LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: October 24th, 2014
Linux Security Week: October 20th, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Vendors/Products
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.



Oracle tempts Red Hat users with Ksplice kernel security patch trial  24 February 2012 
Source: v3 - Posted by Dave Wreski   
Oracle is offering Red Hat Enterprise Linux customers a 30-day free trial of its Ksplice zero-downtime security patch technology, in an apparent move to tempt them into switching to its own Oracle Linux platform.
 
Google Chrome gets another security makeover  17 February 2012 
Source: ZDNet Blogs - Posted by Dave Wreski   
As part of its bug bounty program, Google doled out $6,837 to purchase the rights to information on the Chrome security vulnerabilities. Google has shipped another Chrome browser update to fix several gaping security holes.
 
Cracking Open Google Wallet  13 February 2012 
Source: Tech World - Posted by Dave Wreski   
It turns out that stealing someone's Google Wallet funds isn't that much more difficult than stealing that person's actual wallet, according to a few recently publicized exploits. "I think these types of vulnerabilities threaten to kill the adoption of NFC before it is even fully born," said the Yankee Group's Carl D. Howe. "All forms of mobile payment rely on being able to trust the payment system."
 
Google Chrome will no longer check for revoked SSL certificates online  09 February 2012 
Source: Network World - Posted by Anthony Pell   
Google plans to remove online certificate revocation checks from future versions of Chrome, because it considers the process inefficient and slow. Browsers currently check if a website's SSL certificate has been revoked by its issuing Certificate Authority (CA) when trying to establish an HTTPS connection.
 
Something fishy about Google Chrome's Safe Browsing API, lab says  08 February 2012 
Source: CSO Online - Posted by Dave Wreski   
From the start, Google's Safe Browsing API was designed to spot malicious web pages so users wouldn't get trapped in them. Google identifies these sites through its own algorithms and user notification.
 
Critical PHP vulnerability being fixed - Update  03 February 2012 
Source: H Security - Posted by Anthony Pell   
The PHP developers are working to fix a critical security vulnerability in PHP that they introduced with a recent security patch. The current stable release is affected; however, it is not yet clear whether the questionable patch was also applied to older versions.
 
Mozilla releases Firefox 10 browser with nine security fixes  03 February 2012 
Source: Infosecurity US - Posted by Anthony Pell   
Mozilla has released the latest version of its browser, Firefox 10, with fixes for nine security flaws, including five critical vulnerabilities.
 
Mozilla closes critical holes in Firefox, Thunderbird and SeaMonkey  01 February 2012 
Source: H Security - Posted by Dave Wreski   
Following the release of new versions of its open source Firefox web browser, Thunderbird email client and SeaMonkey suite, Mozilla has detailed the security fixes included in each of the updates. According to the project's Security Center page for Firefox, version 10.0 closes a total of 8 security holes in the browser, 5 of which are rated as "Critical" by Mozilla.
 
Chrome 16 update closes security holes  24 January 2012 
Source: H Security - Posted by Dave Wreski   
Google has released version 16.0.912.77 of Chrome which closes several security holes in the WebKit-based web browser. The update addresses a total of four vulnerabilities, all of which are rated as "high severity".
 
Critical hole in Apache Struts 2 closed  23 January 2012 
Source: H Security - Posted by Dave Wreski   
The developers of the Apache Struts 2 Java web framework have released version 2.3.1.2. This closes a critical hole in versions of Struts from 2.0.0 to 2.3.1.1 that allowed for remote command execution. The vulnerability makes it possible for the protection around OGNL, an expression language used for getting and setting properties of Java objects, to be bypassed and arbitrary expressions be evaluated.
 
<< Start < Prev 7 8 9 Next > End >>

Results 61 - 70 of 1224
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Disaster as CryptoWall encrypts US firm's entire server installation
Now Everyone Wants to Sell You a Magical Anonymity Router. Choose Wisely
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.