Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 3 hours 49 min ago

SUSE: 2020:3484-1 important: the Linux Kernel>

8 hours 30 min ago
An update that solves 15 vulnerabilities and has 75 fixes is now available.

SUSE: 2020:3478-1 moderate: c-ares>

11 hours 19 min ago
An update that fixes one vulnerability is now available.

SUSE: 2020:3480-1 moderate: dash>

11 hours 21 min ago
An update that contains security fixes can now be installed.

RedHat: RHSA-2020-5175:01 Important: Red Hat JBoss Enterprise Application>

13 hours 11 min ago
An update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6, 7, and 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

RedHat: RHSA-2020-5174:01 Important: Red Hat JBoss Enterprise Application>

13 hours 19 min ago
An update is now available for Red Hat JBoss Enterprise Application Platform 7.3. Red Hat Product Security has rated this update as having a security impact of

openSUSE: 2020:1998-1 important: moinmoin-wiki>

Monday 23rd of November 2020 07:16:34 AM

RedHat: RHSA-2020-5170:01 Moderate: Red Hat JBoss Web Server 5.4 security>

Monday 23rd of November 2020 07:12:22 AM
Updated Red Hat JBoss Web Server 5.4.0 packages are now available for Red Hat Enterprise Linux 6, Red Hat Enterprise Linux 7, and Red Hat Enterprise Linux 8. Red Hat Product Security has rated this release as having a security impact

RedHat: RHSA-2020-5173:01 Moderate: Red Hat JBoss Web Server 5.4 security>

Monday 23rd of November 2020 07:07:21 AM
Red Hat JBoss Web Server 5.4.0 zip release for RHEL 6, RHEL 7, RHEL 8 and Microsoft Windows is available. Red Hat Product Security has rated this release as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2020-5163:01 Important: thunderbird security update>

Monday 23rd of November 2020 04:12:23 AM
An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

RedHat: RHSA-2020-5168:01 Moderate: rh-eclipse security,>

Monday 23rd of November 2020 04:06:25 AM
Updated rh-eclipse packages are now available as a part of Red Hat Developer Tools for Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

RedHat: RHSA-2020-5164:01 Important: thunderbird security update>

Monday 23rd of November 2020 04:02:23 AM
An update for thunderbird is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

RedHat: RHSA-2020-5162:01 Important: thunderbird security update>

Monday 23rd of November 2020 03:55:22 AM
An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

SUSE: 2020:688-1 suse/sle15 Security Update>

Monday 23rd of November 2020 03:53:14 AM

RedHat: RHSA-2020-5166:01 Important: thunderbird security update>

Monday 23rd of November 2020 03:47:48 AM
An update for thunderbird is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

Debian LTS: DLA-2462-1: cimg security update>

Sunday 22nd of November 2020 07:39:41 PM
Multiple heap buffer overflows have been fixed in CImg, a C++ toolkit to load, save, process and display images. For Debian 9 stretch, this problem has been fixed in version

Fedora 33: chromium 2020-10ec8aca61>

Saturday 21st of November 2020 08:27:45 PM
Update to 87.0.4280.66. Fixes bugs and security holes. Yay! CVE-2020-16012 CVE-2020-16018 CVE-2020-16019 CVE-2020-16020 CVE-2020-16021 CVE-2020-16022 CVE-2020-16015 CVE-2020-16014 CVE-2020-16023 CVE-2020-16024 CVE-2020-16025 CVE-2020-16026 CVE-2020-16027 CVE-2020-16028 CVE-2020-16029 CVE-2020-16030 CVE-2020-16031 CVE-2020-16032 CVE-2020-16033 CVE-2020-16034 CVE-2020-16035

Fedora 33: microcode_ctl 2020-2c8824c6b1>

Saturday 21st of November 2020 08:27:43 PM
- Update to upstream 2.1-31. 20201118 - Removal of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode at revision 0x68[1]; - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x32 up to 0x34[2]. [1] The microcode has been removed after reports of system hangs: https://github.com/intel/Intel-Linux-Processor- Microcode-Data-Files/issues/44 [2] Addresses CVE-2020-8695 for this platform.

Fedora 31: pngcheck 2020-27b168926a>

Saturday 21st of November 2020 08:27:25 PM
Fix buffer overflow (RHBZ #1897485) A global buffer overflow was discovered in the check_chunk_name function via a crafted png file.

Fedora 33: pngcheck 2020-4349e95c4f>

Saturday 21st of November 2020 08:27:21 PM
Fix buffer overflow (RHBZ #1897485) A global buffer overflow was discovered in the check_chunk_name function via a crafted png file.

