LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: August 1st, 2014
Linux Security Week: July 28th, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Vendors/Products
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.



Chrome 16 update closes security holes  24 January 2012 
Source: H Security - Posted by Dave Wreski   
Google has released version 16.0.912.77 of Chrome which closes several security holes in the WebKit-based web browser. The update addresses a total of four vulnerabilities, all of which are rated as "high severity".
 
Critical hole in Apache Struts 2 closed  23 January 2012 
Source: H Security - Posted by Dave Wreski   
The developers of the Apache Struts 2 Java web framework have released version 2.3.1.2. This closes a critical hole in versions of Struts from 2.0.0 to 2.3.1.1 that allowed for remote command execution. The vulnerability makes it possible for the protection around OGNL, an expression language used for getting and setting properties of Java objects, to be bypassed and arbitrary expressions be evaluated.
 
Apache Tomcat developers advise updates to avoid DoS  18 January 2012 
Source: H Security - Posted by Dave Wreski   
The Apache Tomcat developers are advising users of the 7.0.x, 6.0.x and 5.5.x branches of the Java servlet and JSP container to update to the latest released versions 7.0.23, 6.0.35 and 5.5.35. Recent investigations revealed inefficiencies in how large numbers of parameters and parameter values were handled by Tomcat.
 
NSA Releases a Security-enhanced Version of Android  17 January 2012 
Source: PC World - Posted by Dave Wreski   
The National Security Agency (NSA) has released SE Android, a security-enhanced version of Android, which provides and enforces stricter access-control policies than those found in the popular mobile operating system by default.
 
Linux won't be locked out of Windows 8 PCs, but FUD continues  16 January 2012 
Source: ZDNet Blogs - Posted by Dave Wreski   
A new draft of Microsoft’s Windows 8 hardware certification specs confirms what we already knew: the new Secure Boot feature won’t lock out Linux on hundreds of millions of new PCs. But Linux backers are demanding the right to hack a new class of devices that doesn’t yet exist.
 
Wireshark 1.4.x and 1.6.x updates close security holes  12 January 2012 
Source: H Security - Posted by Dave Wreski   
Versions 1.4.11 and 1.6.5 of the open source Wireshark network protocol analyser have been released, fixing bugs and closing holes found in the previous builds. The maintenance and security updates to the cross-platform tool fix several vulnerabilities that could be exploited by an attacker to cause a denial-of-service (DoS) or compromise a victim's system.
 
WordPress 3.3.1 closes XSS hole  04 January 2012 
Source: H Security - Posted by Dave Wreski   
Version 3.3.1 of the open source WordPress blogging and publishing platform has been released. The maintenance and security update addresses a cross-site scripting (XSS) vulnerability affecting WordPress 3.3. According to a blog post by security researchers Aditya Modha and Samir Shah, the hole affects WordPress instances installed using an IP address; instances of WordPress installed using a domain name are reportedly not vulnerable.
 
Siemens To Patch Major SCADA Authentication Holes Next Month  23 December 2011 
Source: Dark Reading - Posted by Dave Wreski   
In the wake of a researcher's public disclosure of flaws in Siemens products that could let an attacker take over a control system without even knowing the username and password, Siemens today said it will issue security updates in January to fix product vulnerabilities.
 
Researchers accuse Google of plotting to undercut Firefox  15 December 2011 
Source: Network World - Posted by Dave Wreski   
A security testing firm today said a recent report that named Google's Chrome as the most secured browser was flawed -- and part of a campaign by Google to undermine Mozilla's Firefox.
 
New study claims that Chrome is the most secure browser  13 December 2011 
Source: ZDNet Blogs - Posted by Dave Wreski   
Which is the most secure browser around? According to a newly released study by Accuvant, that’s Google’s Chrome.
 
<< Start < Prev 7 8 9 Next > End >>

Results 61 - 70 of 1216
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
NSA keeps low profile at hacker conventions despite past appearances
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.