Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 43 articles for you...
210
security advisoryuser protectionlinux securityChrome 131: Emergency Update for High-Risk Vulnerabilities in Linux
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security vulnerabilities. Chrome version 131 is now available in stable channels for Windows, Mac, Linux, and Android, and users should update promptly so their systems remain secure. . In this article, we explore these recent Chrome vulnerabilities, their impact, and how users can protect themselves. In addition, we offer mitigation advice to Linux admins looking to protect themselves from future Chrome bugs. Understanding These Vulnerabilities & Their Impact Chrome 131 includes several security fixes aimed at improving users' system security. Below is an overview of the vulnerabilities recently found and fixed in Chrome: CVE-2024-11110 : Inappropriate Implementation in Blink Severity: High Reported by: Vsevolod Kokorin (Slonser) of Solidlab Reported on: 2024-10-14 Description: This issue concerns an inappropriate implementation in Blink, Chrome's browser engine. The vulnerability could allow attackers to exploit the system, potentially leading to unauthorized access or manipulation of the user's data. CVE-2024-11111 : Inappropriate Implementation in Autofill Severity: Medium Reported by: Narendra Bhati, Suma Soft Pvt. Ltd - Pune (India) Reported on: 2024-08-18 Description: This vulnerability involves Autofill functionalities, which could result in sensitive information being incorrectly supplied or leaked. CVE-2024-11112 : Use-After-Free in Media Severity: Medium Reported by: Nan Wang and Zhenghang Xiao of 360 Vulnerability Research Institute Reported on: 2024-07-23 Description: This use-after-free vulnerability affects Chrome's media handling, which could allow attackers to execute arbitrary code or cause a denial of service. CVE-2024-11113 : Use-After-Free in Accessibility Severity: Medium Reported by: Weipeng Jiang of VRI Reported on: 2024-08-16 Description: This issue involves the Accessibilitycomponent. Similar to the media vulnerability, it could enable arbitrary code execution or crash the application. CVE-2024-11114 : Inappropriate Implementation in Views Severity: Medium Reported by: Micky Reported on: 2024-10-02 Description: This vulnerability pertains to the Views feature, leading to potential unauthorized interactions or data manipulation. CVE-2024-11115 : Insufficient Policy Enforcement in Navigation Severity: Medium Reported by: mastersplinter Reported on: 2024-10-07 Description: Issues in navigation policy enforcement could result in unauthorized navigation actions that bypass intended security controls. CVE-2024-11116 : Inappropriate Implementation in Paint Severity: Medium Reported by: Thomas Orlita Reported on: 2023-11-14 Description: Vulnerabilities in the Paint feature can lead to improper rendering or manipulation of user content. CVE-2024-11117 : Inappropriate Implementation in FileSystem Severity: Low Reported by: Ameen Basha M K Reported on: 2023-01-06 Description: This issue affects the FileSystem API and could expose file-handling operations to unauthorized actions. CVE-2024-11395 : Type Confusion Issue in V8 Severity: High Reported by: Anonymous Reported on: 2024-11-05 Description: A Type Confusion issue in V8, Chrome’s JavaScript engine, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2024-12053: Type Confusion Issue in V8 Severity: High Reported by: Anonymous Reported on: 2024-12-03 Description: A Type Confusion Bug in V8 in Google Chrome before 131.0.6778.108 allowed a remote attacker to exploit object corruption via a crafted HTML page. Additional issues were identified and resolved through Google’s internal security work, leveraging tools like AddressSanitizer, MemorySanitizer, and other fuzzing initiatives . These preventive measures are essential in identifying and addressing vulnerabilities before exploitation. At-Risk Chrome Versions Google Chrome versions before 131.0.6778.108/.109 for Linux are vulnerable, so users on these platforms must update their browsers immediately to reduce potential threats. Consistently updating Chrome ensures you benefit from the latest security patches and feature enhancements. How Can I Update Google Chrome on Linux? Updating Google Chrome is crucial because it ensures you have the latest security patches, protecting you from potential threats like malware and phishing attacks while also providing access to new features and performance improvements, making your browsing experience safer and more efficient; essentially, keeping your Chrome browser up-to-date is vital for optimal security and functionality. Updating Google Chrome on your Linux system using a package manager is straightforward and necessary for us security-conscious admins! The LinuxSecurity team has put together a comprehensive guide on keeping your distro updated that explains the steps you can follow to update Chrome to the latest version for your distro. You can also verify that you're using the latest version of Chrome by following a few simple steps. After performing the update using a package manager, open Google Chrome and click on the three-dot menu in the upper-right corner. Then, navigate to Help > About Google Chrome . This will display the current version of Chrome installed on your system. Compare this with