OpenSnitch 1.8.0 has been released, bringing significant changes, including a GUI overhaul built on PyQt6 instead of PyQt5. This update reflects the shift away from PyQt5 by many GNU/Linux distributions and aims to keep OpenSnitch modern going forward, although it may no longer be compatible with older distros like Linux Mint 21.2 or Ubuntu 22.04. The new version includes several substantial enhancements, such as streamlined firewall rule management, improved backend upgrades, and task automation features.
Several Linux distributions have received security updates over the past week to address various vulnerabilities in their packages. These updates aim to protect users from potential threats by fixing identified issues such as information disclosure, denial-of-service attacks, and arbitrary code execution. The affected distributions include AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Several major Linux distributions have released security updates over the past week to fix various vulnerabilities across their packages. The affected distributions include AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux, with multiple packages receiving patches to address issues such as remote code execution, denial of service, and information disclosure. These updates aim to protect users from potential threats by addressing known vulnerabilities in the affected software, with some updates also including bug fixes and enhancements to packages and images.
The Open Web Application Security Project (OWASP) has released version 4.21.0 of its Core Rule Set (CRS), a widely used WAF rule set for ModSecurity that focuses on security enhancements and operational fixes. This update includes improved IPv6 scanning capabilities, such as XML scan and SSH scheme detection, making it more effective internationally. The CRS also gets some internal housekeeping with added unit tests to prevent overzealous triggering, fixed logic errors, and patched evasion tactics. For .NET site users, the updated documentation now includes guidance on disabling the Expect header, a crucial but easily overlooked step.
Several Linux distributions have released security updates in the last week to address various vulnerabilities in their packages. The affected distributions include AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux. These updates patch vulnerabilities in key applications such as Podman, Firefox, Bind, Kernel, Erlang, Rails, and other essential components to improve the overall security and stability of each distribution.
IPFire 2.29 - Core Update 199 is now available for testing, bringing significant enhancements to the platform's networking capabilities, including support for WiFi 7 and automatic setup for newer wireless capabilities. The update also includes native LLDP/CDP integration, allowing users to better understand their network layout, as well as security patches and stability fixes based on Linux 6.12.58. Other notable improvements include a refreshed Intrusion Prevention System using Suricata version 8.0.2, updated OpenVPN features, and improved system boot management with draceng.
Several Linux distributions released security updates last week to address various vulnerabilities and patches for packages such as kernel, libssh, vim, and others. Distributions including AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux have received these updates, with some affecting multiple versions of the operating system. The security issues addressed include arbitrary code execution, denial-of-service attacks, heap buffer over-reads, NULL pointer dereferences, and other types of vulnerabilities in software packages like Chromium, Firefox, Thunderbird, and more. These updates can be installed using package managers such as dnf for Fedora Linux or by applying a valid GPG key for some distributions.
Multiple Linux distributions have released security updates over the past week to address vulnerabilities in various packages. Distributions such as AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux have all issued updates to patch issues in packages like kernels, web browsers, and libraries. These security updates aim to improve the overall security and stability of each distribution by addressing vulnerabilities that could lead to local privilege escalation, information disclosure, or code execution if left unpatched. Each distribution has released specific updates for its versions, with some also releasing critical updates to address significant security issues.
Several major Linux distributions have released security updates over the past week, including AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, SUSE Linux, and Ubuntu Linux. The updates address various vulnerabilities across multiple packages, such as .NET framework, WebKitGTK, ruby-rack, strongSwan, WordPress, GIMP, Rust libraries, Python applications, and more. Packages such as librepo, sendmail, kernel, NetworkManager, Samba, expat, squid, golang, redis, libssh, and others have fixed important or moderate severity bugs. These updates are critical to preserving the security and stability of Linux systems, particularly with the potential risks posed by vulnerabilities such as cache poisoning attacks and resource exhaustion.
A new version of the OWASP CRS (Core Rule Set), 4.20.0, has been released, providing enhanced protection for web applications against various attacks. This update includes new features and detections, such as updated restricted file extensions and configuration files for popular e-commerce platforms like PrestaShop and Magento. Bug fixes also addressed several issues, including missing capture keywords and high-risk false positives. The changes aim to improve detection capabilities while minimizing false alerts in web application firewalls.
Here is a roundup of recent security updates that have been released for several Linux distributions, including AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux. These updates address vulnerabilities in various packages, such as libtiff, squid, kernel, Thunderbird, and others, to improve overall system security and protect against potential attacks. The affected distributions have released multiple security updates to resolve issues including CSV injection, XML XXE/XEE attacks, incorrect certificate validation, denial-of-service attacks, and more.
