3156126d2 Intel IA-64 architecture: Size/MD5 checksum: 26644 6c77e2d0deca24c66840705f790bdb80 HP Precision architecture: Size/MD5 checksum: 21754 562203dd8680bc949e13af13665a5bf7 Motorola 680x0 architecture: Size/MD5 checksum: 18360 511b65c864403cdd3837a5f864349244 Big endian MIPS architecture: Size/MD5 checksum: 21370 67ea3bb02eae05d9036cacd9b2077a04 Little endian MIPS architecture: Size/MD5 checksum: 21414 4d3606016b222a566fc9b9221b1cf7e5 PowerPC architecture: Size/MD5 checksum: 20320 378a7f4eaf2b14f30d8d1e97d5562bdc IBM S/390 architecture: Size/MD5 checksum: 20286 3433605f96800f3028330cac370018e8 Sun Sparc architecture: Size/MD5 checksum: 23038 2785266b4cd3c7c14ebd50be2095dcf4 These files will probably be moved into the stable distribution on its next revision. --------------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . A significant memory corruption affecting traceroute-nanog due to buffer overflow risks identified in Debian distributions.. Debian Advisory, Traceroute Exploit, Memory Corruption Issue, Security Bulletin. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 27, 2003 Important Debian
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here