Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

IPFire 2.29 - Core Update 190 is now available for testing, incorporating a refreshed kernel and various modifications developed during the recent IPFire Developer Meetup. The IPFire kernel has been updated to Linux 6.6.63, incorporating security and stability enhancements from the Linux kernel maintainers. The update entails the removal of RSA from the IPFire web UI and SSH, as well as the option to enable or disable the RFC4039 Rapid Commit feature for new installations. The add-ons feature wireless support for WiFi 7, along with enhancements and bug fixes.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux,  Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

IPFire 2.29 Core Update 189 represents a notable enhancement, featuring a security fix, an updated graph for the IPS, and various package updates. This update represents one of the most significant releases to date, delivering a multitude of new firmware files for a range of hardware.

The update serves as a security measure aimed at preventing the IPS process from crashing, thereby safeguarding services operating on the firewall from exposure to the Internet. Improvements have been implemented to enhance the handling of the IPS. These include the introduction of a watcher process to restart the IPS in the event of unexpected crashes, the ability to bypass whitelisted traffic in the iptables ruleset, and the filtering of IPsec traffic. The IPS page now presents IPS throughput categorized into three distinct areas: scanned bandwidth, whitelisted traffic, and bypassed traffic. The Linux firmware has been updated to version 20240811, featuring a marginally increased download size.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for ArchLinux, AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

IPFire 2.29 - Core Update 189 is now available for testing. It includes a security fix, a new graph for the Intrusion Prevention System (IPS), and numerous package changes.

The upgrade addresses a security flaw in the IPS that might open the firewall and expose services operating on it to the internet. To address this, changes have been made to the IPS's handling, such as a watcher process that restarts it in the event of an unexpected crash, the ability to skip whitelisted traffic in the iptables ruleset, and IPsec traffic filtering. The update also adds a new graph on the IPS page that divides IPS throughput into three categories: scanned bandwidth, whitelisted traffic, and bypass traffic. Linux Firmware version 20240811 includes updates to various firmware for WLAN and Ethernet interfaces, RAID controllers, and other hardware.

Security 10812 Published by Philipp Esselbach 0

CSF, a Stateful Packet Inspection (SPI) firewall, login/intrusion detection, and security program for Linux servers, has been updated. The scripts include a simple SPI iptables firewall script, a daemon process that checks for login authentication failures across several systems, and configurable login failures with distinct log files and regular expression matching. It also features UI connection with cPanel, DirectAdmin, and Webmin, as well as quick version upgrades.

The latest version removes the session IP match check from the DA login and includes an example spamassassin temp file regex.

Security 10812 Published by Philipp Esselbach 0

IPFire 2.29 - Core Update 188 is a big release that includes several changes for users. It features package updates, a new kernel, performance improvements for Quality of Service, better handling of DHCP leases, an enhanced build system, a new version of OpenSSL, and solutions for Intel's most recent CPU vulnerabilities. The version also includes a new method for getting DHCP leases into DNS, allowing devices to be reached by their names rather than a random IP address.

The IPFire build system has been upgraded, resulting in stronger protection from the build system to the host system and vice versa. This increased isolation allows IPFire to be compiled for all architectures on the same machine without causing any negative effects. The version also includes bug fixes, stability and security improvements, as well as a new kernel based on Linux 6.6.47.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

ConfigServer has announced the release of a new version of their CSF firewall for Linux servers.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Qubes OS, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Qubes OS, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

IPFire 2.29 - Core Update 187 is now available for testing, with improved protection against Distributed Denial-of-Service attacks and several security patches for OpenSSH, Suricata, and Apache2.

The update enables IPFire to leverage TCP SYN cookies to protect infrastructure from SYN flood assaults, which is especially useful in high-bandwidth applications and cloud deployments. The IP Blocklist feature now supports two additional lists: 3CORESec and Abuse.ch Botnet C2. Vectorscan, a derivative of Intel's Hyperscan library, supports ARM64 architecture and is expected to increase the Intrusion Prevention System's performance. When configured in the most restrictive mode, the firewall generates more rules, and IPsec connections cannot be established using a FQDN as the Local/Remote ID. Unprivileged applications can no longer use the bpf() syscall, and OpenSSH has been updated to version 9.8p1 to address the privileges escalation attack known as regreSSHion.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, ArchLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, CentOS, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

IPFire 2.29 - Core Update 186 has been released, which includes a new kernel, experimental support for Btrfs, and a number of security and bug updates.

The update is based on Linux 6.6.32 and includes mitigations for Register File Data Sampling in Intel processors, as well as fixes for CPU graph issues. The Raspberry Pi has been supported for CPU frequency scaling, and experimental support for Btrfs allows for data compression and snapshot creation, which may benefit development and rollbacks.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux,  SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux,  SUSE Linux, and Ubuntu Linux.

Security 10812 Published by Philipp Esselbach 0

IPFire 2.29 - Core Update 186 is now ready for testing. Core Update 186 brings a new kernel, experimental support for Btrfs, and bug fixes. The upgrade, which is based on Linux 6.6.30, contains mitigations for Register File Data Sampling in Intel processors as well as CPU graph adjustments. It also includes experimental support for Btrfs, which enables data compression and snapshot creation for development and quicker rollbacks. Other modifications include merging Spamhaus EDROP into DROP, eliminating Alienvault, allowing Suicata to use Linux Landlock, updating the Unbound/DHCP Leases bridge, and silencing boot process warnings.

Security 10812 Published by Philipp Esselbach 0

Core Update 185 of IPFire 2.29 has been released, which includes a new IPFire intrusion prevention system (IPS) that is based on Suricata 7 as well as bug fixes and package updates. Support for HTTP/2, deflate compression, byte-ranges, TLS client certificates, IKEv1, PostgreSQL protocol, BitTorrent parser, QUICv1 and GQUIC, and Linux Landlocked — all of which are designed to prevent damage — are included in the update. In addition to this, it adds ThreatFox Indicators of Compromise Rules from abuse.ch, fixes a vulnerability that could have caused a denial of service, and removes the PT Attack and Secureworks rule sets.

Security 10812 Published by Philipp Esselbach 0

Andres Freund has discovered that the upstream XZ repository and the XZ tarballs have been backdoored. The majority of Linux distributions that are affected by this issue are either very new or rolling release distributions. A brief summary of all the most recent updates is as follows:

XZ-Utils Security Update for Debian Testing
XZ Utils Security Advisory for Gentoo
XZ Security Update for Arch Linux
XZ-Utils Update for Kali Linux
XZ Security Issue in Fedora Linux 40 and Rawhide

Security 10812 Published by Philipp Esselbach 0

A vulnerability in Kali Linux, affecting xz-utils 5.6.0-0.2, was triggered between March 26th and 29th. Users who updated before March 29th should apply the latest updates, while those not updated before March 26th are unaffected.