LWN.net Logo

Advertisement

Advanced thin client solution for Linux, based on Open Source. Mix Windows and Linux, with hardware accelerated OpenGL!

Advertise here

LWN Security Resources

LWN.net offers several security-related resources, including the security alert database, the vulnerability database, and the weekly edition security page.

The article index

See the LWN Security Article index for access to all LWN security articles, organized by topic.

Recent security alerts

DistributionIDPackageDate
Debian DSA-1825-1 nagios22009-07-03
SuSE SUSE-SR:2009:012 optipng, cups, quagga, pango, strongswan, perl-DBD-Pg, irssi, openssl/libopenssl-devel, net-snmp, ImageMagick/GraphicsMagick, perl, ipsec-tools/novell-ipsec-tools, poppler/libpoppler3/libpoppler4, yast2-ldap-server, tomcat6, gstreamer-plugins/gstreamer010-plugins-bad, apache2-mod_php52009-07-03
SuSE SUSE-SA:2009:036 java-1_6_0-ibm2009-07-02
Gentoo 200907-02 mod_security2009-07-02
Gentoo 200907-01 libwmf2009-07-02

View the full security alert database.

Recent vulnerabilities

The following vulnerabilities have recently seen updates or alerts.

IDUpdatePackage(s) Description
339886 July 3, 2009 mod_security mod_security: denial of service
339882 July 3, 2009 nagios2, nagios3 nagios: arbitrary program execution
338087 July 3, 2009 ruby ruby: denial of service
233442 July 3, 2009 evolution thunderbird mutt fetchmail pop mail man-in-the-middle attacks
339708 July 3, 2009 pidgin pidgin: denial of service

View the full vulnerability database.

Recent LWN.net security pages

Here are the most recent LWN.net security pages, with a comprehensive roundup of a week's worth security-related information.

DateContents
Jul 01, 2009 Mozilla's Content Security Policy; New vulnerabilities in git, kdelibs, moodle, pam_krb5, ...
Jun 24, 2009 Apache attacked by a "slow loris"; New vulnerabilities in ctorrent, gforge, moin, vlc,...
Jun 17, 2009 Dealing with weakness in SHA-1; New vulnerabilities in acroread, coccinelle, firefox, tomcat,...
Jun 10, 2009 Passive OS fingerprinting; New vulnerabilities in apr-util, ecryptfs-utils, file, kernel,...
Jun 03, 2009 Google's Native Client; New vulnerabilities in drupal, kernel, libsndfile, php-smart,...
May 27, 2009 Sanitizing kernel memory; New vulnerabilities in apache, cscope, openssl, pidgin,...
May 20, 2009 Enabling DRM in the kernel?; New vulnerabilities in cyrus-sasl, drupal, ipsec-tools, kernel, ...
May 13, 2009 Random numbers for ASLR; New vulnerabilities in gnutls, kernel, ldns, squirrelmail,...
May 06, 2009 The Firefox extension war; New vulnerabilities in apache, kernel, libwmf, memcached,...
Apr 29, 2009 Linux ASLR vulnerabilities; New vulnerabilities in clamav, firefox, freetype, MySQL,...
Apr 22, 2009 A privilege escalation flaw in udev; New vulnerabilities in cups, firefox, kernel, udev,...
Apr 15, 2009 Another Linux capabilities hole found; New vulnerabilities in ghostscript, ntp, openafs, tor,...
Apr 08, 2009 Attacks on package managers; New vulnerabilities in bugzilla, horde3, kernel, moodle,...
Apr 01, 2009 Integrity management using Intel TXT; New vulnerabilities in firefox, java, kernel, systemtap,...
Mar 25, 2009 Linux botnets; New vulnerabilities in bugzilla, ffmpeg, libvirt, pam,...
Mar 18, 2009 Tin Hat: secured by running from RAM; New vulnerabilities in evolution-data-server, ffmpeg, mod_security, opera,...
Mar 11, 2009 Fusil: a Python fuzzing library; New vulnerabilities in firefox, kernel, php, roundup,...
Mar 04, 2009 Reviving Python restricted mode; New vulnerabilities in flash-plugin, kernel, network-manager-applet, wireshark,...
Feb 25, 2009 Desktop malware risk gets raised and patched; New vulnerabilities in git, kernel, php, trickle,...
Feb 18, 2009 Book review: Nmap Network Scanning; New vulnerabilities in asterisk, bind, moodle, php, ...

Copyright © 2009, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds