| Weekly edition | Kernel | Security | Distributions | Search |
| Archives | Calendar | Subscribe | Write for LWN | LWN.net FAQ |
LWN Security Resources
LWN.net offers several security-related resources, including the
security alert database, the
vulnerability database, and the weekly
edition security page.
The article index
See the LWN Security Article index for access to all LWN security articles, organized by topic.Recent security alerts
| Distribution | ID | Package | Date |
|---|---|---|---|
| Fedora | FEDORA-2008-6676 | asterisk | 2008-07-24 |
| Slackware | SSA:2008-205-01 | dnsmasq | 2008-07-24 |
| Debian | DSA-1616-1 | clamav | 2008-07-24 |
| Fedora | FEDORA-2008-6645 | wireshark | 2008-07-23 |
| Fedora | FEDORA-2008-6657 | mantis | 2008-07-23 |
View the full security alert database.
Recent vulnerabilities
The following vulnerabilities have recently seen updates or alerts.
| ID | Update | Package(s) | Description |
|---|---|---|---|
| 284155 | July 24, 2008 | php | php libcurl: safe_mode bypass |
| 281480 | July 24, 2008 | php | php: PATH_TRANSLATED miscalculation |
| 288547 | July 24, 2008 | glib2 | glib2: buffer overflow |
| 290293 | July 24, 2008 | php | php: denial of service |
| 259368 | July 24, 2008 | php5 | php5: multiple vulnerabilities |
View the full vulnerability database.
Recent LWN.net security pages
Here are the most recent LWN.net security pages, with a comprehensive roundup of a week's worth security-related information.
| Date | Contents |
|---|---|
| Jul 23, 2008 | Deep packet inspection; New vulnerabilities in the bacula, kernel, mantis, ruby, ... |
| Jul 16, 2008 | Trust and mirrors; New vulnerabilities in apache, drupal, firefox, java,... |
| Jul 09, 2008 | Secrecy and the DNS flaw; New vulnerabilities in bind, mercurial, poppler, ruby,... |
| Jul 02, 2008 | Ruby security flaws expose release process problems; New vulnerabilities in firefox, kernel, mysql, perl,... |
| Jun 25, 2008 | Leaking browser history; New vulnerabilities in fetchmail, gallery, kernel, ruby,... |
| Jun 18, 2008 | The Application Security Desk Reference; New vulnerabilities in freetype, openoffice.org, typo3, xorg-server,... |
| Jun 11, 2008 | SCADA system vulnerabilities; New vulnerabilities in kernel, openoffice.org, snort, tomcat,... |
| Jun 04, 2008 | oCERT and oss-security; New vulnerabilities in evolution, imlib2, openssl, stunnel,... |
| May 28, 2008 | Attacking network cards; New vulnerabilities in emacs, kernel, php libcurl, samba,... |
| May 21, 2008 | Session cookies for web applications; New vulnerabilities in Django, gnutls, kernel, setroubleshoot,... |
| May 14, 2008 | Debian vulnerability has widespread effects; New vulnerabilities in bugzilla, openssl, php5, xen,... |
| May 07, 2008 | Cryptographic splicing makes for a Wordpress vulnerability; New vulnerabilities in b2evolution, emacs, kernel (several), and wordpress |
| Apr 30, 2008 | The Tahoe secure filesystem; New vulnerabilities in asterisk, kdelibs, ldm, wordpress,... |
| Apr 23, 2008 | Image handling vulnerabilities; New vulnerabilities in clamav, cups, firefox, openoffice.org,... |
| Apr 16, 2008 | GCC and pointer overflows; New vulnerabilities in libpng, python, rsync, squid, ... |
| Apr 09, 2008 | Backscatter increase clogs inboxes; New vulnerabilities in alsaplayer, flash-plugin, pdns-recursor, PolicyKit,... |
| Apr 02, 2008 | Biometrics for identification; New vulnerabilities in capp-lspp-config, cups, gnome-screensaver, xine-lib |
| Mar 26, 2008 | Voting machine integrity through transparency; New vulnerabilities in firefox, openssh, xine-lib, xwine,... |
| Mar 19, 2008 | Breaking CAPTCHA; New vulnerabilities in cups, krb5, smarty, unzip,... |
| Mar 12, 2008 | Extended Validation certificates and cross-site scripting; New vulnerabilities in java, joomla, lighttpd, phpMyAdmin,... |