the latest version. If the versions match, your update was successful. Additionally, you can use commands like google-chrome --version on the command line to check the installed version directly. Ensure the version number reflected here matches the latest release. It is essential to stay informed and proactive about maintaining your system's security and functionality, and LinuxSecurity's Feature articles and newsletters are an excellent way to do so. Practical Mitigation Advice for Linux Administrators Linux admins can implement additional safeguards tofortify their systems against browser-related vulnerabilities. While staying current with Chrome updates is the primary solution, the measures below will further protect your systems: Regular Updates Implement a policy of regular system updates, including browser updates and updates to your Linux distro(s). Also, admins should Use package managers like APT (Debian-based systems) or YUM (RedHat-based systems) to keep software up-to-date automatically. Restrictive Permissions Limit the permissions of browser processes using AppArmor or SELinux policies to limit what Chrome can access on the system and minimize potential impact from compromised browsers. Sandboxing for Isolation Use tools like Firejail to run Chrome in an isolated sandbox environment, which adds another layer of protection and limits an attacker's reach even if Chrome becomes compromised. Restrict Network Activity Apply network-level protections to filter and monitor traffic, restricting connections to known safe locations while looking for suspicious activity. Security Hardening Apply general hardening policies across all systems. Disable unnecessary services, limit user permissions and enforce strong password policies. Regular Security Audits and Penetration Testing Conduct regular security audits and penetration testing to detect vulnerabilities in system configuration and software before hackers can exploit them. Our Final Thoughts on Securing Against These Recent Chrome Bugs Linux administrators can significantly mitigate browser vulnerability risks and maintain robust system security by taking proactive steps and implementing these mitigation measures. By understanding the nature of these vulnerabilities, swiftly updating Chrome, and applying recommended mitigation strategies, users and administrators can better protect their systems from potential threats and enjoy a safer browsing experience. . Investigate the newest Chrome security flaws, their consequences, and the best methods tosafeguard your systems efficiently.. Chrome Update, System Security, Browser Vulnerabilities, User Protection. . Brittany Day
Dec 04, 2024
•
Security Vulnerabilities
210
security advisorysoftware patchLinux distributionGoogle Chrome Update: Addressing Critical Chromium Flaws on Linux
Google Chrome, one of the world's most widely used web browsers, has recently been scrutinized due to the discovery of multiple Chromium vulnerabilities that threaten user safety and privacy. Chromium is the open-source web browser project that is the basis of Chrome and many other widely used browsers. . These issues highlight the struggle between providing user-friendly software and protecting it with robust security measures. I'll explain these recent vulnerabilities in more depth, help you determine if you are at risk, and explain how to update Chrome to protect your privacy and security online. Unpacking These Recent Chromium Vulnerabilities Google released a critical security update to Google Chrome on August 6, 2024, to address a series of vulnerabilities that potentially allowed attackers to install malicious code on users' systems. Linux version 127.0.6533.99 aims to address these flaws. CVE-2024-7532 was identified as the most severe vulnerability involving out-of-bounds memory access in ANGLE (Almost Native Graphics Layer Engine). Considered critical, this flaw could enable attackers to execute arbitrary code, and cause system crashes. Apart from CVE-2024-7532, the update includes resolution for several high-severity issues: CVE-2024-7533 is a use-after-free vulnerability in the Sharing feature. CVE-2024-7550 is a type confusion flaw in the V8 JavaScript engine. CVE-2024-7534 is a heap buffer overflow in the Layout component CVE-2024-7535 represents inappropriate implementation in V8. CVE-2024-7536 involves WebAudio use-after-free vulnerabilities that enable malicious actors to gain unauthorized access, access sensitive data, or inject and execute arbitrary malicious code. Impact and Risk Evaluation Due to Chrome's widespread usage across platforms, these vulnerabilities have far-reaching ramifications. One immediate risk for individual users lies in their privacy and security. If their browser session becomes hijacked, personal andfinancial data could be stolen, and unwanted actions could be taken on their behalf. Organizations that rely heavily on web applications for operations are especially at risk since security flaws in these apps could allow attackers to penetrate organizational networks and steal sensitive data. This risk is especially acute in finance, healthcare, and government services. Any user, small business owner, or large enterprise using unpatched versions of Google Chrome could be susceptible to these vulnerabilities. This includes individual users and businesses without rapid update policies in