Thank you for reading the Linux Advisory Watch Security Newsletter. The purpose of this document is to provide our readers with a quick summary of each week's vendor security bulletins and pointers on methods to improve the security posture of your open source system. Vulnerabilities affect nearly every vendor virtually every week, so be sure to read through to find the updates your distributor have made available.

LinuxSecurity.com Feature Extras:

Peter Smith Releases Linux Network Security Online - Thanks so much to Peter Smith for announcing on linuxsecurity.com the release of his Linux Network Security book available free online. "In 2005 I wrote a book on Linux security. 8 years later and the publisher has gone out of business. Now that I'm free from restrictions on reproducing material from the book, I have decided to make the entire book available online."

Securing a Linux Web Server - With the significant prevalence of Linux web servers globally, security is often touted as a strength of the platform for such a purpose. However, a Linux based web server is only as secure as its configuration and very often many are quite vulnerable to compromise. While specific configurations vary wildly due to environments or specific use, there are various general steps that can be taken to insure basic security considerations are in place.


  Debian: 3176-1: request-tracker4: Summary (Feb 26)
 

Security Report Summary

  Debian: 3175-1: kfreebsd-9: Summary (Feb 25)
 

Security Report Summary

  Debian: 3174-1: iceweasel: Summary (Feb 25)
 

Security Report Summary

  Debian: 3173-1: libgtk2-perl: Summary (Feb 25)
 

Security Report Summary

  Debian: 3172-1: cups: Summary (Feb 25)
 

Security Report Summary

  Debian: 3160-1: linux: Summary (Feb 23)
 

Security Report Summary

  Debian: 3171-1: samba: Summary (Feb 23)
 

Security Report Summary

  Debian: 3169-1: eglibc: Summary (Feb 23)
 

Security Report Summary

  Debian: 3168-1: ruby-redcloth: Summary (Feb 22)
 

Security Report Summary

  Debian: 3167-1: sudo: Summary (Feb 22)
 

Security Report Summary

  Debian: 3166-1: e2fsprogs: Summary (Feb 22)
 

Security Report Summary

  Debian: 3165-1: xdg-utils: Summary (Feb 22)
 

Security Report Summary

  Debian: 3164-1: typo3-src: Summary (Feb 21)
 

Security Report Summary

  Debian: 3163-1: libreoffice: Summary (Feb 19)
 

Security Report Summary


  Red Hat: 2015:0266-01: thunderbird: Important Advisory (Feb 25)
 

An updated thunderbird package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6. Red Hat Product Security has rated this update as having Important security [More...]

  Red Hat: 2015:0265-01: firefox: Critical Advisory (Feb 24)
 

Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5, 6 and 7. Red Hat Product Security has rated this update as having Critical security [More...]

  Red Hat: 2015:0260-01: libyaml: Moderate Advisory (Feb 23)
 

Updated libyaml packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 4.0 and 5.0 for Red Hat Enterprise Linux 6. [More...]

  Red Hat: 2015:0253-01: samba3x: Critical Advisory (Feb 23)
 

Updated samba3x packages that fix one security issue are now available for Red Hat Enterprise Linux 5.6 Long Life and Red Hat Enterprise Linux 5.9 Extended Update Support. [More...]

  Red Hat: 2015:0252-01: samba: Important Advisory (Feb 23)
 

Updated samba packages that fix one security issue are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security [More...]

  Red Hat: 2015:0255-01: samba4: Critical Advisory (Feb 23)
 

Updated samba4 packages that fix one security issue are now available for Red Hat Enterprise Linux 6.4 and 6.5 Extended Update Support. Red Hat Product Security has rated this update as having Critical security [More...]

  Red Hat: 2015:0250-01: samba4: Critical Advisory (Feb 23)
 

Updated samba4 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Critical security [More...]

  Red Hat: 2015:0254-01: samba: Critical Advisory (Feb 23)
 

Updated samba packages that fix one security issue are now available for Red Hat Enterprise Linux 6.2 Advanced Update Support, and Red Hat Enterprise Linux 6.4 and 6.5 Extended Update Support. [More...]

  Red Hat: 2015:0249-01: samba3x: Critical Advisory (Feb 23)
 

Updated samba3x packages that fix one security issue are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Critical security [More...]

  Red Hat: 2015:0251-01: samba: Critical Advisory (Feb 23)
 

Updated samba packages that fix one security issue are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Critical security [More...]

  Red Hat: 2015:0246-01: openstack-glance: Important Advisory (Feb 19)
 

Updated openstack-glance packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 4.0 and Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6 and 7. [More...]


  Slackware: 2015-056-02: mozilla-thunderbird: Security Update (Feb 26)
 

New mozilla-thunderbird packages are available for Slackware 14.1 and -current to fix security issues. [More Info...]

  Slackware: 2015-056-01: mozilla-firefox: Security Update (Feb 26)
 

New mozilla-firefox packages are available for Slackware 14.1 and -current to fix security issues. [More Info...]


  Ubuntu: 2519-1: GNU C Library vulnerabilities (Feb 26)
 

Several security issues were fixed in the GNU C Library.

  Ubuntu: 2520-1: CUPS vulnerability (Feb 26)
 

CUPS could be made to crash or run programs if it processed a speciallycrafted file.

  Ubuntu: 2518-1: Linux kernel vulnerabilities (Feb 26)
 

Several security issues were fixed in the kernel.

  Ubuntu: 2512-1: Linux kernel (EC2) vulnerabilities (Feb 26)
 

Several security issues were fixed in the kernel.

  Ubuntu: 2513-1: Linux kernel vulnerabilities (Feb 26)
 

Several security issues were fixed in the kernel.

  Ubuntu: 2511-1: Linux kernel vulnerabilities (Feb 26)
 

Several security issues were fixed in the kernel.

  Ubuntu: 2514-1: Linux kernel (OMAP4) vulnerabilities (Feb 26)
 

Several security issues were fixed in the kernel.

  Ubuntu: 2515-1: Linux kernel (Trusty HWE) vulnerabilities (Feb 26)
 

Several security issues were fixed in the kernel.

  Ubuntu: 2516-1: Linux kernel vulnerabilities (Feb 26)
 

Several security issues were fixed in the kernel.

  Ubuntu: 2517-1: Linux kernel (Utopic HWE) vulnerabilities (Feb 26)
 

Several security issues were fixed in the kernel.

  Ubuntu: 2505-1: Firefox vulnerabilities (Feb 25)
 

Firefox could be made to crash or run programs as your login if itopened a malicious website.

  Ubuntu: 2510-1: FreeType vulnerabilities (Feb 24)
 

FreeType could be made to crash or run programs as your login if it openeda specially crafted file.

  Ubuntu: 2508-1: Samba vulnerability (Feb 23)
 

Samba could be made to run programs as an administrator if it receivedspecially crafted network traffic.

  Ubuntu: 2509-1: ca-certificates update (Feb 23)
 

ca-certificates was updated to the 20141019 package.

  Ubuntu: 2507-1: e2fsprogs vulnerabilities (Feb 23)
 

e2fsprogs could be made to crash or run programs as an administratorif it processed a specially crafted filesystem image.

  Ubuntu: 2504-1: NSS update (Feb 19)
 

NSS was updated to refresh the CA certificates bundle.