security

What you need to know about the Drupal vulnerability CVE-2014-3704

LinuxSecurity.com - Fri, 2014-10-31 04:51
LinuxSecurity.com: Do you use Drupal for your personal website? Does your company use Drupal? Can't recall the last time it was patched? Well then, as Steve Ragan outlines in this article, it is a safe bet to assume that you've already been compromised.
Categories: linux, news, security

Preventing Linux rootkit threats through secure boot design

LinuxSecurity.com - Fri, 2014-10-31 04:48
LinuxSecurity.com: The Linux OS is likely to become even more popular as 32bit computing becomes a commodity and projects like Yocto make it easier to create, develop and maintain Linux based systems for embedded applications.
Categories: linux, news, security

Red Hat: 2014:1768-01: php53: Important Advisory

LinuxSecurity.com - Thu, 2014-10-30 12:35
LinuxSecurity.com: Updated php53 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security [More...]
Categories: linux, news, security

Red Hat: 2014:1767-01: php: Important Advisory

LinuxSecurity.com - Thu, 2014-10-30 12:32
LinuxSecurity.com: Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security [More...]
Categories: linux, news, security

Red Hat: 2014:1764-01: wget: Moderate Advisory

LinuxSecurity.com - Thu, 2014-10-30 12:27
LinuxSecurity.com: An updated wget package that fixes one security issue is now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security [More...]
Categories: linux, news, security

Red Hat: 2014:1763-01: kernel: Important Advisory

LinuxSecurity.com - Thu, 2014-10-30 12:25
LinuxSecurity.com: Updated kernel packages that fix two security issues are now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having Important security [More...]
Categories: linux, news, security

Ubuntu: 2395-1: Linux kernel vulnerabilities

LinuxSecurity.com - Thu, 2014-10-30 10:47
LinuxSecurity.com: Several security issues were fixed in the kernel.
Categories: linux, news, security

Ubuntu: 2394-1: Linux kernel (Trusty HWE) vulnerabilities

LinuxSecurity.com - Thu, 2014-10-30 10:47
LinuxSecurity.com: Several security issues were fixed in the kernel.
Categories: linux, news, security

Advisory says to assume all Drupal 7 websites are compromised

LinuxSecurity.com - Thu, 2014-10-30 04:59
LinuxSecurity.com: If your organization uses Drupal, you might have a serious problem on your hands. On October 15, Drupal urged users to apply an update that fixed a SQL Injection flaw. However, unless that patch was installed within seven hours, Drupal now says it's best to assume the website was completely compromised.
Categories: linux, news, security

Parallels CTO: Linux container security is not the problem

LinuxSecurity.com - Thu, 2014-10-30 04:58
LinuxSecurity.com: Containerization technology has been a game-changer, powering Docker and other transformative software solutions. It's also garnered its share of criticisms about performance, security, and resiliency.
Categories: linux, news, security

Pirate Bay founder guilty in historic hacker case

LinuxSecurity.com - Thu, 2014-10-30 04:57
LinuxSecurity.com: Pirate Bay founder Gottrid Svartholm Warg and his 21-year-old Danish co-defendant JLT have been found guilty by a Danish court of mounting the most serious computer hack in the country's history.
Categories: linux, news, security

Ubuntu: 2392-1: systemd-shim vulnerability

LinuxSecurity.com - Thu, 2014-10-30 04:40
LinuxSecurity.com: A denial of service issue was fixed in systemd-shim.
Categories: linux, news, security

Red Hat: 2014:1744-01: v8314-v8: Moderate Advisory

LinuxSecurity.com - Thu, 2014-10-30 04:08
LinuxSecurity.com: Updated v8314-v8 packages that fix multiple security issues are now available for Red Hat Software Collections 1. Red Hat Product Security has rated this update as having Moderate security [More...]
Categories: linux, news, security

Ubuntu: 2391-1: php5 vulnerabilities

LinuxSecurity.com - Thu, 2014-10-30 03:50
LinuxSecurity.com: Several security issues were fixed in PHP.
Categories: linux, news, security

Slackware: 2014-302-01: wget: Security Update

LinuxSecurity.com - Wed, 2014-10-29 11:42
LinuxSecurity.com: New wget packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue. [More Info...]
Categories: linux, news, security

Debian: 3059-1: dokuwiki: Summary

LinuxSecurity.com - Wed, 2014-10-29 09:26
LinuxSecurity.com: Security Report Summary
Categories: linux, news, security

BYOD: Why the biggest security worry is the fool within rather than the enemy without

LinuxSecurity.com - Wed, 2014-10-29 04:20
LinuxSecurity.com: The vast majority - 95 percent - of IT managers are prepared to admit that they are struggling to tackle all the potential security threats they face and 87 percent believe that the biggest threats came from mobile devices in the hands of careless employees, according to a new survey.
Categories: linux, news, security

Hackers target unclassified White House network

LinuxSecurity.com - Wed, 2014-10-29 04:19
LinuxSecurity.com: Hackers targeted an unclassified White House network but did not damage any systems, a White House official said Tuesday.
Categories: linux, news, security

Hackers Are Using Gmail Drafts to Update Their Malware and Steal Data

LinuxSecurity.com - Wed, 2014-10-29 04:15
LinuxSecurity.com: In his career-ending extramarital affair that came to light in 2012, General David Petraeus used a stealthy technique to communicate with his lover Paula Broadwell: the pair left messages for each other in the drafts folder of a shared Gmail account. Now hackers have learned the same trick. Only instead of a mistress, they're sharing their love letters with data-stealing malware buried deep on a victim's computer.
Categories: linux, news, security

Mandriva: 2014:212: wget

LinuxSecurity.com - Tue, 2014-10-28 23:12
LinuxSecurity.com: Updated wget package fixes security vulnerability: Wget was susceptible to a symlink attack which could create arbitrary files, directories or symbolic links and set their permissions when retrieving a directory recursively through FTP (CVE-2014-4877). [More...]
Categories: linux, news, security