Jedesmal, wenn mit eingeschaltetem AdBlocker eine Webseite besucht wird, stirbt in einem Labor ein unschuldiges, niedliches Kaninchen einen grausamen Tod! Zusätzlich werden einige Funktionen dieser Webseite durch den AdBlocker blockiert. Bitte deaktivieren Sie Ihren AdBlocker für diese Webseite und retten Sie unschuldige Kaninchen!
Sie können durch Schliessen dieses Fensters natürlich mit AdBlocker weitermachen - wenn Sie mit dieser Schuld leben können .... es liegt an Ihnen - AdBlocker abschalten und ruhig schlafen können oder mit AdBlocker weitermachen und von übelsten Albträumen gequält werden!
Wir haben Sie gewarnt ....
Search - Review
plg_search_jdownloads
Search - K2
Suche - Kategorien
Suche - Kontakte
Suche - Inhalt
Suche - Newsfeeds
Suche - Schlagwörter
Linux Security (6)
Im Sinne der Aktualität sind diese News grösstenteils in englischer Sprache. Falls nötig, bitte die Übersetzungsfunktion verwenden.
-
Vaultwarden -- Admin organization permissions
FreeBSD VuXML Dec 20, 2024 | 00:00 am
Read more... -
chromium -- multiple security fixes
FreeBSD VuXML Dec 19, 2024 | 00:00 am
Read more... -
liboqs -- Correctness error in HQC decapsulation
FreeBSD VuXML Dec 18, 2024 | 00:00 am
Read more... -
gitea -- multiple vulnerabilities
FreeBSD VuXML Dec 17, 2024 | 00:00 am
Read more... -
gitea -- multiple vulnerabilities
FreeBSD VuXML Dec 17, 2024 | 00:00 am
Read more... -
gitea -- Fix misuse of PublicKeyCallback
FreeBSD VuXML Dec 17, 2024 | 00:00 am
Read more... -
forgejo -- unauthorized user impersonation
FreeBSD VuXML Dec 17, 2024 | 00:00 am
Read more... -
forgejo -- multiple vulnerabilities
FreeBSD VuXML Dec 17, 2024 | 00:00 am
Read more... -
forgejo -- multiple vulnerabilities
FreeBSD VuXML Dec 17, 2024 | 00:00 am
Read more... -
zeek -- potential DoS vulnerability
FreeBSD VuXML Dec 16, 2024 | 00:00 am
Read more...
Publiziert in: Linux Security
-
Debian: DSA-5834-1: chromium Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 20, 2024 | 07:28 am
Read more...
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. -
Debian: DSA-5833-1: dpdk Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 17, 2024 | 22:17 pm
Read more...
A buffer overflow was discovered in the vhost code of DPDK, a set of libraries for fast packet processing, which could result in denial of service or the execution of arbitrary code by malicious guests/containers. -
Debian: DSA-5832-1: gstreamer1.0 Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 16, 2024 | 17:04 pm
Read more...
Antonio Morales reported an integer overflow vulnerability in the memory allocator in the Core GStreamer libraries, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is processed. -
Debian: DSA-5831-1: gst-plugins-base1.0 Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 14, 2024 | 19:12 pm
Read more...
Multiple multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened. -
Debian: DSA-5830-1: smarty4 Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 12, 2024 | 19:37 pm
Read more...
A security vulnerability was discovered in Smarty, a template engine for PHP, which could result in PHP code injection. For the stable distribution (bookworm), this problem has been fixed in -
Debian: DSA-5829-1: chromium Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 12, 2024 | 17:52 pm
Read more...
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. -
Debian: DSA-5828-1: python-aiohttp Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 11, 2024 | 19:24 pm
Read more...
Multiple security vulnerabilities were discovered in python-aiohttp, a HTTP client/server for asyncio, which could result in denial of service, directory traversal, CRLF injection or request smuggling. -
Debian: DSA-5827-1: proftpd-dfsg Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 10, 2024 | 20:19 pm
Read more...
Brian Ristuccia discovered that in ProFTPD, a powerful modular FTP/SFTP/FTPS server, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental groups from mod_sql. -
Debian: DSA-5826-1: smarty3 Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 10, 2024 | 19:07 pm
Read more...
