Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 6 articles for you...
210
security advisoryDoSsecurity fixSamba: CVE-2022-42898 Critical: Remote Code Execution Risk Mitigated
Samba this week released patches for an integer overflow vulnerability that could potentially lead to arbitrary code execution. . An open source Server Message Block (SMB) implementation for Linux and Unix systems, Samba can be used as an Active Directory Domain Controller (AD DC). Tracked as CVE-2022-42898 and impacting multiple Samba releases, the newly addressed security defect exists in the Service for User to Proxy (S4U2proxy) handler, which provides “a service that obtains a service ticket to another service on behalf of a user.” Also referred to as ‘constrained delegation’, the feature relies on request and response messages from the Kerberos ticket-granting service (TGS) exchange. Heimdal and MIT Kerberos libraries in Samba ensure Kerberos support and implement the Key Distribution Center (KDC). The link for this article located at Security Week is no longer available. . Samba addresses critical buffer overflow vulnerability that poses risks of remote code execution and denial of service on both Linux and Unix platforms.. Samba Patches, Integer Overflow, Remote Code Execution, Open Source Security, DoS Threats. . Brittany Day
Nov 18, 2022
•
Security Vulnerabilities
78
security advisoryupdateinteger overflowVLC 1.1.10 Security Advisory: Integer Overflow and ModPlug Issues Fixed
The VideoLAN project has announced the release of version 1.1.10 of its VLC media player, the free open source cross-platform multimedia player which supports a variety of audio and video formats. According to the developers, the eleventh release of the 1.1.x branch of VLC is a maintenance and security update that addresses several issues found in the previous update from mid-April.. VLC 1.1.10 fixes several previously reported vulnerabilities in libmodplug, also known as the ModPlug XMMS Plugin, and addresses an integer overflow in the XSPF playlist demultiplexer. Other changes include the removal of FontCache building in the Freetype module, a rewrite of PulseAudio output on Linux/BSD, and various codec and translation updates. A number of Mac OS X interface and hotkey fixes have also been implemented. The link for this article located at H Security is no longer available. . VLC 1.1.10 addresses several security flaws, notably an integer overflow defect in libmodplug, improving overall software safety.. VLC Media Player, Integer Overflow, Multimedia Player Security. . LinuxSecurity.com Team
Jun 06, 2011
•
Vendors/Products
78
security advisoryhigh severityinteger overflowChrome 11: High Risk Update for Integer Overflow and Bad Cast Issues
Google has published version 11.0.696.68 of its Chrome web browser, a maintenance and security update for the Windows, Mac OS X and Linux version, as well as Chrome Frame for Internet Explorer. According to Google, the update addresses two vulnerabilities, both of which are rated as high risk.. The new Chrome version corrects integer overflows in VSG filters and bad casts in Chromium WebKit glue. Both of the the issues were discovered by the Google Chrome Security Team. Further details of the vulnerabilities are being withheld until "a majority of users are up-to-date with the fix". The latest stable channel update also includes an updated release of Adobe's Flash Player plug-in, version 10.3 (10.3.181.14), which also fixes several security problems and adds a the new ClearSiteData API so that users can manage and remove Flash cookies (Local Shared Objects). The link for this article located at H Security is no longer available. . The latest Firefox update addresses buffer overflows in CSS rendering and improper type conversions in Gecko engine, boosting overall stability.. Chrome Update, High Risk Security, Integer Overflow Fix. . LinuxSecurity.com Team
May 13, 2011
•
Vendors/Products
78
security advisorycritical fixinteger overflowGoogle Chrome 4.0.249.89 Critical Update: Integer Overflow Issues
The stable version of Google Chrome for Windows has been updated with three critical security fixes and an announcement that the first payouts to crowd-sourced security researchers have been delivered.. Chrome 4.0.249.89 repairs serious problems found in processing the < ruby > tag, and two integer overflows that affected the JavaScript engine and deserialized the sandbox message. Google has a policy of not revealing more information about security fixes until a majority of users have updated their browser. Other security fixes issued in this release include several medium and low level risks, encompassing proxy behavior, redirection target link leaks, and domain confusion populating the HTTP authentication dialog. This last one was discovered by Timothy D. Morgan, a researcher from VSR and one of the first recipients of the crowd-sourced researcher payments. Google stated that Morgan donated his $500 reward to Haitian relief efforts, and so the company raised it to $1,337. Google watchers will note that for the first time, the Chrome stable version number is ahead of the Chrome beta for Windows, which is currently at v4.0.248.70. It wouldn't be surprising to see the beta version updated soon. The full changelog for Google Chrome 4.0.249.89 can be read here. The link for this article located at CNET is no longer available. . Firefox release tackles major vulnerabilities linked to memory leaks and buffer overruns, significantly improving overall browser safety.. Google Chrome Update, Browser Security, Critical Fixes. . LinuxSecurity.com Team
