Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 0 articles for you...
210
security advisoryhigh severityfedoraDebian, Fedora, openSUSE: Chromium Update Critical Exploits Fixed
Twenty-one severe vulnerabilities have been found in Chromium, including multiple use after frees and heap buffer overflows, among other security issues. These bugs have received a National Vulnerability Database severity rating of “High” due to their ease of exploitation and their significant threat to impacted systems' confidentiality, integrity, and availability. . These vulnerabilities have enabled remote attackers to exploit heap corruption and perform arbitrary read/write via a crafted HTML page. They also allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. Important updates have been released for Chromium that fix these severe issues. We urge all impacted users to apply the updates released by Debian , Fedora and openSUSE now to protect against attacks leading to downtime and compromise. To stay on top of essential updates released by the open-source programs and applications you use, register as a LinuxSecurity user , subscribe to our Linux Advisory Watch newsletter, and customize your advisories for your distro(s). This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems. Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s) . . Critical weaknesses in Chromium might enable attacks through specially designed HTML files. Users are urged to upgrade promptly to reduce threats.. Chromium Security Update, High Severity Issues, Remote Exploit Risks. . Brittany Day
Aug 31, 2023
•
Security Vulnerabilities
210
security advisoryremote exploitcriticalDebian: Critical Advisory for Chromium Heap Corruption Fix
Four critical security vulnerabilities have been discovered in Chromium, including use after free bugs in Autofill payments, WebRTC and WebXR, and a type confusion flaw in V8. . These issues could allow a remote attacker to exploit heap corruption via a crafted HTML page. An important update for Chromium that fixes these severe vulnerabilities is now available. We strongly encourage all impacted users to apply the Chromium updates issued by their distro(s) as soon as possible to protect the confidentiality, integrity and availability of their systems. To stay on top of important updates released by the open-source programs and applications you use, be sure to register as a LinuxSecurity user , then subscribe to our Linux Advisory Watch newsletter and customize your advisories for the distro(s) you use. This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems. Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s) . . Four significant security flaws in Chromium have been patched, which could enable malicious actors to trigger heap corruption through specially designed web pages.. Chromium Updates, Heap Corruption Threat, Type Confusion Issue, Remote Exploit Fixes, Critical Security Patch. . Brittany Day
Jun 27, 2023
•
Security Vulnerabilities
210
security advisoryhigh severityremote exploitChromium: 14 Critical Issues Fixed - High Severity Exploits
Fourteen important vulnerabilities have been discovered in Chromium, including multiple use-after-free and type confusion bugs. With a low attack complexity and a high confidentiality, integrity and availability impact, these issues have received a National Vulnerability Database severity rating of “High”. . These vulnerabilities could allow a remote attacker to potentially exploit heap corruption via a crafted PDF file or a crafted HTML page. An update for Chromium that fixes these severe vulnerabilities has been released. We strongly recommend that all impacted users apply the Chromium updates issued by their distro(s) now to protect the confidentiality, integrity and availability of their systems. To stay on top of important updates released by the open-source programs and applications you use, be sure to register as a LinuxSecurity user , then subscribe to our Linux Advisory Watch newsletter and customize your advisories for the distro(s) you use. This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems. Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s) . . Critical vulnerabilities in chromium could enable attackers to execute remote heap corruption through specially designed files. Update is advised.. Chromium Bugs, Security Enhancements, High-Severity Issues, Open Source Security. . Brittany Day
Jun 22, 2023
•
Security Vulnerabilities
210
security advisorysecurity issueRed HatRHEL 8: Magellan 2 Security Risk And Ongoing SQLite Issues
Are you a RHEL user? Severe bugs in the ubiquitous SQLite engine – used in thousands of software applications – continue to pose a major security threat, security researchers say, with Red Hat admitting that its flagship Red Hat Enterprise Linux (RHEL) 8 remains vulnerable, despite patching other products this week. . Red Hat said in a security update it had now inoculated RHEL 7 and its “RHEL 8.0 Update Services for SAP Solutions”, but RHEL 8 itself remains affected by one of the vulnerabilities, first disclosed to the Chromium team by China’s Tencent Blade – which dubbed them “Magellan 2.0” – in October 2019. The vulnerability in question, CVE-2019-13734 , was reported by Tencent Blade in early December as one of a series of exploitable holes in the SQLite engine. It is described as “out of bounds write in SQLite… [that] allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.” The link for this article located at CBR Online is no longer available. . RHEL 8 continues to face vulnerabilities linked to severe SQLite issues, even after patches were applied to other software that impact its overall security.. RHEL 8 Security Threat, SQLite Bugs, Remote Exploit Risks. . Brittany Day
Jan 28, 2020
•
Security Vulnerabilities
83
security advisoryheap corruptionremote code executionMozilla Firefox 3.6 Critical Advisory: Heap Corruption Exploit Released
A Russian security researcher on Thursday said he has released attack code that exploits a critical vulnerability in the latest version of Mozilla's Firefox browser.. The exploit - which allows attackers to remotely execute malicious code on end user PCs - triggers a heap corruption vulnerability in the popular open-source browser, said Evgeny Legerov, founder of Moscow-based Intevydis. He recently added it as a module to Vulndisco, an add-on to the Immunity Canvas automated exploitation system sold to security professionals. "We've played a lot with it in our labs - it was very reliable," Legerov wrote in an email to The Reg. "Works against the default install of Firefox 3.6. We've tested it on XP and Vista." The report comes as Mozilla pushed out a Firefox update that tackles three critical vulnerabilities in version 3.5.7. One of those bugs is also described as a heap corruption vulnerability, but Legerov said the flaw is different from the one his code exploits. The link for this article located at The Register UK is no longer available. . A vulnerability in Firefox has been discovered that allows malicious actors to execute arbitrary code on users' computers. Learn more about this serious security issue.. Firefox Exploit, Remote Code Execution, Heap Corruption, Cybersecurity Research. . LinuxSecurity.com Team
Feb 19, 2010
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More