Stay Ahead With Linux Security Features
threat detection scalability Building a SIEM is easier than scaling one. Most open-source deployments start as a simple "all-in-one" server. It is easy to set up, but that design rarely survives the transition from a lab to a production workload. . A SIEM watching 20 endpoints is not doing the same job as one watching 500. More endpoints mean more logs; more logs require more storage; more storage makes search heavier. Eventually, the very architecture that made your lab easy to deploy becomes the reason your production...
Jun 04, 2026
security advisory apache A newly disclosed attack technique called HTTP/2 Bomb is drawing attention because it targets the software that sits at the front of much of the Linux internet. Apache HTTP Server, NGINX, Envoy, and the ingress layers that many Kubernetes environments depend on can be forced into consuming disproportionate amounts of memory using relatively small amounts of attacker traffic. . For Linux administrators, the concern is not the HTTP/2 protocol itself. It is the possibility that a single...
Jun 04, 2026
security advisory important The compromise of Nx Console shows how much infrastructure now sits behind a single developer account. GitHub repositories, CI/CD pipelines, container build systems, Terraform projects, Kubernetes deployments. None of those systems was the initial target. The workstation was. . Attackers did not need a Linux privilege escalation bug or a remote code execution chain. They needed developers to trust a tool they were already using. For many organizations, that was enough. What Happened? Federal...
Jun 03, 2026
security advisory open-source You remove the malware. You rotate the compromised credentials. You patch the original vulnerability and close the ticket. Two weeks later, the attacker is back. . What happened? You didn't lose the battle at the exploit; you lost it at the cleanup. In many modern Linux intrusions, the malware you found wasn't the main problem—it was the fallback mechanisms left behind. These hooks quietly restore attacker access the moment you look away. If you clean a host but miss these persistence layers,...
Jun 02, 2026
security advisory Red Hat Researchers investigating a campaign now tracked as Miasma found that more than 30 packages in Red Hat's @redhat-cloud-services npm namespace had been altered to deliver credential-stealing malware. . The packages weren't being used to deploy ransomware or sabotage systems. From what has been reported so far, the objective appears to have been much simpler: collect credentials from developer environments and use that access elsewhere. GitHub tokens, cloud credentials, SSH keys, and other...
Jun 02, 2026
Refine features
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security features
We found -2 articles for you...
102
security advisorydenial of servicenetwork securityChromium: High-Risk DoS and Info Disclosure Security Advisory
Several high-impact, remotely exploitable cybersecurity vulnerabilities were recently discovered in the popular Chromium free and open-source web browser. These network security issues could lead to the execution of arbitrary code, Denial of Service (DoS) attacks resulting in potentially exploitable crashes, or the disclosure of sensitive information. . Luckily, important Chromium security updates can fix these bugs and are now available. This article will cover these dangerous exploits in cybersecurity recently identified in Chromium and how users can update their systems to protect against these risks. The Discovery & The Impact The most severe data and network security threats recently discovered and patched in Chromium include: CVE-2023-1810: Heap buffer overflow in Visuals in Google Chrome prior to 112.0.5615.49 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2023-1811: Use after free in Frames in Google Chrome prior to 112.0.5615.49 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2023-1812: Out-of-bounds memory access in DOM Bindings in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to perform out-of-bounds memory access via a crafted HTML page. (Chromium security severity: Medium) CVE-2023-1813: Inappropriate implementation of Extensions in Google Chrome prior to 112.0.5615.49 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium) CVE-2023-1814: Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to bypass download checking via a crafted HTML page. (Chromium security severity: Medium) CVE-2023-1815: Use after free in Networking APIs in Google Chrome prior to 112.0.5615.49 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) CVE-2023-1816: Incorrect security UI in Picture In Picture in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to potentially perform navigation spoofing via a crafted HTML page. (Chromium security severity: Medium) CVE-2023-1817: Insufficient policy enforcement in Intents in Google Chrome on Android prior to 1 12.0.5615.49 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium) CVE-2023-1818: Use after free in Vulkan in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) CVE-2023-1819: Out-of-bounds read in Accessibility in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to perform an out-of-bounds memory read via a crafted HTML page. (Chromium security severity: Medium) CVE-2023-1820: Heap buffer overflow in Browser History in Google Chrome prior to 112.0.5615.49 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) CVE-2023-2033: Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Many of the cybersecurity vulnerabilities have been rated by the National Vulnerability Database as having a critical or high severity. These network security issues have a high impact on confidentiality, integrity, and availability. How Can I Secure My System Against These Critical Bugs? Chromium has released an important security update mitigatingthese network security issues. We strongly