More results...
If you haven’t recently updated the Sudo utility on your Linux box(es), you should do so now, to patch two local privilege escalation vulnerabilities (CVE-2025-32462, CVE-2025-32463) that have been disclosed on Monday. What is Sudo? Sudo is comma…
Qualys researchers have unearthed two local privilege escalation vulnerabilities (CVE-2025-6018, CVE-2025-6019) that can be exploited in tandem to achieve root access on most Linux distributions “with minimal effort.” About the vulnerabilit…
Linux Mint Debian Edition 7 “will come with full support for OEM installations,” according to their monthly newsletter, so Linux Mint “can be pre-installed on computers which are sold throughout the World. It’s a very important feature and it’s one of …
They create a dedicated desktop icon for your favorite web-based application — a simplified browser that opens to that single URL. Yet while Linux usually offers the same functionality as other operating systems, “Peppermint OS’s Ice and its succ…
Curl v8.4.0 is out, and fixes – among other things – a high-severity SOCKS5 heap buffer overflow vulnerability (CVE-2023-38545). Appropriate patches for some older curl versions have been released, too. Preparation for the security updates …
If you’re running GNOME on you Linux system(s), you are probably open to remote code execution attacks via a booby-trapped file, thanks to a memory corruption vulnerability (CVE-2023-43641) in the libcue library. About CVE-2023-43641 Discovered b…
Thursday ZDNet reported…
As security holes go, CVE-2023-4911, aka “Looney Tunables,” isn’t horrid. It has a Common Vulnerability Scoring System score of 7.8, which is ranked as important, not critical.
On the other hand, this GNU C Library’s (glib…
A vulnerability (CVE-2023-4911) in the GNU C Library (aka “glibc”) can be exploited by attackers to gain root privileges on many popular Linux distributions, according to Qualys researchers. About CVE-2023-4911 Dubbed “Looney Tunables…
The Chrome zero-day exploited in the wild and patched by Google a few weeks ago has a new ID (CVE-2023-5129) and a description that tells the whole story: the vulnerability is not in Chrome, but the libwebp library, which is used by many popular applic…
This week saw the public beta-testing release of “Linux Mint Debian Edition”. Besides listing download locations, its release notes also list out the project’s three goals:
– Ensure Linux Mint would be able to continue to deliver the same user experie…