place. Why Are Timely Updates Essential & How Can I Update Chrome on Linux? These vulnerabilities have been addressed with Google's recent Chrome update . Updating immediately is an essential preventative measure against potential attacks. Google did not reveal specifics regarding each vulnerability to protect against further exploitation. Instead, it is relying on users updating their browsers to protect themselves. Updating Google Chrome on Linux can be an effortless but effective way of protecting against vulnerabilities that exist within it. Here's how to update: Launch Google Chrome: Launching the Chrome browser is the first step in getting Google Chrome up and running. Access the Menu: To open, click on the three-dot menu in your browser's top-right corner. Navigating to Help: Navigate to Google Chrome > About, and your browser will take you directly to a page that displays its current version and checks for updates. Automatic Update: If an update is available, Chrome will begin the update process automatically. Wait for it to download and install before taking action. Restart Chrome: Once the update is installed, the browser must be relaunched to complete it successfully. An icon will remind you when it is ready and to relaunch immediately afterward. Verifying Your Updates: To ensure the update has taken effect, visit Help > About Google Chrome to view its updatedversion number. Our Final Thoughts on These Severe Chromium Bugs Chromium vulnerabilities are a stark reminder of the perils inherent to digital security and highlight the necessity of constant vigilance. Users can significantly mitigate risks by understanding these vulnerabilities and possible repercussions and updating their systems with security patches . Linux users should follow this straightforward update process to safeguard their digital privacy and security. Staying informed and proactive is critical in protecting our digital lives! . Enhance your system's security with Chromium by ensuring that Google Chrome is freshly updated on Linux. Safeguard your privacy and maintain user safety efficiently.. Google Chrome Security, Chromium Update, User Privacy Measures, Cybersecurity Risks. . Brittany Day
Sep 04, 2024
•
Security Vulnerabilities
210
security advisorycyber threatsadaptive securityAddressing 0.0.0.0 Day Flaw: Critical Browser Updates and Insights
At a time when security breaches have become increasingly sophisticated, an oversight that had persisted across major browsers for years has now been addressed. This critical security update protects personal and enterprise digital spaces against an obscure vulnerability: the 0.0.0.0 IPv4 address. . This vulnerability highlights the stealth of cyber threats and the critical importance of adaptive security measures in combating them. I'll explain this vulnerability, its impact, and the community's response and provide insight into what we can learn from it. Understanding the 0.0.0.0 Day Vulnerability Oligo Security recently discovered and patched an alarming security loophole that enabled malicious web pages to request IPv4 address "0.0.0.0", giving attackers access to services ordinarily inaccessible from outside, even behind firewalls, and considered secure. They labeled this oversight the "0.0.0.0 Day" due to its long duration without being appropriately addressed. This vulnerability impacts browsers like Google Chrome, Microsoft Edge, Firefox, and Safari, which run on MacOS and Linux systems. According to reports, attackers have exploited this flaw since at least the late 2000s, with threads discussing similar issues dating back then. Impact and Exploitation Exploiting this flaw is shockingly straightforward: when users visit malicious webpages, their requests are routed directly to 0.0.0.0 at the port number given, potentially revealing sensitive data or permitting unintended interactions between services that should be protected against external access and the Internet. Even though its chances for actual exploitation may seem remote, vulnerability remains an inherent risk in any local service system. Many believe their local services are safe from external threats, but in actuality, they must take measures to secure them against external attacks. Response and Mitigations After discovering this bug, browser developers quickly responded. Chromium-based browsers like GoogleChrome, Microsoft Edge, WebKit-based Safari, and Mozilla's Firefox are all pledged solutions. Chrome promises to block access to 0.0.0.0 starting with Chromium version 128 and complete implementation by version 133. Private Network Access (PNA) [Source: https://developer.chrome.com/blog/private-network-access-update ] Safari has modified its WebKit engine to block access, while Mozilla altered its Fetch specification to stop exploits of this kind. While these browser-based fixes are key, they signal the need for standardization in protecting local networks against web threats. Cross-Origin Resource Sharing (CORS) and Private Network Access (PNA) were meant to protect against this vulnerability by restricting web pages from reaching private networks or local services. Unfortunately, the 0.0.0.0 Day exploit managed to circumvent them and exploit local network access. Oligo Security's research underscores the necessity for more robust standards like PNA to be widely adopted and properly implemented across browsers