Debianhelp.co.uk
Debian Security   [more] [xml]
 2014-10-31 DSA-3060 linux - security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service:

 2014-10-29 DSA-3059 dokuwiki - security update

Two vulnerabilities have been discovered in dokuwiki. Access control in the media manager was insufficiently restricted and authentication could be bypassed when using Active Directory for LDAP authentication.

 2014-10-27 DSA-3058 torque - security update

Chad Vizino reported a vulnerability in torque, a PBS-derived batch processing queueing system. A non-root user could exploit the flaw in the tm_adopt() library call to kill any process, including root-owned ones on any node in a job.

 2014-10-26 DSA-3057 libxml2 - security update

Sogeti found a denial of service flaw in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML file that, when processed by an application using libxml2, would lead to excessive CPU consumption (denial of service) based on excessive entity substitutions, even if entity substitution was disabled, which is the parser default behavior. (CVE-2014-3660)

 2014-10-26 DSA-3056 libtasn1-3 - security update

Several vulnerabilities were discovered in libtasn1-3, a library that manages ASN1 (Abstract Syntax Notation One) structures. An attacker could use those to cause a denial-of-service via out-of-bounds access or NULL pointer dereference.

 2014-10-23 DSA-3055 pidgin - security update

Multiple vulnerabilities have been discovered in Pidgin, a multi-protocol instant messaging client:

 2014-10-20 DSA-3054 mysql-5.5 - security update

Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to the new upstream version 5.5.40. Please see the MySQL 5.5 Release Notes and Oracle's Critical Patch Update advisory for further details:

 2014-10-16 DSA-3053 openssl - security update

Several vulnerabilities have been found in OpenSSL, the Secure Sockets Layer library and toolkit.

 2014-10-15 DSA-3052 wpa - security update

Jouni Malinen discovered an input sanitization issue in the wpa_cli and hostapd_cli tools included in the wpa package. A remote wifi system within range could provide a crafted string triggering arbitrary code execution running with privileges of the affected wpa_cli or hostapd_cli process.

 2014-10-15 DSA-3051 drupal7 - security update

Stefan Horst discovered a vulnerability in the Drupal database abstraction API, which may result in SQL injection.

 2014-10-15 DSA-3050 iceweasel - security update

Multiple security issues have been found in Iceweasel, Debian's version of the Mozilla Firefox web browser: Multiple memory safety errors, buffer overflows, use-after-frees and other implementation errors may lead to the execution of arbitrary code, denial of service, the bypass of the same-origin policy or a loss of privacy.

 2014-10-14 DSA-3049 wireshark - security update

Multiple vulnerabilities were discovered in the dissectors/parsers for RTP, MEGACO, Netflow, RTSP, SES and Sniffer, which could result in denial of service.

 2014-10-08 DSA-3048 apt - security update

Guillem Jover discovered that the changelog retrieval functionality in apt-get used temporary files in an insecure way, allowing a local user to cause arbitrary files to be overwritten.

 2014-10-08 DSA-3047 rsyslog - security update

Mancha discovered a vulnerability in rsyslog, a system for log processing. This vulnerability is an integer overflow that can be triggered by malformed messages to a server, if this one accepts data from untrusted sources, provoking message loss, denial of service and, potentially, remote code execution.

 2014-10-05 DSA-3046 mediawiki - security update

It was reported that MediaWiki, a website engine for collaborative work, allowed to load user-created CSS on pages where user-created JavaScript is not allowed. A wiki user could be tricked into performing actions by manipulating the interface from CSS, or JavaScript code being executed from CSS, on security-wise sensitive pages like Special:Preferences and Special:UserLogin. This update removes the separation of CSS and JavaScript module allowance.

