Thank you for reading the Linux Advisory Watch Security Newsletter. The purpose of this document is to provide our readers with a quick summary of each week's vendor security bulletins and pointers on methods to improve the security posture of your open source system. Vulnerabilities affect nearly every vendor virtually every week, so be sure to read through to find the updates your distributor have made available.

LinuxSecurity.com Feature Extras:

- Social engineering is the practice of learning and obtaining valuable information by exploiting human vulnerabilities. It is an art of deception that is considered to be vital for a penetration tester when there is a lack of information about the target that can be exploited.

- When you’re dealing with a security incident it’s essential you – and the rest of your team – not only have the skills they need to comprehensively deal with an issue, but also have a framework to support them as they approach it. This framework means they can focus purely on what they need to do, following a process that removes any vulnerabilities and threats in a proper way – so everyone who depends upon the software you protect can be confident that it’s secure and functioning properly.

  (Apr 28)
 

Security Report Summary
  (Apr 27)
 

Security Report Summary
  (Apr 27)
 

Security Report Summary
  (Apr 26)
 

Security Report Summary
  (Apr 25)
 

Security Report Summary
  (Apr 24)
 

Security Report Summary
  (Apr 20)
 

Security Report Summary
 
  (Apr 27)
   
  (Apr 27)
   
  (Apr 27)
   
  (Apr 27)
   
  (Apr 27)
   
  (Apr 27)
   
  (Apr 27)
   
  (Apr 27)
   
  (Apr 27)
   
  (Apr 26)
   
  (Apr 25)
   
  (Apr 25)
   
  (Apr 25)
   
  (Apr 25)
   
  (Apr 25)
   
  (Apr 25)
   
  (Apr 25)
   
  (Apr 24)
   
  (Apr 24)
   
  (Apr 24)
   
  (Apr 24)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 22)
   
  (Apr 21)
   
  (Apr 21)
   
  (Apr 21)
   
  (Apr 21)
   
  (Apr 20)
   
  (Apr 20)
   
  (Apr 20)
   
  (Apr 20)
   
  (Apr 20)
   
 
  (Apr 26)
 

Updated python27 packages are now available as a part of Red Hat Software Collections 2.4 for Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 26)
 

Updated httpd24 packages are now available as a part of Red Hat Software Collections 2.4 for Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 25)
 

An update for kernel is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 25)
 

An update for kernel is now available for Red Hat Enterprise Linux 7.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 25)
 

An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 24)
 

An update for java-1.7.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 24)
 

An update for java-1.6.0-sun is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 24)
 

An update for java-1.8.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6 and Oracle Java for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 21)
 

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 21)
 

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 20)
 

An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]
  (Apr 20)
 

An update for nss is now available for Red Hat Enterprise Linux 5.9 Long Life. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 20)
 

An update for nss is now available for Red Hat Enterprise Linux 5 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact [More...]
  (Apr 20)
 

An update for nss-util is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support, Red Hat Enterprise Linux 6.4 Advanced Update Support, Red Hat Enterprise Linux 6.5 Advanced Update Support, Red Hat Enterprise Linux 6.5 Telco Extended Update Support, Red Hat Enterprise [More...]
  (Apr 20)
 

An update for nss and nss-util is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact [More...]
 
  (Apr 24)
 

New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues. [More Info...]
  (Apr 22)
 

New proftpd packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. [More Info...]
  (Apr 22)
 

New mozilla-firefox packages are available for Slackware 14.1 to fix security and stability issues. [More Info...]
  (Apr 22)
 

New ntp packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. [More Info...]