Two security vulnerabilities were discovered in Smarty, a template engine for PHP, which could result in PHP code injection or cross-site scripting. -
Debian: DSA-5825-1: ceph Security Advisory Updates
Stay Vigilant with Timely Linux Security Advisories Dec 6, 2024 | 19:13 pm
Read more...
Sage McTaggart discovered an authentication bypass in radosgw, the RADOS REST gateway of Ceph, a distributed storage and file system. For the stable distribution (bookworm), these problems have been fixed in
Publiziert in: Linux Security
-
The Product Security Blog has moved!
Red Hat Security Blog Blog Posts Mar 19, 2019 | 19:38 pmRed Hat Product Security has joined forces with other security teams inside Red Hat to publish our content in a common venue using the Security channel of the Red Hat Blog.This move provides a wider variety of important Security topics,[…]
Read more... -
New Red Hat Product Security OpenPGP key
Red Hat Security Blog Blog Posts Aug 22, 2018 | 13:30 pmRed Hat Product Security has transitioned from using its old 1024-bit DSA OpenPGP key to a new 4096-bit RSA OpenPGP key.This was done to improve the long-term security of our communications with our customers and also to meet current key[…]
Read more... -
SPECTRE Variant 1 scanning tool
Red Hat Security Blog Blog Posts Jul 18, 2018 | 13:30 pmAs part of Red Hat's commitment to product security we have developed a tool internally that can be used to scan for variant 1 SPECTRE vulnerabilities. As part of our commitment to the wider user community, we are introducing this[…]
Read more... -
Red Hat’s disclosure process
Red Hat Security Blog Blog Posts Jul 10, 2018 | 13:00 pmLast week, a vulnerability (CVE-2018-10892) that affected CRI-O, Buildah, Podman, and Docker was made public before some affected upstream projects were notified. We regret that this was not handled in a way that lives up to our own standards around[…]
Read more... -
Join us in San Francisco at the 2018 Red Hat Summit
Red Hat Security Blog Blog Posts Apr 23, 2018 | 14:30 pmThis year’s Red Hat Summit will be held on May 8-10 in beautiful San Francisco, USA.Product Security will be joining many Red Hat security experts in presenting and assisting subscribers and partners at the show.Here is a sneak peek at[…]
Read more... -
Certificate Transparency and HTTPS
Red Hat Security Blog Blog Posts Apr 17, 2018 | 15:00 pmGoogle has announced that on April 30, 2018, Chrome will:“...require that all TLS server certificates issued after 30 April, 2018 be compliant with the Chromium CT Policy. After this date, when Chrome connects to a site serving a publicly-trusted certificate[…]
Read more... -
Let's talk about PCI-DSS
Red Hat Security Blog Blog Posts Feb 28, 2018 | 14:30 pmFor those who aren’t familiar with Payment Card Industry Data Security Standard (PCI-DSS), it is the standard that is intended to protect our credit card data as it flows between systems and is stored in company databases.PCI-DSS requires that all[…]
Read more... -
Security is from Mars, Developers are from Venus…...or ARE they?
Red Hat Security Blog Blog Posts Nov 16, 2017 | 15:00 pmIt is a tale as old as time.Developers and security personnel view each other withsuspicion.The perception is that a vast gulf of understanding and ability lies between the two camps.“They can’t possibly understand what it is to do my job!”[…]
Read more... -
Abuse of RESTEasy Default Providers in JBoss EAP
Red Hat Security Blog Blog Posts Oct 18, 2017 | 13:30 pmRed Hat JBoss Enterprise Application Platform (EAP) is a commonly used host for Restful webservices. A powerful but potentially dangerous feature of Restful webservices on JBoss EAP is the ability to accept any media type. If not configured to accept[…]
Read more... -
Kernel Stack Protector and BlueBorne
Red Hat Security Blog Blog Posts Sep 12, 2017 | 11:51 amToday, a security issue called BlueBorne was disclosed, a vulnerability that could be used to attack sensitive systems via the Bluetooth protocol. Specifically, BlueBorne is a flaw where a remote (but physically quite close) attacker could get root on a[…]
Read more...
Publiziert in: Linux Security