Here is a roundup of last week's Linux security updates for Arch Linux, Debian GNU/Linux, Fedora Linux, Red Hat Enterprise Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
IPFire 2.29 - Core Update 193 is now available for testing, introducing support for Post-Quantum Cryptography in IPsec tunnels, a new toolchain, along with various bug fixes and security enhancements. IPsec tunnels now facilitate key exchanges utilizing the post-quantum Module-Lattice-Based Key-Encapsulation Mechanism (ML-KEM), which is considered secure against threats posed by adversaries with access to quantum computing technology. This decision guarantees the utilization of modern cryptography whenever possible, while ensuring that IPFire maintains compatibility with legacy solutions from various vendors.
The standard configuration for new tunnels has been revised to incorporate AES-256 in either GCM or CBC mode, or ChaCha20-Poly1305 as the default option. The toolchain update incorporates security fixes for INTEL-SA-01166, INTEL-SA-01213, INTEL-SA-01139, INTEL-SA-01228, and INTEL-SA-01194. Furthermore, a resolution has been implemented for the issue concerning the incorrect serial number, along with enhancements to the visual design of the Firewall Groups page. The update encompasses enhancements to significant components of the distribution, including Apache, autoconf, BIND, binutils, and additional add-ons.
Here is a roundup of last week's Linux security updates for Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
IPFire 2.29 - Core Update 192 has been released and comes with a significant kernel update to Linux 6.12, incorporating enhanced speed for compression and decompression with the DELFATE algorithm, along with various minor bug and security fixes. The kernel update transitions the IPFire kernel to Linux 6.12, enabling Intel and AMD CPUs that support VAES and AVX-512 to achieve a 162% increase in AES-GCM encryption and decryption speed, thereby enhancing IPsec throughput. Optimizing memory alignment has enhanced TCP performance by as much as 40% through the use of smaller structures. Support for TCP fraglist GRO has been implemented, enabling the chaining of multiple TCP packets, which enhances throughput for PPPoE connections on systems that do not have basic checksum offloading capabilities. Support for new drivers has been introduced and expanded for a range of network devices, including rtl8192du.
Collectd 5, the service responsible for gathering statistics about the IPFire operating system, has been upgraded to version 5.12.0, introducing various bug fixes and enhancements. zlib-ng, a fork that enhances the legacy DEFLATE zlib compression library, has received updates aimed at boosting performance and efficiency. The miscellaneous packages encompass Rust, CLAMAV, dnsdist, fetchmail, FRR, mympd, nano, Postfix, QEMU and QEMU Guest Agent, Samba, strace, tshark, speedtest-cli, and CUPS.
Collectd 5, the service responsible for gathering statistics about the IPFire operating system, has been upgraded to version 5.12.0, introducing various bug fixes and enhancements. zlib-ng, a fork that enhances the legacy DEFLATE zlib compression library, has received updates aimed at boosting performance and efficiency. The miscellaneous packages encompass Rust, CLAMAV, dnsdist, fetchmail, FRR, mympd, nano, Postfix, QEMU and QEMU Guest Agent, Samba, strace, tshark, speedtest-cli, and CUPS.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
ConfigServer Services has announced the release of CSF 14.24, a comprehensive set of scripts that provide a strong firewall, login/intrusion detection, and security application for Linux servers. The package includes a simple SPI iptables firewall script, a daemon process that monitors for login authentication failures across many apps, and custom login failures with distinct log files and regular expression matching. It also has UI interaction for cPanel, DirectAdmin, and Webmin, making it simple to upgrade between versions.
The new CSF 14.24 update has fixed a regression bug in v14.23, modifying the UI HTTP header checks to be case agnostic.
ConfigServer Services has announced the release of CSF v14.23, a Stateful Packet Inspection (SPI) firewall, along with Login/Intrusion Detection and Security applications designed for Linux servers. The collection of scripts features a straightforward SPI iptables firewall script, a daemon process that monitors login authentication failures across various applications, and a user interface integration for cPanel, DirectAdmin, and Webmin.
The update features updated Apache regexes for identifying remote or client IP triggers, case-insensitive UI HTTP header validations, and enhancements to CC list string sanitation.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
IPFire 2.29 - Core Update 192 is now available for testing, introducing a new kernel based on Linux 6.12, collectd 5, enhanced compression and decompression for the DELFATE algorithm, along with various minor bug and security fixes. The kernel release presents notable enhancements, including accelerated AES-GCM encryption and decryption for Intel and AMD CPUs equipped with VAES and AVX-512, memory alignment optimization that can boost TCP performance by up to 40%, support for TCP fraglist GRO, and scheduling enhancements for improved responsiveness to load spikes. Support for new drivers has been added and expanded for a range of network devices.
The add-ons consist of CLAMAV 1.4.2, dnsdist 1.9.8, fetchmail 6.5.2, FRR 10.2.1, mympd 19.0.2, nano 8.3, Postfix 3.9.1, and QEMU. Guest Agent 9.2.0, Samba 4.21.3, strace 6.12, tshark 4.4.3, speedtest-cli, CUPS Filters, CUPS PDF, Foomatic, Gutenprint, HP and EPSON Inkjet Printer drivers, along with auxiliary libraries such as libcms2, libtiff, openjpg, poppler, and QPDF.
The add-ons consist of CLAMAV 1.4.2, dnsdist 1.9.8, fetchmail 6.5.2, FRR 10.2.1, mympd 19.0.2, nano 8.3, Postfix 3.9.1, and QEMU. Guest Agent 9.2.0, Samba 4.21.3, strace 6.12, tshark 4.4.3, speedtest-cli, CUPS Filters, CUPS PDF, Foomatic, Gutenprint, HP and EPSON Inkjet Printer drivers, along with auxiliary libraries such as libcms2, libtiff, openjpg, poppler, and QPDF.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, Arch Linux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, SUSE Linux, and Ubuntu Linux.
IPFire 2.29 Core Update 191 has been released, which includes a variety of package updates that will ensure that your firewall is always up to date and that IPFire remains the most contemporary Linux operating system.
A number of minor bug fixes and preparations for more significant improvements in the coming months are included in this version. Among the modifications is the elimination of the Feodo Tracker Aggressive and Feodo IP lists. These lists contain all of the IP addresses that have been identified as being a part of a botnet or as having been identified as being a part of a botnet within the previous thirty days. Bugs have been fixed in the list of open connections, and the French translation on the page that displays the settings for the firewall has been updated.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
This is the first Linux security roundup of the year, featuring updates for Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, and SUSE Linux.
IPFire 2.29 - Core Update 191 is now available for testing, featuring a range of package updates to ensure your firewall remains current and IPFire continues to represent a modern Linux operating system. The update encompasses minor bug fixes and foundational work for more significant changes. The IPFire development team values your feedback and input. Modifications encompass the removal of the Feodo Tracker Aggressive and Feodo IP lists, rectification of bug issues in open connection lists, enhancement of the French translation for firewall options, and resolution of a backup issue.