recommend that all impacted users apply the Chromium updates issued by their distro(s) as soon as possible to protect against exploits in network security leading to downtime, system compromise, and sensitive data loss. To see if your distro has issued an advisory for these Chromium cybersecurity vulnerabilities and to stay on top of important updates released by the open-source programs and applications you use, be sure to register as a LinuxSecurity user , then subscribe to our Linux Advisory Watch newsletter and customize your advisories for the distro(s) you use. This will enable you to stay up-to-date on the latest, most significant network security threats impacting your systems. We also encourage you to follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s) . Linux security expert and LinuxSecurity.com Founder Dave Wreski concludes, “It is crucial that all admins and organizations track security advisories diligently and apply patches as soon as they are released in order to stay ahead of attackers looking to exploit vulnerabilities to gain access to critical systems and confidential information.” . Important Chromium security updates can fix high-impact vulnerabilities. Apply patches to secure your systems promptly.. high-impact, remotely, exploitable, cybersecurity, vulnerabilities, recently. . Brittany Day
Apr 21, 2023
•
102
security advisorybug fixinstallation instructionsTails 4.21: Installation Tips And Updates For Enhanced Privacy
Tails , or "The Amnesic Incognito Live System", has released the latest version of its privacy-focused secure Linux distro, Tails 4.21, with various changes, bug fixes and improvements including: An update to Tor Browser 10.5.4 An update to Thunderbird 78.12 A fix for a bug in Tails Installer that enabled the deletion of Persistent Storage when doing a manual upgrade . Get Tails 4.21 Automatic upgrades are available from Tails 4.19 or later to 4.21. If you cannot do an automatic upgrade or if Tails fails to start after an automatic upgrade, please try to do a manual upgrade . To install Tails on a new USB stick from Linux, follow these installation instructions . If you don't need installation or upgrade instructions, you can download Tails 4.21 directly as a USB image or an ISO image . What's Next? The release of Tails 4.22 is scheduled for September 7th. Have a look at the distro's roadmap to learn more about what you can look forward to in upcoming releases! We want to hear what you think of Tails 4.21. Let us know on Twitter ! . Switch to Tails 4.21 for improved anonymity; features updates and an essential patch for Persistent Storage.. Tails, Privacy Distribution, Tor Browser, Linux Installation, Secure System. . Brittany Day
Aug 10, 2021
•
102
security advisorysoftware updatebug fixApache SpamAssassin 3.4.6: Fix Two Minor Bugs for Enhanced Security
On April 12, 2021, the Apache SpamAssassin Project announced the release of Apache SpamAssassin Version 3.4.6 mitigating two small but potentially annoying bugs introduced in Version 3.4.5, which was created to fix a few security vulnerabilities just a few weeks ago. . A Quick Introduction to Apache SpamAssassin Apache SpamAssassin is a mature, widely-deployed open-source project that serves as a mail filter to identify spam. SpamAssassin leverages a combination of mail header and text analysis, Bayesian filtering, DNS blocklists, and collaborative filtering databases. SpamAssassin’s flexible modular architecture makes the framework compatible with a wide array of other technologies Apache SpamAssassin typically runs on a server, classifying and labeling spam before it reaches your mailbox, while allowing other components of a mail system to act on its results. Portability, robustness and facilitated maintenance are among the key benefits that Apache SpamAssassin offers. What’s New in Apache SpamAssassin Version 3.4.6? While the release of Apache SpamAssassin doesn’t include any groundbreaking new features, configuration options or Internal changes, it does feature mitigations for two minor - but potentially aggravating - bugs introduced in Version 3.4.5. Sidney Markowitz, Apache SpamAssassin PMC Chair, stated in a recent announcement email: Apache SpamAssassin 3.4.6 fixes two small but potentially annoying bugs in 3.4.5 *** On March 1, 2020, we stopped publishing rulesets with SHA-1 signatures. If you do not update to 3.4.2 or later, you will be stuck at the last ruleset with SHA-1 signatures. Such an upgrade should be to 3.4.6 to obtain the contained security fixes *** *** Ongoing development on the 3.4 branch has ceased. All future releases and bug fixes will be on the 4.0 series, unless a new security issue is found that necessitates a 3.4.7 release. *** Many thanks to the committers, contributors, ruletesters, mass checkers, and code testers who have made this release possible. Notable changes --------------- This release includes fixes for the following: - Fixed URIDNSBL not triggering meta rules - Fix false positive in T_KAM_HTML_FONT_INVALID on CSS color !important Downloading and availability ---------------------------- Downloads are available from: spamassassin.apache.org/downloads.cgi The Bottom Line The release of Apache SpamAssassin Version 3.4.6 is fairly mundane when it comes to features, improvements and optimizations. That being said, the release does introduce fixes for two small but potentially annoying security bugs introduced in Version 3.4.5. Upgrading is quick, easy and free and stands to make your SpamAssassin user experience more pleasant and hassle-free. All in all, it seems like the logical decision to make the switch to Apache SpamAssassin Version 3.4.6. . Update to Apache SpamAssassin 3.4.6 to fix two small issues from version 3.4.5 for improved functionality.. Apache SpamAssassin Update,Bug Fix,Mail Filtering,Open Source Project. . Brittany Day
Apr 14, 2021
•
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More