scottlinux.com | Linux Blog

Linux Security Weekly | 007 | Hello and welcome to Linux Security Weekly for July 8, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: Thunderbird moves to ESR-only release November 20th, 2012 https://wiki.mozilla.org/Thunderbird/Proposal:_New_Release_and_Governance_Model http://blog.lizardwrangler.com/2012/07/06/thunderbird-stability-and-community-innovation/ Get Thunderbird ESR now: http://www.mozilla.org/en-US/thunderbird/organizations/all-esr.html Asterisk CVE-2012-3863,

Linux Security Weekly | 006 | Hello and welcome to Linux Security Weekly for July 1, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: AIX – sendmail CVE-2012-2200 http://aix.software.ibm.com/aix/efixes/security/sendmail1_advisory.asc https://twitter.com/hdmoore/statuses/218114278291550208 apache tomcat 7.0.28 http://tomcat.apache.org/download-70.cgi http://apache.mirrors.tds.net/tomcat/tomcat-7/v7.0.28/README.html http://apache.mirrors.tds.net/tomcat/tomcat-7/v7.0.28/RELEASE-NOTES wordpress 3.4.1 http://codex.wordpress.org/Version_3.4.1 http://core.trac.wordpress.org/changeset?reponame=&new=21153%40branches%2F3.4&old=21076%40trunk Chrome

Linux Security Weekly | 005 | Hello and welcome to Linux Security Weekly for June 24, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: Red Hat 6.3 released http://www.redhat.com/about/news/archive/2012/6/red-hat-enterprise-linux-63-globally-available http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html-single/6.3_Release_Notes/index.html Multi-factor ssh https://bugzilla.redhat.com/show_bug.cgi?id=657378 https://bugzilla.mindrot.org/show_bug.cgi?id=983 Cisco AnyConnect VPN client security update: Mac,

Linux Security Weekly | 004 | Hello and welcome to Linux Security Weekly for June 17, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: mysql CVE-2012-2122 http://security-tracker.debian.org/tracker/CVE-2012-2122 https://community.rapid7.com/community/metasploit/blog/2012/06/11/cve-2012-2122-a-tragically-comedic-security-flaw-in-mysql https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-2122 http://www.ubuntu.com/usn/usn-1467-1/ http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=677018 java – 14 CVEs http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html http://rhn.redhat.com/errata/RHSA-2012-0734.html http://rhn.redhat.com/errata/RHSA-2012-0729.html http://rhn.redhat.com/errata/RHSA-2012-0730.html Ruby on

Linux Security Weekly | 003 | Hello and welcome to Linux Security Weekly for June 10, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: Firefox 13 http://www.mozilla.org/en-US/firefox/13.0/releasenotes/buglist.html https://www.mozilla.org/security/announce/ http://www.ubuntu.com/usn/usn-1463-1/ http://www.debian.org/security/2012/dsa-2488 http://rhn.redhat.com/errata/RHSA-2012-0710.html http://rhn.redhat.com/errata/RHSA-2012-0715.html Firefox ESR http://www.mozilla.org/en-US/firefox/organizations/ http://www.mozilla.org/en-US/firefox/10.0.5/releasenotes/ BIND http://www.isc.org/software/bind/advisories/cve-2012-1667 http://www.isc.org/software/bind/advisories/cve-2012-1033 https://access.redhat.com/security/cve/CVE-2012-1667 http://www.ubuntu.com/usn/usn-1462-1/

Linux Security Weekly | 002 | Hello and welcome to Linux Security Weekly for June 03, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: Ruby on Rails SQL Injection vuln – CVE-2012-2661 http://seclists.org/oss-sec/2012/q2/448 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2661 http://blog.pentesterlab.com/2012/06/cve-2012-2661-exploitation-write-up.html Debian stable – not affected. Sid

Linux Security Weekly | 001 | Hello and welcome to Linux Security Weekly for May 27, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: Skype http://blogs.skype.com/garage/2012/05/skype_22_for_linux_hotfix.html http://www.skype.com/intl/en-us/get-skype/on-your-computer/linux Wireshark http://www.wireshark.org/news/20120522.html Google Chrome http://googlechromereleases.blogspot.co.uk/2012/05/stable-channel-update_23.html Debian http://www.debian.org/News/2012/20120512 sudo CVE-2012-2337 http://www.sudo.ws/sudo/alerts/netmask.html http://www.debian.org/security/2012/dsa-2478 http://www.ubuntu.com/usn/usn-1442-1/ https://bugzilla.redhat.com/show_bug.cgi?id=820677 openssl