and web services. This incident is a stark reminder of cyber threats' ever-evolving nature and requires us to advance defenses against them constantly. Practical Takeaways & Recommendations Businesses and individual users should view this vulnerability as an alert that reminds them to reevaluate their digital security posture, specifically surrounding local services that can be accessed over the web. Below are some steps they can take to increase protection from similar vulnerabilities: Stay Current With Web Browser Updates: Staying current with web browser updates will allow you to take advantage of security patches and improvements as soon as they become available. Audit Local Services: Regularly assess any services running locally on devices for their necessity and potential risks. Implement Network Segmentation: Where possible, segment networks to isolate sensitive services and ensure additional layers of isolation for them. Educate andInform Users: Users and teams should be aware of any risks associated with local services and encouraged to practice safe browsing habits to protect themselves. Our Final Thoughts: What Can We Learn from This Flaw? The patching of the 0.0.0.0 Day vulnerability in virtually all major web browsers marks an essential achievement in the ongoing fight against digital threats while reminding us of their complexity and ever-evolving nature. By learning from such oversights, digital communities can further fortify their defenses and ensure a safer cyberspace. Preventing similar vulnerabilities requires an ongoing partnership among developers, users, and security professionals - with all parties working to improve digital security against attackers' ingenuity. Staying one step ahead in this digital cat-and-mouse game through continued vigilance, cooperation, and innovation is essential. . A critical security update for major browsers addresses the 0.0.0.0 Day vulnerability, revealing exploit risks and solutions.. security, breaches, become, increasingly, sophisticated, oversight, persi. . Dave Wreski
Aug 11, 2024
•
Security Vulnerabilities
78
security advisorydebianubuntuMozilla Firefox for Ubuntu & Debian: Security Update and Performance Boost
Mozilla has released a new Firefox package specifically designed for Ubuntu, Debian, and other Debian-based distributions in the Linux community. This package aims to provide a refined browsing experience and enhanced security for Linux enthusiasts. . The new package is 100 percent built by Mozilla, signifying the organization's commitment to providing an authentic and reliable product. Mozilla has also implemented performance optimizations, leveraging their decades of experience in creating free, open-source web browsers. Faster updates and integration with the APT repository are introduced to ensure users receive the latest functionalities and security fixes promptly. Overall, Mozilla's focus on enhancing the user experience on Linux is evident in this release. The Significance & Security Implications of This Release The collaboration between a popular software provider, Mozilla, and the Linux community in this release is noteworthy. The fact that the Firefox package is 100 percent built by Mozilla has implications for long-term trust and reliability. This shift ensures that Linux users receive a browser assembled directly from its source code without any potentially insecure modifications made by external parties specific to each distribution. This raises the question of how this new approach will impact the overall security posture of Linux users in the face of emerging threats and vulnerabilities . Additionally, this release features advanced compiler-based optimizations for improved performance. This showcases Mozilla's dedication to leveraging its expertise in web browsers to provide an optimized experience for Linux users. The implications of this optimization could have a long-term effect on Linux admins and sysadmins, as they would need to consider the performance impact on their systems, particularly in resource-constrained environments. Integrating the new APT repository directly into the Firefox release process introduces faster updates. While this ensures that users haveaccess to the latest functionalities and security fixes promptly, it also means that Linux admins and infosec professionals need to be vigilant in applying these updates to maintain the security of their systems. The impact on the user experience must not be overlooked, as browser restarts are necessary to apply these updates. This introduces both convenience and potential disruptions for users, especially in critical environments where continuous availability is essential. Our Final Thoughts on this Release In conclusion, Mozilla's release of the new Firefox package tailored for Linux, specifically Ubuntu and Debian-based distributions, is an exciting development for the Linux community. It presents an opportunity for Linux admins, infosec professionals, internet security enthusiasts, and sysadmins to enhance the browsing experience and security posture of their systems. However, critical questions arise regarding the long-term implications of the direct integration between Mozilla and the Linux community, the impact of performance optimizations on resource-constrained systems, and the responsibility of users to promptly apply updates. As security practitioners, it is crucial for readers to stay informed , understand the implications, and adapt their strategies to leverage the improved features while maintaining a robust security posture. . Discover improved security and performance through the latest release of Chrome, designed specifically for Fedora and Arch Linux fans.. Mozilla Firefox, Linux Packages, Debian Security, Ubuntu Updates, Browser Optimization. . LinuxSecurity.com Team
