Language Selection

English French German Italian Portuguese Spanish

LinuxSecurity.com Advisories

Syndicate content LinuxSecurity - Security Advisories
The central voice for Linux and Open Source security news.
Updated: 3 hours 34 min ago

Debian LTS: DLA-1957-1: tzdata new upstream version

6 hours 8 min ago
This update includes the changes in tzdata 2018c. Notable changes are: - Brazil has canceled DST and will stay on standard time indefinitely.

openSUSE: 2019:2314-1: important: chromium

7 hours 20 min ago
An update that fixes 5 vulnerabilities is now available.

openSUSE: 2019:2313-1: important: chromium

7 hours 21 min ago
An update that fixes 5 vulnerabilities is now available.

RedHat: RHSA-2019-2989:01 Moderate: OpenShift Container Platform 3.10

Monday 14th of October 2019 04:50:13 AM
An update for atomic-openshift kube-apiserver is now available for Red Hat OpenShift Container Platform 3.10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which

Debian: DSA-4539-3: openssl regression update

Sunday 13th of October 2019 03:41:58 AM
The update for openssl released as DSA 4539-1 introduced a regression where AES-CBC-HMAC-SHA ciphers were not enabled. Updated openssl packages are now available to correct this issue.

Fedora 30: thunderbird FEDORA-2019-14af6fde2e

Saturday 12th of October 2019 09:54:53 PM
Update to latest upstream version.

openSUSE: 2019:2311-1: important: chromium

Saturday 12th of October 2019 05:11:13 PM
An update that fixes 5 vulnerabilities is now available.

openSUSE: 2019:2312-1: important: chromium

Saturday 12th of October 2019 05:10:38 PM
An update that fixes 5 vulnerabilities is now available.

Fedora 29: opendmarc FEDORA-2019-e1f0417a24

Friday 11th of October 2019 09:30:34 PM
This update provides the final 1.3.2 release (previously the package was 1.3.2 beta). It also includes the previously-omitted database schema directory (resolving [#1415753](https://bugzilla.redhat.com/show_bug.cgi?id=1415753)) and rddmarc tools, and backports proposed fixes for a [crasher bug](https://bugzilla.redhat.com/show_bug.cgi?id=1673293) and [security issue

Fedora 29: ming FEDORA-2019-03aa4f746c

Friday 11th of October 2019 09:29:51 PM
Backport security fixes from [PR#145](https://github.com/libming/libming/pull/145) Fixes: CVE-2018-7866, CVE-2018-7873, CVE-2018-7876, CVE-2018-9009, CVE-2018-9132

Fedora 30: libapreq2 FEDORA-2019-7fbe8a9a06

Friday 11th of October 2019 08:30:29 PM
Patch CVE-2019-12412.

Fedora 30: cutter-re FEDORA-2019-b3de19c346

Friday 11th of October 2019 08:29:56 PM
- Rebase radare2 to 3.9.0 - Rebase cutter-re to 1.9.0 - fix CVE-2019-14745 in radare2 on F30

Fedora 30: radare2 FEDORA-2019-b3de19c346

Friday 11th of October 2019 08:29:56 PM
- Rebase radare2 to 3.9.0 - Rebase cutter-re to 1.9.0 - fix CVE-2019-14745 in radare2 on F30

Fedora 30: jackson-parent FEDORA-2019-b171554877

Friday 11th of October 2019 08:29:49 PM
- Update jackson-parent to version 2.10. - Update jackson-bom to version 2.10.0. - Update jackson-annotations to version 2.10.0. - Update jackson-core to version 2.10.0. - Update jackson-databind to version 2.10.0. Resolves CVE-2019-14540, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943.

Fedora 30: jackson-core FEDORA-2019-b171554877

Friday 11th of October 2019 08:29:48 PM
- Update jackson-parent to version 2.10. - Update jackson-bom to version 2.10.0. - Update jackson-annotations to version 2.10.0. - Update jackson-core to version 2.10.0. - Update jackson-databind to version 2.10.0. Resolves CVE-2019-14540, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943.