 2014-10-04 DSA-3045 qemu - security update

Several vulnerabilities were discovered in qemu, a fast processor emulator:

 2014-10-04 DSA-3044 qemu-kvm - security update

Several vulnerabilities were discovered in qemu-kvm, a full virtualization solution on x86 hardware:

 2014-10-04 DSA-3042 exuberant-ctags - security update

Stefano Zacchiroli discovered a vulnerability in exuberant-ctags, a tool to build tag file indexes of source code definitions: Certain JavaScript files cause ctags to enter an infinite loop until it runs out of disk space, resulting in denial of service.


Debian Wiki   [more] [xml]
 2014-10-31T15:46:02Z Derivatives/Census/xanadu
 2014-10-31T15:35:39Z JesusPalencia
 2014-10-31T15:34:35Z InstallingDebianOn/Samsung/ARMChromebook

Linuxtoday.com   [more] [xml]
 Fri, 31 Oct 2014 19:00:00 -0700 30 Useful Linux Commands for System Administrators

 tecmint: In this article we are going to review some of the useful and frequently used Linux or Unix commands for Linux System Administrators

 Fri, 31 Oct 2014 15:00:00 -0700 What software defined storage means for OpenStack

 opensource.com: Recently, I had the opportunity to speak with Sage Weil, founder and chief architect of Ceph

 Fri, 31 Oct 2014 14:00:00 -0700 Convirture Adds OpenStack Cloud Backup Tool

 The VAR Guy: Convirture Backup, a new backup, restore and disaster recovery tool from Convirture, brings automated backup to OpenStack clouds running on the KVM virtualization hypervisor.


OSNews   [more] [xml]
 Thu, 30 Oct 2014 16:35:31 GMT Try Windows 93 Today
What if Microsoft released an operating system in the chasm between Windows 3.1 and Windows 95? It might look something like Windows 93, an interactive art project by Jankenpopp and Zombectro that you can try right in your browser.
 Thu, 30 Oct 2014 16:33:19 GMT Yosemite Hackintosh with UniBeast and MultiBeast
Those who are eager to try out OS X Yosemite on any compatible Intel-based PC can follow a simple guide to install the same using UniBeast tool. The UniBeast tool creates a bootable installer via downloaded version of OS X Yosemite.
 Thu, 30 Oct 2014 16:31:42 GMT eComStation, OS/2 Warp and WarpStock
The Warpstock annual conference was held on Oct 24 to 26 on St. Louis, Missouri. These conferences are related to the OS/2 and eComStation platform. Currently there are two reviews of the event online at OS2World and at WarpCity2 blog. Between the relevant news there is a new company called "Arca Noae" that will focus on software development for the platform. They are working on ACPI, USB, Network and other drivers for the platform. Additionally Mensys also gave some light why there haven't been activity on the last year. Arca Noae announced driver releases and software subscription products for the users of this platform.

DistroWatch.com: News   [more] [xml]
 2014-11-01T08:01:43+00:00 Development Release: Elive 2.4.0 (Beta)
Samuel Baggen has announced the release of Elive 2.4.0, a new beta of the Debian-based distribution with a customised Enlightenment 17 desktop: "The Elive team is proud to announce the release of the beta version 2.4.0. This new version includes: new Linux kernel 3.16; Reiser4 (stable version) officially....
 2014-11-01T00:52:36+00:00 Distribution Release: Simplicity Linux 14.10
David Purse has announced the release of Simplicity Linux 14.10, a set of Puppy Linux-based distributions with LXDE as the preferred desktop (and now also an experimental edition with KDE): "Simplicity Linux 14.10 is now available for everyone to download. It uses the 3.15.4 kernel. The Netbook....
 2014-10-29T18:00:21+00:00 Distribution Release: Zentyal Server 4.0
José Antonio Calvo has announced the release of Zentyal Server 4.0, a new version of the project's Ubuntu-based distribution designed for small business servers: "The Zentyal development team is proud to announce Zentyal Server 4.0, a new release of the open-source Linux small business server with native Microsoft....

powered by zFeeder

 

 

 

 

Translate to Spanish