Linux Advisory Watch: December 3, 2021

Brittany Day

Application 1: Debian, Debian LTS, Fedora, openSUSE, Red Hat, Scientific Linux, SuSE

Application 2: Debian, Debian LTS, Mageia, openSUSE, Ubuntu

Application 3: Debian, Fedora, Mageia, openSUSE, Red Hat

1 - 2 min read 1082 12/03/2021

Happy Friday fellow Linux geeks! This week, important updates have been issued for OpenJDK, postgresql and redis. Read on to learn about these vulnerabilities and how to secure your system against them.

Now you can personalize your LinuxSecurity.com User Profile to include the latest advisories for the distros you select, making it easier than ever to keep your system up-to-date and secure.

Have a question about or comment on one of the vulnerabilities highlighted in today's newsletter? Let's discuss!

Yours in Open Source,

Brittany Signature 150

OpenJDK

The Discovery

Several vulnerabilities have been discovered in the OpenJDK Java runtime (CVE-2021-35567, CVE-2021-35578, CVE-2021-35586 and CVE-2021-35603).

The Impact

These flaws could result in denial of service (DoS), incorrect Kerberos ticket use, selection of weak ciphers or information disclosure.

The Fix

An update has been released that fixes these issues. We recommend that you upgrade your openjdk-17 packages immediately to protect sensitive information and the integrity and availability of your systems.

Your Related Advisories:

postgresql

The Discovery

It was discovered that the postgresql server processes unencrypted bytes from a man-in-the-middle attacker (CVE-2021-23214 and CVE-2021-23222).

The Impact

These bugs could result in man-in-the-middle attacks and the compromise of sensitive data.

The Fix

Updated postgresql packages that fix these two flaws have been released. Update now to protect confidential information and prevent attacks.

Your Related Advisories:

redis

The Discovery

Eight important security vulnerabilities have been found in redis (CVE-2021-32626, CVE-2021-32627, CVE-2021-32628, CVE-2021-32672, CVE-2021-32675, CVE-2021-32687, CVE-2021-32762 and CVE-2021-41099).

The Impact

These flaws could result in heap buffer overflow and Denial of Service (DoS) attacks.

The Fix

Redis has released an update that fixes these issues. We recommend updating as soon as possible to protect the security and availability of your systems.

Advisories

What Are You Looking For?

Popular Tags

Linux Advisory Watch: December 3, 2021

Brittany Day

OpenJDK

The Discovery

The Impact

The Fix

Your Related Advisories:

postgresql

The Discovery

The Impact

The Fix

Your Related Advisories:

redis

The Discovery

The Impact

The Fix

Your Related Advisories:

LinuxSecurity Poll

Are you using a web application firewall (WAF) to improve the security of your Linux web applications?

News

Advisories

HOWTOs

Features

Benefits & Drawbacks of Using a VPN on Linux

How a WAF Could Improve the Security of Your Linux Web Applications

Installing SurfShark VPN On Kali Linux: The Authoritative Guide

Best Practices for PHP Security

9 Wise Linux Cybersecurity Tips for Businesses

About Us

Powered By

Advisories

What Are You Looking For?

Popular Tags

Linux Advisory Watch: December 3, 2021

Brittany Day

OpenJDK

The Discovery

The Impact

The Fix

Your Related Advisories:

postgresql

The Discovery

The Impact

The Fix

Your Related Advisories:

redis

The Discovery

The Impact

The Fix

Your Related Advisories:

LinuxSecurity Poll

Are you using a web application firewall (WAF) to improve the security of your Linux web applications?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

Benefits & Drawbacks of Using a VPN on Linux

How a WAF Could Improve the Security of Your Linux Web Applications

Installing SurfShark VPN On Kali Linux: The Authoritative Guide

Best Practices for PHP Security

9 Wise Linux Cybersecurity Tips for Businesses

About Us

Powered By