Collaborate Disseminate
If you’re running GNOME on you Linux system(s), you are probably open to remote code execution attacks via a booby-trapped file, thanks to a memory corruption vulnerability (CVE-2023-43641) in the libcue library. About CVE-2023-43641 Discovered b… Continue reading GNOME users at risk of RCE attack (CVE-2023-43641)
Thursday ZDNet reported…
As security holes go, CVE-2023-4911, aka “Looney Tunables,” isn’t horrid. It has a Common Vulnerability Scoring System score of 7.8, which is ranked as important, not critical.
On the other hand, this GNU C Library’s (glib… Continue reading Red Hat, Ubuntu, Debian, and Gentoo Release Patches for ‘Looney Tunables’ Linux Vulnerability
A vulnerability (CVE-2023-4911) in the GNU C Library (aka “glibc”) can be exploited by attackers to gain root privileges on many popular Linux distributions, according to Qualys researchers. About CVE-2023-4911 Dubbed “Looney Tunables… Continue reading “Looney Tunables” bug allows root access on Linux distros (CVE-2023-4911)
The Chrome zero-day exploited in the wild and patched by Google a few weeks ago has a new ID (CVE-2023-5129) and a description that tells the whole story: the vulnerability is not in Chrome, but the libwebp library, which is used by many popular applic… Continue reading Google “confirms” that exploited Chrome zero-day is actually in libwebp (CVE-2023-5129)
This week saw the public beta-testing release of “Linux Mint Debian Edition”. Besides listing download locations, its release notes also list out the project’s three goals:
– Ensure Linux Mint would be able to continue to deliver the same user experie… Continue reading ‘Linux Mint Debian Edition’ Begins Public Beta Testing
We have a service running as a container for which there some reported vulnerabilities in OpenSSL. Our service is behind the Application Load Balancer, which ideally should terminate the traffic at the load balancer before decrypting the t… Continue reading Can OpenSSL vulnerabilities be mitigated by Load Balancer service from Cloud Providers
The early history of Linux is a rather murky period to most, long before the era of glitzy marketing and proclamations of ‘the Linux desktop’ being the next hot thing. …read more Continue reading Looking Back On 30 Years of Debian
Debian blog: Over 30 years ago the late Ian Murdock wrote to the comp.os.linux.development newsgroup about the completion of a brand-new Linux release which he named “The Debian Linux Release.” He built the release by hand, from scratch, so to speak. I… Continue reading Debian Turns 30
As time goes on, more and more computer manufacturers are moving towards the ARM architecture and away from the bloated and outdated x86 instruction set. Apple is the most prominent …read more Continue reading Debian Officially Adds RISC-V Support
I have just installed fail2ban on my host.
All documentation I found, including fail2ban’s latest official page, mentions seconds as the time unit to use to ban any given host.
So for example the above page says
bantime | 600 sec | Dur… Continue reading fail2ban – syntax for setting bantime in a unit other than seconds?