|
LWN Security Resources
LWN.net offers several security-related resources, including the
security alert database, the
vulnerability database, and the weekly
edition security page.
The article index
See the LWN Security Article index for
access to all LWN security articles, organized by topic.
Recent security alerts
View the full security alert database.
Recent vulnerabilities
The following vulnerabilities have recently seen updates or alerts.
| ID | Update | Package(s) |
Description |
|---|
| 507815 |
April 5, 2013 |
bash |
bash: buffer overflow |
| 506563 |
April 5, 2013 |
automake |
automake: code execution |
| 500144 |
April 5, 2013 |
arpwatch |
arpwatch: privilege escalation |
| 527913 |
April 5, 2013 |
mod_security |
mod_security: multipart/invalid part ruleset bypass |
| 545695 |
April 5, 2013 |
firefox thunderbird seamonkey |
mozilla: multiple vulnerabilities |
View the full vulnerability database.
Recent LWN.net security pages
Here are the most recent LWN.net security pages, with a comprehensive roundup of
a week's worth security-related information.
| Date | Contents |
|---|
| Apr 03, 2013 |
Exploiting digital cameras; New vulnerabilities in bind, glibc, mantis, moodle, ... |
| Mar 27, 2013 |
OpenSSH 6.2; New vulnerabilities in gnome-online-accounts, kernel, libxml2, privoxy, ... |
| Mar 20, 2013 |
Mozilla Persona; New vulnerabilities in chromium, clamav, poppler, wireshark, ... |
| Mar 13, 2013 |
Hockeypuck key server; New vulnerabilities in gksu-polkit, kernel, openshift, puppet, ... |
| Mar 07, 2013 |
Oxford blocks Google Docs; New vulnerabilities in kernel, openafs, openjdk-6, sudo, ... |
| Feb 28, 2013 |
Android security underpinnings; New vulnerabilities in java, kernel, openssh, rails, ... |
| Feb 20, 2013 |
Three kernel vulnerabilities; New vulnerabilities in dbus-glib, java, mozilla, xen, ... |
| Feb 13, 2013 |
Recent Java vulnerabilities; LWN security survey; New vulnerabilities in drupal, gnutls, kernel, vlc, ... |
| Feb 06, 2013 |
CSP for cross-site scripting protection; New vulnerabilities in chromium, java, libupnp, samba, ... |
| Jan 30, 2013 |
Filtering SCSI commands; New vulnerabilities in drupal, inkscape, libvirt, samba4, ... |
| Jan 23, 2013 |
HTTPS interception in Nokia's mobile browser; New vulnerabilities in ganglia, kernel, mysql, nagios, ... |
| Jan 17, 2013 |
Keeping administrators up to date; New vulnerabilities in conga, java, mysql, rails, ... |
| Jan 09, 2013 |
Attacking full-disk encryption with Inception; New vulnerabilities in cups, inkscape, mozilla, rails, ... |
| Jan 03, 2013 |
Inferring TCP sequence numbers; New vulnerabilities in chromium, freetype2, gnupg, mahara, ... |
| Dec 20, 2012 |
Fedora and secure release upgrades; New vulnerabilities in aptdaemon, kernel, squashfs-tools, tomcat, ... |
| Dec 12, 2012 |
FreeIPA: centralized identity management for Linux; New vulnerabilities in bind9, cups, gimp, libtiff, tor, ... |
| Dec 05, 2012 |
Picking a MAC address for a FreedomBox; New vulnerabilities in Claws-mail, Firefox, Kernel, Perl, ... |
| Nov 29, 2012 |
Security implications for UI changes?; New vulnerabilities in Firefox, Hyper-V, Mantis, Tomcat, ... |
| Nov 21, 2012 |
A rootkit dissected; New vulnerabilities in Java, Mozilla products, MySQL, Xen, ... |
| Nov 14, 2012 |
Potential pitfalls in DNS handling; New vulnerabilities in cgit, gegl, icedtea-web, libav, ... |
|
|