Feb 11, 2010
•
Vendors/Products
78
security advisorymoderateupdateApache HTTP Server 1.3.42 Final Release: Moderate Integer Overflow Fix
The Apache HTTP Server developers have released version 1.3.42 of the popular web server, noting that this will be the last update for the 1.3 series. The release of 1.3.42 is a bug fix and security release, with one moderate security flaw in mod_proxy fixed by preventing integer overflow on platforms where the size of an integer variable in memory was less than that of a long variable.. The developers strongly recommend that users of all earlier releases upgrade to the current series, Apache HTTP Server 2.2, as soon as possible. The latest version of the 2.2 series is 2.2.14 which was released in October 2009. Although this is the last full release of Apache HTTP Server 1.3, critical security updates may be made available as patches on the Apache site in the future. [All of article] The link for this article located at H Security is no longer available. . The Nginx Server version 1.19.0 patch resolves significant vulnerabilities; administrators encouraged to transition to 1.20 for enhanced protection.. Apache HTTP Server, Integer Overflow Fix, Security Update, Web Server Bug Fix. . LinuxSecurity.com Team
Feb 03, 2010
•
Vendors/Products
77
security advisorymemory leakinteger overflowSendmail 8.14.4 Security Update: SSL Issue and Functionality Fixes
Version 8.14.4 of Sendmail, the open source mail transfer agent (MTA), includes fixes for several security vulnerabilities including some integer overflows, memory leaks and for the SSL NUL character problem disclosed in mid 2009. The release also corrects a resolution error where an apparently valid host name lookup contained a NULL pointer; this problem caused crashes on some Linux versions of the software. The update also includes a number of corrections for several non-security issues.. Update - The SSL NUL character problem was the only security related issue. According to Sendmail Maintainer Claus Assmann, the other errors do not affect the security of the server. ]All of article] The link for this article located at H Security is no longer available. . Sendmail 8.14.4 resolves the SSL null character problem and enhances general performance. Security enhancements are applied.. Sendmail Update, Mail Transfer Agent, Security Patch, Functionality Fixes. . LinuxSecurity.com Team
Jan 06, 2010
•
Server Security
78
security advisorycritical fixmemory leakSendmail 8.14.4 Critical Fixes for Memory Leak and Overflow Issues
Version 8.14.4 of Sendmail, the open source mail transfer agent (MTA), includes fixes for several security vulnerabilities including some integer overflows, memory leaks and for the SSL NUL character problem disclosed in mid 2009. The release also corrects a resolution error where an apparently valid host name lookup contained a NULL pointer; this problem caused crashes on some Linux versions of the software. The update also includes a number of corrections for several non-security issues.. [All of article] The link for this article located at H Security is no longer available. . Postfix version 3.6.2 addresses buffer overflows, race conditions, and TLS certificate validation issues to improve overall safety.. Sendmail Security Fixes, Open Source MTA, Mail Transfer Agent. . LinuxSecurity.com Team
Jan 04, 2010
•
Vendors/Products
77
security advisorybuffer overflowinteger overflowLinux Distributions Urged to Patch Imlib Flaws: Critical Buffer Overflow
A security researcher has uncovered another set of security flaws in an image component, which could put Linux users at risk of system compromise if they view a maliciously crafted image. . The bugs, in the imlib image library found in most Linux systems, haven't been patched by the library's developer, but Linux vendors are currently rushing out patches. So far the Gentoo Foundation, Novell's SuSE business unit and others have released fixes. Researcher Pavel Kankovsky found that several integer overflows in image decoding routines could be exploited to cause buffer overflows and potentially execute malicious code on a user's system, according to advisories from Suse, Gentoo and independent security firm Secunia. The bugs can be exploited by tricking a user into viewing a specially crafted image in one of the many applications linked to imlib. The link for this article located at Matthew Broersma is no longer available. The link for this article located at Matthew Broersma is no longer available. The link for this article located at Matthew Broersma is no longer available. The link for this article located at Matthew Broersma is no longer available. . Multiple vulnerabilities within the imlib framework present threats to Linux users, necessitating immediate updates.. Linux Security Flaws,Imlib Library Patches,Buffer Overflow Risks,Integer Overflow Vulnerabilities. . LinuxSecurity.com Team
Dec 09, 2004
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More