LWN.net Logo

LWN Security Resources

LWN.net offers several security-related resources, including the security alert database, the vulnerability database, and the weekly edition security page.

The article index

See the LWN Security Article index for access to all LWN security articles, organized by topic.

Recent security alerts

DistributionIDPackageDate
Mandriva MDVSA-2010:000 firefox2090-01-10
CentOS CESA-2010:0094 HelixPlayer2010-02-09
Fedora FEDORA-2010-1556 gnome-screensaver2010-02-09
SuSE SUSE-SR:2010:003 lighttpd, net-snmp/libsnmp15/perl-SNMP, fuse, xpdf2010-02-09
Red Hat RHSA-2010:0088-02 kvm2010-02-09

View the full security alert database.

Recent vulnerabilities

The following vulnerabilities have recently seen updates or alerts.

IDUpdatePackage(s) Description
373632 February 9, 2010 bugzilla bugzilla: information leak
373631 February 9, 2010 gnome-screensaver gnome-screensaver: lock bypass
373630 February 9, 2010 HelixPlayer HelixPlayer: multiple vulnerabilities
373629 February 9, 2010 kvm kvm: multiple vulnerabilities
353606 February 9, 2010 bugzilla bugzilla: SQL injection

View the full vulnerability database.

Recent LWN.net security pages

Here are the most recent LWN.net security pages, with a comprehensive roundup of a week's worth security-related information.

DateContents
Feb 03, 2010 Security in the 20-teens; New vulnerabilities in bltk, kernel, moodle, zabbix,...
Jan 27, 2010 Encrypting users' web data with Grendel; New vulnerabilities in acroread, dokuwiki, kernel, phpgroupware,...
Jan 20, 2010 BackTrack 4: the security professional's toolbox; New vulnerabilities in bind, glibc, gzip, kernel,...
Jan 13, 2010 SSH: passwords or keys?; New vulnerabilities in firefox, kernel, pdns-recursor, sendmail,...
Jan 06, 2010 GSM encryption crack made public; New vulnerabilities in automake, kernel, NetworkManager, wireshark,...
Dec 23, 2009 Linux malware: an incident and some solutions; New vulnerabilities in condor, drupal, ganeti, rails,...
Dec 16, 2009 TCP cookie transactions; New vulnerabilities in asterisk, cacti, firefox, kernel,...
Dec 09, 2009 Pogoplug makes internet data sharing easy; New vulnerabilities in grub2, kernel, kvm, ntp,...
Dec 02, 2009 On the importance of return codes; New vulnerabilities in awstats, bind, kdelibs, php,...
Nov 24, 2009 Firefox locks down the components directory; New vulnerabilities in asterisk, opera, php, qemu,...
Nov 18, 2009 TLS renegotiation vulnerability; New vulnerabilities in asterisk, java, qt, wordpress,...
Nov 11, 2009 What lessons can be learned from the iPhone worms?; New vulnerabilities in cups, drupal6, java, QtWebKit,...
Nov 04, 2009 Chrome reflective XSS protection; New vulnerabilities in firefox, kernel, mahara, wireshark,...
Oct 28, 2009 "Evil Maid" attack against disk encryption; New vulnerabilities in firefox, kernel, poppler, sahana,...
Oct 21, 2009 Distributed brute force ssh attacks; New vulnerabilities in gd, kernel, pidgin, xpdf,...
Oct 14, 2009 TorProxy and Shadow; New vulnerabilities in deltarpm, graphicsmagick, phpMyAdmin, Django,...
Oct 07, 2009 LPC: Three sessions from the security track; New vulnerabilities in elinks, kernel, openoffice, samba,...
Sep 30, 2009 BruCON: Can we trust cryptography?; New vulnerabilities in asterisk, dovecot, kvm, php,...
Sep 23, 2009 LinuxCon: Secure virtualization with sVirt; New vulnerabilities in apache, bugzilla, drupal, webkit,...
Sep 16, 2009 All the malware that's fit to print; New vulnerabilities in firefox, kde, nginx, wireshark,...

Copyright © 2010, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds