|
LWN Security Resources
LWN.net offers several security-related resources, including the
security alert database, the
vulnerability database, and the weekly
edition security page.
The article index
See the LWN Security Article index for
access to all LWN security articles, organized by topic.
Recent security alerts
| Distribution | ID | Package | Date |
|---|
| Debian |
DSA-1825-1 |
nagios2 | 2009-07-03 |
| SuSE |
SUSE-SR:2009:012 |
optipng, cups, quagga, pango, strongswan, perl-DBD-Pg, irssi, openssl/libopenssl-devel, net-snmp, ImageMagick/GraphicsMagick, perl, ipsec-tools/novell-ipsec-tools, poppler/libpoppler3/libpoppler4, yast2-ldap-server, tomcat6, gstreamer-plugins/gstreamer010-plugins-bad, apache2-mod_php5 | 2009-07-03 |
| SuSE |
SUSE-SA:2009:036 |
java-1_6_0-ibm | 2009-07-02 |
| Gentoo |
200907-02 |
mod_security | 2009-07-02 |
| Gentoo |
200907-01 |
libwmf | 2009-07-02 |
View the full security alert database.
Recent vulnerabilities
The following vulnerabilities have recently seen updates or alerts.
| ID | Update | Package(s) |
Description |
|---|
| 339886 |
July 3, 2009 |
mod_security |
mod_security: denial of service |
| 339882 |
July 3, 2009 |
nagios2, nagios3 |
nagios: arbitrary program execution |
| 338087 |
July 3, 2009 |
ruby |
ruby: denial of service |
| 233442 |
July 3, 2009 |
evolution thunderbird mutt fetchmail |
pop mail man-in-the-middle attacks |
| 339708 |
July 3, 2009 |
pidgin |
pidgin: denial of service |
View the full vulnerability database.
Recent LWN.net security pages
Here are the most recent LWN.net security pages, with a comprehensive roundup of
a week's worth security-related information.
| Date | Contents |
|---|
| Jul 01, 2009 |
Mozilla's Content Security Policy; New vulnerabilities in git, kdelibs, moodle, pam_krb5, ... |
| Jun 24, 2009 |
Apache attacked by a "slow loris"; New vulnerabilities in ctorrent, gforge, moin, vlc,... |
| Jun 17, 2009 |
Dealing with weakness in SHA-1; New vulnerabilities in acroread, coccinelle, firefox, tomcat,... |
| Jun 10, 2009 |
Passive OS fingerprinting; New vulnerabilities in apr-util, ecryptfs-utils, file, kernel,... |
| Jun 03, 2009 |
Google's Native Client; New vulnerabilities in drupal, kernel, libsndfile, php-smart,... |
| May 27, 2009 |
Sanitizing kernel memory; New vulnerabilities in apache, cscope, openssl, pidgin,... |
| May 20, 2009 |
Enabling DRM in the kernel?; New vulnerabilities in cyrus-sasl, drupal, ipsec-tools, kernel, ... |
| May 13, 2009 |
Random numbers for ASLR; New vulnerabilities in gnutls, kernel, ldns, squirrelmail,... |
| May 06, 2009 |
The Firefox extension war; New vulnerabilities in apache, kernel, libwmf, memcached,... |
| Apr 29, 2009 |
Linux ASLR vulnerabilities; New vulnerabilities in clamav, firefox, freetype, MySQL,... |
| Apr 22, 2009 |
A privilege escalation flaw in udev; New vulnerabilities in cups, firefox, kernel, udev,... |
| Apr 15, 2009 |
Another Linux capabilities hole found; New vulnerabilities in ghostscript, ntp, openafs, tor,... |
| Apr 08, 2009 |
Attacks on package managers; New vulnerabilities in bugzilla, horde3, kernel, moodle,... |
| Apr 01, 2009 |
Integrity management using Intel TXT; New vulnerabilities in firefox, java, kernel, systemtap,... |
| Mar 25, 2009 |
Linux botnets; New vulnerabilities in bugzilla, ffmpeg, libvirt, pam,... |
| Mar 18, 2009 |
Tin Hat: secured by running from RAM; New vulnerabilities in evolution-data-server, ffmpeg, mod_security, opera,... |
| Mar 11, 2009 |
Fusil: a Python fuzzing library; New vulnerabilities in firefox, kernel, php, roundup,... |
| Mar 04, 2009 |
Reviving Python restricted mode; New vulnerabilities in flash-plugin, kernel, network-manager-applet, wireshark,... |
| Feb 25, 2009 |
Desktop malware risk gets raised and patched; New vulnerabilities in git, kernel, php, trickle,... |
| Feb 18, 2009 |
Book review: Nmap Network Scanning; New vulnerabilities in asterisk, bind, moodle, php, ... |
|
|
