(Mar 15) Typo3, a PHP-based content management system, was found vulnerable to several vulnerabilities. CVE-2013-1842 [More…]
Comment
(Mar 18) pam-xdg-support could be made to run programs as an administrator.
(Mar 18) Several security issues were fixed in the kernel.
(Mar 17) The recent security update for libvirt was found to cause a regression. The kvm/qemu processes weren’t run as the `kvm` user anymore in order to fix the file/device ownership changes, but the processes where not correctly configured to use the `kvm` group either. When the user would [More…]
(Mar 15) Bastian Blank discovered that libvirtd, a daemon for management of virtual machines, network and storage, would change ownership of devices files so they would be owned by user `libvirt-qemu` and group `kvm`, which is a general purpose group not specific to libvirt, allowing unintended write access to [More…]