Fedora 30: jackson-databind FEDORA-2019-b171554877

Friday 11th of October 2019 08:29:48 PM
- Update jackson-parent to version 2.10. - Update jackson-bom to version 2.10.0. - Update jackson-annotations to version 2.10.0. - Update jackson-core to version 2.10.0. - Update jackson-databind to version 2.10.0. Resolves CVE-2019-14540, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943.

Fedora 30: jackson-annotations FEDORA-2019-b171554877

Friday 11th of October 2019 08:29:48 PM
- Update jackson-parent to version 2.10. - Update jackson-bom to version 2.10.0. - Update jackson-annotations to version 2.10.0. - Update jackson-core to version 2.10.0. - Update jackson-databind to version 2.10.0. Resolves CVE-2019-14540, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943.

Fedora 30: jackson-bom FEDORA-2019-b171554877

Friday 11th of October 2019 08:29:48 PM
- Update jackson-parent to version 2.10. - Update jackson-bom to version 2.10.0. - Update jackson-annotations to version 2.10.0. - Update jackson-core to version 2.10.0. - Update jackson-databind to version 2.10.0. Resolves CVE-2019-14540, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943.

Fedora 30: ming FEDORA-2019-5139453028

Friday 11th of October 2019 08:28:45 PM
Backport security fixes from [PR#145](https://github.com/libming/libming/pull/145) Fixes: CVE-2018-7866, CVE-2018-7873, CVE-2018-7876, CVE-2018-9009, CVE-2018-9132

Debian LTS: DLA-1955-1: tcpdump security update

Friday 11th of October 2019 06:27:37 PM
Several vulnerabilities have been discovered in tcpdump, a command-line network traffic analyzer. These security vulnerabilities might result in denial of service or, potentially, execution of arbitrary code.

More in Tux Machines

My Linux story: I grew up on PC Magazine not candy

In 1998, the movie Titanic was released, mobile phones were just a luxury, and pagers were still in use. This was also the year I got my first computer. I can remember the details as if it were yesterday: Pentium 133MHz and just 16MB of memory. Back in that time (while running nothing less than Windows 95), this was a good machine. I can still hear in my mind the old spinning hard drive noise when I powered that computer on, and see the Windows 95 flag. It never crossed my mind, though (especially as an 8-year-old kid), that I would dedicate every minute of my life to Linux and open source. Being just a kid, I always asked my mom to buy me every issue of PC Magazine instead of candies. I never skipped a single issue, and all of those dusty old magazines are still there in Costa Rica. It was in these magazines that I discovered the essential technology that changed my life. An issue in the year 2000 talked extensively about Linux and the advantages of free and open-source software. That issue also included a review of one of the most popular Linux distributions back then: Corel Linux. Unfortunately, the disc was not included. Without internet at home, I was out of luck, but that issue still lit a spark within me. Read more

How to Create Persistent Fedora LIVE USB From Ubuntu

This quick tutorial explains how to create persistent LIVE USB using Fedora Operating system in Ubuntu. Read more

Android Leftovers

Python Programming Leftovers

  • How to Read SAS Files in Python with Pandas

    In this post, we are going to learn how to read SAS (.sas7dbat) files in Python. As previously described (in the read .sav files in Python post) Python is a general-purpose language that also can be used for doing data analysis and data visualization.

  • Daudin – a Python shell

    A few nights ago I wrote daudin, a command-line shell based on Python. It allows you to easily mix UNIX and Python on the command line.

  • How to Convert Python String to Int and Back to String

    This tutorial describes various ways to convert Python string to int and from an integer to string. You may often need to perform such operations in day to day programming. Hence, you should know them to write better programs. Also, an integer can be represented in different bases, so we’ll explain that too in this post. And there happen to be scenarios where conversion fails. Hence, you should consider such cases as well and can find a full reference given here with examples.

  • Thousands of Scientific Papers May be Invalid Due to Misunderstanding Python

    It was recently discovered that several thousand scientific articles could be invalid in their conclusions because scientists did not understand that Python’s glob.glob() does not return sorted results. This is being reported on by Vice, Slashdot and there’s an interesting discussion going on over on Reddit as well.