Hello and welcome to Linux Security Weekly for November 18, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week.
Show Notes:
News
PHP 5.5.0 Alpha1 released
http://www.php.net/index.php#id2012-11-15-1
FreeBSD security incident
http://www.freebsd.org/news/2012-compromise.html
Drupal 7.17 – maintenance update
http://drupal.org/drupal-7.17-release-notes
Google Chrome announced flash is fully sandboxed on Chrome on all platforms
http://chrome.blogspot.ca/2012/11/securing-flash-player-for-our-mac-users.html
Distro Updates
Red Hat
kernel
http://rhn.redhat.com/errata/RHSA-2012-1445.html
mysql
http://rhn.redhat.com/errata/RHSA-2012-1462.html
ibm java
http://rhn.redhat.com/errata/RHSA-2012-1467.html
http://rhn.redhat.com/errata/RHSA-2012-1466.html
http://rhn.redhat.com/errata/RHSA-2012-1465.html
Ubuntu
libproxy
http://www.ubuntu.com/usn/usn-1629-1/
libav
http://www.ubuntu.com/usn/usn-1630-1/
libtiff
http://www.ubuntu.com/usn/usn-1631-1/
django
http://www.ubuntu.com/usn/usn-1632-1/
Debian
typo3
http://www.debian.org/security/2012/dsa-2574
Extras
Adobe’s connectusers.com breach
http://connectusers.com/
http://www.theregister.co.uk/2012/11/16/adobe_forum_breach/
http://www.darkreading.com/blog/240134996/adobe-hacker-says-he-used-sql-injection-to-grab-database-of-150-000-user-accounts.html