More in Tux Machines

Richard Hughes: fwupd 1.5.2

If you’re running 1.5.0 or 1.5.1 you probably want to update to this release now as it fixes a hard-to-debug hang we introduced in 1.5.0. If you’re running 1.4.x you might want to let the libcurl changes settle, although we’ve been using it without issue for more than a week on a ton of hardware here. Expect 1.5.3 in a few weeks time, assuming we’re all still alive by then. Read more

Xfce Virtual Machine Images For Development

The openSUSE distributions offer a variety of graphical desktop environments, one of them being the popular and lightweight Xfce. Up to now there was the stable tested branch available in Tumbleweed already during install. Furthermore, for interested users the development OBS repository xfce:next offered a preview state of what’s coming up next to Tumbleweed. Xfce Development in openSUSE Thanks to the hard work of openSUSE’s Xfce team there is a third option: Xfce Development Repository aka RAT In a playful way, a rat is meant to represent the unpolished nature of this release: a rat is scruffy looking compared to a mouse (the cute and beloved mascot of Xfce). And the RAT repository provides packages automatically built right from the Git Master Branch of Xfce upstream development. The goal of this project is to test and preview the new software so that bugs can be spotted and fixed ahead of time by contributing upstream. The packages pull in source code state on a daily basis and offer a quite convenient way to test and eventually help development. So this is where the team builds and tests the latest and unstable releases of Xfce Desktop Environment for openSUSE. Read more

Radeon RX 6800 Series Performance Comes Out Even Faster With Newest Linux Code

Last week we delivered AMD Radeon RX 6800 / RX 6800 XT Linux benchmarks and the performance was great both for Linux gaming as well as the OpenCL compute performance. But for as good as those Big Navi numbers were on the open-source Linux graphics driver stack, they are now even better. That launch-day testing was based on the Linux state in the second-half of October when the cards arrived and initial (re-)testing began in preparing for the Radeon RX 6800 series reviews -- not only the Radeon RX 6800 series but re-testing all of the other AMD Radeon and NVIDIA GeForce graphics cards for the comparison too. Thanks to the rate of the open-source graphics driver progression and the newest code always being available, now just days after launch the numbers are even more compelling for Linux gamers with the slightly newer Linux 5.10 and Mesa Git compared to just weeks ago. In particular were the last minute NGG fixes and other Big Navi tweaks along with an important Radeon RX 6800 (non-XT) fix. There has also been other RADV improvements and more that accumulated in Mesa 21.0-devel this month. On the kernel side, Linux 5.10 is still at play. Both the old and newer Mesa snapshots were also on LLVM 11.0. Read more Also: Intel: AMD Gimps On Battery-Powered Laptop Performance - But DPTF On Linux Still Sucks - Phoronix

today's howtos

  • How to Install and Configure Hadoop on Ubuntu 20.04 – TecAdmin

    Hadoop is a free, open-source and Java-based software framework used for storage and processing of large datasets on clusters of machines. It uses HDFS to store its data and process these data using MapReduce. It is an ecosystem of Big Data tools that are primarily used for data mining and machine learning. Apache Hadoop 3.3 come with noticeable improvements any many bug fixes over the previous releases. It has four major components such as Hadoop Common, HDFS, YARN, and MapReduce.

  • How to create a Cloudwatch Event Rule in AWS

    A near-real-time stream of system events that describe changes in AWS resources is delivered by CloudWatch Events. We can create a rule that matches events and route them to one or more target functions. We can use CloudWatch Events to schedule automated actions. These actions can be self-triggered at certain times using cron or rate expressions. We can have EC2 instances, Lambda functions, Kinesis Data Streams, ECS tasks, Batch jobs, SNS topics, SQS queues, and a few more services as target endpoints for CloudWatch Events. To know more about Cloudwatch events, visit the official AWS documentation here.

  • How to use Bash file test operators in Linux

    File Test Operators are used in Linux to check and verify attributes of files like ownership or if they are a symlink. Every Test operator has a specific purpose. The most important operators are -e and -s. In this article, you will learn to test files using the if statement followed by some important test operators in Linux.

  • How To Install Wireguard on CentOS 8 - idroot

    In this tutorial, we will show you how to install Wireguard on CentOS 8. For those of you who didn’t know, Wireguard is an open-source, dependable, advanced, VPN tunneling software you can install and use right now to create a secure, point-to-point connection to a server. It is cross-platform and can run almost anywhere, including Linux, Windows, Android, and macOS. Wireguard is a peer-to-peer VPN. it does not use the client-server model. Depending on its configuration, a peer can act as a traditional server or client. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step by step installation of the Wireguard VPN on CentOS 8.

  • How To Install NVM on CentOS/RHEL 7 – TecAdmin

    NVM stands for Node Version Manager is a command-line utility for managing Node versions. Sometimes you required to deploy multiple node application with different-2 versions. Managing the multiple Node.js versions for differnt-2 projects are a pain for the developers. But NVM helped to easily manage multiple active Node.js versions on a single system. This tutorial will explain you to install NVM on CentOS/RHEL 7/6 systems and manage multiple Node.js versions.

  • How to install Kali Linux 2020.4 - YouTube

    In this video, I am going to show how to install Kali Linux 2020.4.

  • How to make your own personal VPN in under 30 minutes

    In the Distribution box, choose the newest available Ubuntu LTS release — as of the time of writing, that's 20.04 LTS. Below that, pick the region you want your VPN to be located in. It's possible to change the location later, but you'll have to contact Linode support. For the plan, select 'Nanode 1GB' from the list of Shared CPU options. VPNs don't need much processing power, so this low-spec option will work just fine.

  • Use nnn as a File Manager for Linux Terminal - Make Tech Easier

    If you have used the Linux terminal for an extended period of time, you probably know some of the useful commands, like cd to move into and out of folders, create new ones, and copy or move files. Still, you may prefer how desktop file managers are more user-friendly and quicker for some tasks. In that case, you’ll love nnn. nnn is the equivalent of a desktop file manager for the terminal. Although not an ultra-complex solution like Midnight Commander, nnn is light on resources, fast, and allows you to navigate your file system without having to type commands.