IPFire Core Update 198 has been released, featuring a substantial upgrade to its Intrusion Prevention System (IPS) powered by Suricata 8. This update brings enhanced performance, deeper inspection features, and increased reliability to IPFire's IPS, as well as improved reporting and logging capabilities, including real-time email notifications, scheduled PDF reports, and external logging. The update also includes significant advancements in the IPS itself, with faster startup times, more efficient memory handling, and expanded protocol support.
Multiple Linux distributions have released security updates over the past week, addressing vulnerabilities in various packages such as kernels, web browsers, and software libraries. The updates cover different Linux versions, including AlmaLinux 10 and 9, Debian GNU/Linux 9 to 13, Fedora 41, 42, and 43, Oracle Linux 7 to 10, Red Hat Enterprise Linux 8 to 10, Rocky Linux 8, Slackware Linux, and Ubuntu Linux. These vulnerabilities could lead to security issues such as Denial of Service (DoS), remote code execution, or other threats if not patched. The updates aim to provide improved security and stability for users of these Linux distributions and their associated products.
Here is a roundup of last week's security updates for several Linux distributions, including AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux, which have released security updates to address vulnerabilities in various packages. The updates range from moderate to important severity and affect packages such as the kernel, webkit2gtk3, libssh, Firefox, OpenSSL, and others, resolving issues like integer overflow, use-after-free bugs, privilege escalation, denial of service, and remote code execution. Users are advised to apply these security updates to ensure the stability and security of their systems, with some distributions providing detailed severity ratings through the Common Vulnerability Scoring System (CVSS) base score.
Here is a roundup of this week's security updates, including Open-VM-Tools, Kernel, GnuTLS, Dovecot, FreeIPA, Git, and others. These updates aim to patch vulnerabilities and prevent potential security risks such as arbitrary code execution or denial of service across different versions of various Linux distributions, including AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux. The severity of the kernel updates is classified as moderate in some cases, while others have been rated as having an important or critical security impact by the respective distribution's product security teams.
Here is a roundup of last week's security updates for multiple Linux distributions to address vulnerabilities in various packages. These updates include fixes for potential crashes, use-after-free bugs, integer buffer overflows, denial-of-service issues, and privilege escalation in distributions such as AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux. The updates aim to improve system security and stability by addressing vulnerabilities in browsers, databases, file systems, HTTP servers, kernel modules, libraries, and other components. Users are advised to upgrade their packages to the latest versions to ensure the security and stability of their systems.
The OWASP CRS 4.19.0 has been released, providing enhanced protection against a wide array of web attacks through its integration with ModSecurity or compatible web application firewalls. This update includes several new features and detections to improve the system's security capabilities, as well as fixes to address issues with LFI rules, generic SQLSTATE error codes, and false positives. The release also includes adjustments to enhance the efficiency of regex cleanup and reduce false positives triggered by PHP response rules.
IPFire 2.29 - Core Update 198 has been released for testing, bringing significant improvements to the IPFire Intrusion Prevention System (IPS) and an upgraded toolchain. The enhanced IPS now offers advanced reporting capabilities, including real-time email notifications, scheduled PDF reports, and remote syslog forwarding, which dramatically enhance its auditability and accountability. Additionally, the update includes an upgrade to Suricata 8.0.1, caching for compiled rules, sturdier memory handling, and expanded protocol support. The update also fixes several security issues, including those resolved by Intel's new microcode and updates made to GRUB, which makes IPFire's defenses against possible threats even stronger.
Here is a roundup of Linux distributions' security updates from last week, including AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux (RHEL), Slackware Linux, and SUSE Linux, with Ubuntu also releasing multiple security notices. The updates address various vulnerabilities, including denial-of-service attacks, privilege escalation, SQL injection, and heap buffer overflows in packages such as kernel, Firefox, Thunderbird, Chromium, and more. Many of the updates aim to improve the overall security and stability of the respective distributions by fixing issues like memory leaks, out-of-bounds reads, and side-channel information leakage. The severity ratings for these vulnerabilities range from moderate to critical, indicating potential risks if not patched, and users are advised to update their systems as soon as possible to ensure protection against potential attacks.
Here is a roundup of last week's security updates for Linux distributions that address various vulnerabilities across their systems, including AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux. These updates cover multiple components such as kernel fixes, container tools, and packages like Python-cryptography, GnuTLS, OpenTelemetry-collector, MySQL, and Firefox to improve the overall security of the systems. The vulnerabilities addressed range from potential denial-of-service attacks to arbitrary code execution, with some identified in critical components like the Linux kernel.