Jan 23, 2024
•
Vendors/Products
81
security featurebrowser updateopen-source toolFirefox 119: New Security Tools and Expanded View Features
Mozilla has rolled out Firefox 119.0 , the latest version of its open-source, Gecko-powered web browser for Windows, Mac, Linux and Android. . The new release offers two notable new features -- a major expansion of its Firefox View tab’s content, plus additional PDF editing tools along with a slew of security and privacy enhancements. Firefox 119.0 opens by adding more content to the Firefox View tab, which turned a year old this month. It now displays all open tabs -- including from other windows and synced devices. A browser history option has also been added, along with sort options by date or by site. The browser also implements improvements to its PDF viewing tool that will extend its editing capabilities to allow users to add both images and alt text captions. Both features may not appear immediately as they’re being rolled out across the user base. . The latest update introduces two remarkable enhancements, featuring a major upgrade to the Chrome Overview and improved document editing capabilities.. Firefox Features, Open-Source Browser, PDF Tools, Mozilla Privacy, Browser Update. . LinuxSecurity.com Team
Oct 25, 2023
•
Privacy
78
Linuxenhanced securitymacOSMicrosoft Edge Beta: Enhanced Security for MacOS and Linux x64
Microsoft Edge Beta has a new update available that brings a couple of changes. The rollout of Edge version 111.0.1661.15 brings enhanced security mode support for WebAssembly for macOS x64 and Linux x64. Microsoft promises more cross-platform support in the future, such as working with ARM64. . Additionally, a new policy makes it easier to set if Edge clears data from Internet Explorer mode every time the browser is closed. Enhanced security mode improvements. Enhanced security mode now supports WebAssembly for macOS x64 and Linux x64. More cross-platform (ARM64) support is expected in the future. For more information, see Browse more safely with Microsoft Edge (opens in new tab) . New policy to clear IE mode data on browser exit. The InternetExplorerModeClearDataOnExitEnabled (opens in new tab) policy controls whether browsing history is deleted from Internet Explorer and Internet Explorer mode every time Microsoft Edge is closed. Users can also configure this setting in the 'Clear browsing data for Internet Explorer' option in the Privacy, search, and services menu of Settings (edge://settings/privacy). . The latest Microsoft Edge Beta introduces an upgraded security mode for macOS and Linux, bringing additional features and configurations to bolster user privacy.. Microsoft Edge, Enhanced Security, Linux Support. . LinuxSecurity.com Team
Feb 21, 2023
•
Vendors/Products
78
software releaseMozilla Firefoxbrowser updateMozilla Firefox 105: Performance and Accessibility Improvements for Linux
A few weeks ago, we saw the release of both Google Chrome 105 and Microsoft Edge 105 , and now, we have the same version number being made available for Mozilla Firefox. Firefox 104 last month brought support for subtitles in Disney+ Picture-in-Picture and improvements to snapping behaviors. Firefox 105 seems to be more focused on performance and accessibility enhancements. . In terms of fixes, Mozilla has significantly improved performance on Windows due by making changes to the way that Firefox handles low-memory situations. Linux customers will experience similar benefits as Firefox will now be less likely to run out of memory. Meanwhile, macOS touchpad scrolling has been made more accessible by "reducing unintended diagonal scrolling opposite of the intended scroll axis". . Microsoft Edge 104 introduces notable enhancements and user interface refinements for Mac and Android platforms.. Mozilla Firefox 105, Browser Performance, Linux Updates, Software Release, Accessibility Features. . LinuxSecurity.com Team
Sep 30, 2022
•
Vendors/Products
78
security advisorysecurity fixsoftwareGoogle Chrome 91: Security Fixes For Linux Users and New Features
Google Chrome 91 has arrived with important security fixes and excellent new features - especially for Linux users! . Google’s Chrome browser and operating system has been updated to version 91, bringing with it a wide variety of features, mainly announcing that Linux support is now official for ChromeOS, alongside being able to copy and paste a file onto a web page and much more. Announced to little fanfare, Google has detailed a bunch of security fixes that plug the holes to vulnerabilities, and is now available on all platforms, such as Windows, macOS, Linux, and Chromebooks. . Mozilla Firefox 89 introduces crucial updates and enhancements, improving Windows functionality with additional tools.. Google Chrome, Linux Capabilities, Browser Security, Software Update. . LinuxSecurity.com Team
May 26, 2021
•
Vendors/Products
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More