Search results

  1. LinuxBot

    Debian Security Update DSA-4739 webkit2gtk - security update

    The following vulnerabilities have been discovered in the webkit2gtk web engine: Continue reading...
  2. LinuxBot

    Ubuntu Security Update USN-4298-2: SQLite vulnerabilities

    USN-4298-1 fixed several vulnerabilities in SQLite. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: It was discovered that SQLite incorrectly handled certain shadow tables. An attacker could use this issue to cause SQLite to crash, resulting in a...
  3. LinuxBot

    Ubuntu Security Update USN-4444-1: WebKitGTK vulnerabilities

    A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service...
  4. LinuxBot

    Ubuntu Security Update USN-4445-1: Ghostscript vulnerability

    It was discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a specially crafted file, a remote attacker could possibly use this issue to access arbitrary files, execute arbitrary code, Continue reading...
  5. LinuxBot

    Ubuntu Security Update USN-4446-1: Squid vulnerabilities

    Jeriko One discovered that Squid incorrectly handled caching certain requests. A remote attacker could possibly use this issue to perform cache-injection attacks or gain access to reverse proxy features such as ESI. (CVE-2019-12520) Jeriko One and Kristoffer Danielsson discovered that Squid...
  6. LinuxBot

    Debian Security Update DSA-4740 thunderbird - security update

    Multiple security issues have been found in Thunderbird which could result in denial of service or potentially the execution of arbitrary code. Continue reading...
  7. LinuxBot

    Debian Security Update DSA-4738 ark - security update

    Dominik Penner discovered that the Ark archive manager did not sanitise extraction paths, which could result in maliciously crafted archives writing outside the extraction directory. Continue reading...
  8. LinuxBot

    Debian Security Update DSA-4736 firefox-esr - security update

    Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or an information leak. Continue reading...
  9. LinuxBot

    Debian Security Update DSA-4737 xrdp - security update

    Ashley Newson discovered that the XRDP sessions manager was susceptible to denial of service. A local attacker can further take advantage of this flaw to impersonate the XRDP sessions manager and capture any user credentials that are submitted to XRDP, approve or reject arbitrary login...
  10. LinuxBot

    CentOS Security Update [CentOS-announce] CESA-2020:3220 Important CentOS 7 kernel Security Update

    CentOS Errata and Security Advisory 2020:3220 Important Upstream details at : https://access.redhat.com/errata/RHSA-2020:3220 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64...
  11. LinuxBot

    CentOS Security Update [CentOS-announce] CESA-2020:3217 Moderate CentOS 7 shim Security Update

    CentOS Errata and Security Advisory 2020:3217 Moderate Upstream details at : https://access.redhat.com/errata/RHSA-2020:3217 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64...
  12. LinuxBot

    CentOS Security Update [CentOS-announce] CESA-2018:3140 Moderate CentOS 7 fwupdate Security Update

    CentOS Errata and Security Advisory 2018:3140 Moderate Upstream details at : https://access.redhat.com/errata/RHSA-2018:3140 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64...
  13. LinuxBot

    CentOS Security Update [CentOS-announce] CESA-2020:3217 Moderate CentOS 7 shim-signed Security Update

    CentOS Errata and Security Advisory 2020:3217 Moderate Upstream details at : https://access.redhat.com/errata/RHSA-2020:3217 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64...
  14. LinuxBot

    CentOS Security Update [CentOS-announce] CESA-2020:3217 Moderate CentOS 7 grub2 Security Update

    CentOS Errata and Security Advisory 2020:3217 Moderate Upstream details at : https://access.redhat.com/errata/RHSA-2020:3217 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64...
  15. LinuxBot

    Ubuntu Security Update USN-4432-1: GRUB 2 vulnerabilities

    Jesse Michael and Mickey Shkatov discovered that the configuration parser in GRUB2 did not properly exit when errors were discovered, resulting in heap-based buffer overflows. A local attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. (CVE-2020-10713)...
  16. LinuxBot

    Debian Security Update DSA-4735 grub2 - security update

    Several vulnerabilities have been discovered in the GRUB2 bootloader. Continue reading...
  17. LinuxBot

    CentOS Security Update [CentOS-announce] CentOS Linux, CentOS Stream and the Boot Hole vulnerability

    We are aware of the Boot Hole vulnerability in grub2 (CVE-2020-1073) and are working on releasing new packages for CentOS Linux 7, CentOS Linux 8 and CentOS Stream in response. These should make it out to a mirror near you shortly. /!\ Secureboot Systems - Please do a full update /!\...
  18. LinuxBot

    Ubuntu Security Update USN-4436-2: librsvg regression

    USN-4436-1 fixed a vulnerability in librsvg. The upstream fix caused a regression when parsing certain SVG files. This update backs out the fix pending further investigation. Original advisory details: It was discovered that librsvg incorrectly handled parsing certain SVG files. A remote...
  19. LinuxBot

    Ubuntu Security Update USN-4443-1: Firefox vulnerabilities

    Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass iframe sandbox restrictions, confuse the user, or execute...
  20. LinuxBot

    Ubuntu Security Update USN-4442-1: Sympa vulnerabilities

    Michael Kaczmarczik discovered that Sympa incorrectly handled HTTP GET/POST requests. An attacker could possibly use this issue to insert, edit or obtain sensitive information. (CVE-2018-1000550) It was discovered that Sympa incorrectly handled URL parameters. An attacker could possibly use this...
Top