LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for April 11, 2013

Legal issues from a radical community angle

Vulnerability handling in the PostgreSQL project

LWN.net Weekly Edition for April 4, 2013

LWN.net Weekly Edition for March 28, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

LWN Security Resources

LWN.net offers several security-related resources, including the security alert database, the vulnerability database, and the weekly edition security page.

The article index

See the LWN Security Article index for access to all LWN security articles, organized by topic.

Recent security alerts

DistributionIDPackageDate
CentOS CESA-2013:0737 subversion2013-04-12
Oracle ELSA-2013-0737 subversion2013-04-12
openSUSE openSUSE-SU-2013:0671-1 update2013-04-12
openSUSE openSUSE-SU-2013:0672-1 flash-player2013-04-12
openSUSE openSUSE-SU-2013:0666-1 bind2013-04-11

View the full security alert database.

Recent vulnerabilities

The following vulnerabilities have recently seen updates or alerts.

IDUpdatePackage(s) Description
546161 April 12, 2013 subversion subversion: multiple vulnerabilities
546480 April 12, 2013 roundcubemail roundcubemail: file disclosure
547159 April 12, 2013 kernel kernel: privilege escalation
545190 April 11, 2013 rails rails: multiple vulnerabilities
545585 April 11, 2013 libxslt libxslt: denial of service

View the full vulnerability database.

Recent LWN.net security pages

Here are the most recent LWN.net security pages, with a comprehensive roundup of a week's worth security-related information.

DateContents
Apr 10, 2013 Entropy Broker; New vulnerabilities in asterisk, kernel, postgresql, samba, ...
Apr 03, 2013 Exploiting digital cameras; New vulnerabilities in bind, glibc, mantis, moodle, ...
Mar 27, 2013 OpenSSH 6.2; New vulnerabilities in gnome-online-accounts, kernel, libxml2, privoxy, ...
Mar 20, 2013 Mozilla Persona; New vulnerabilities in chromium, clamav, poppler, wireshark, ...
Mar 13, 2013 Hockeypuck key server; New vulnerabilities in gksu-polkit, kernel, openshift, puppet, ...
Mar 07, 2013 Oxford blocks Google Docs; New vulnerabilities in kernel, openafs, openjdk-6, sudo, ...
Feb 28, 2013 Android security underpinnings; New vulnerabilities in java, kernel, openssh, rails, ...
Feb 20, 2013 Three kernel vulnerabilities; New vulnerabilities in dbus-glib, java, mozilla, xen, ...
Feb 13, 2013 Recent Java vulnerabilities; LWN security survey; New vulnerabilities in drupal, gnutls, kernel, vlc, ...
Feb 06, 2013 CSP for cross-site scripting protection; New vulnerabilities in chromium, java, libupnp, samba, ...
Jan 30, 2013 Filtering SCSI commands; New vulnerabilities in drupal, inkscape, libvirt, samba4, ...
Jan 23, 2013 HTTPS interception in Nokia's mobile browser; New vulnerabilities in ganglia, kernel, mysql, nagios, ...
Jan 17, 2013 Keeping administrators up to date; New vulnerabilities in conga, java, mysql, rails, ...
Jan 09, 2013 Attacking full-disk encryption with Inception; New vulnerabilities in cups, inkscape, mozilla, rails, ...
Jan 03, 2013 Inferring TCP sequence numbers; New vulnerabilities in chromium, freetype2, gnupg, mahara, ...
Dec 20, 2012 Fedora and secure release upgrades; New vulnerabilities in aptdaemon, kernel, squashfs-tools, tomcat, ...
Dec 12, 2012 FreeIPA: centralized identity management for Linux; New vulnerabilities in bind9, cups, gimp, libtiff, tor, ...
Dec 05, 2012 Picking a MAC address for a FreedomBox; New vulnerabilities in Claws-mail, Firefox, Kernel, Perl, ...
Nov 29, 2012 Security implications for UI changes?; New vulnerabilities in Firefox, Hyper-V, Mantis, Tomcat, ...
Nov 21, 2012 A rootkit dissected; New vulnerabilities in Java, Mozilla products, MySQL, Xen, ...

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds