Bug in GnuTLS library discovered – allows attackers to bypass SSL trivially – update your GnuTLS now!

What is the GnuTLS bug? Red Hat has discovered a bug in the GnuTLS (GNU Transport Layer Security) package that may allow attackers to trivially bypass SSL (CVE-2014-0092). RHEL, CentOS, Debian and other popular Linux distributions are susceptible to potential eavesdropping due to this bug. What version of GnuTLS is affected? At this ... Read More...

Kernel Update to Resolve CVE-2013-2094 Released

There is a publicly available exploit for a local user to gain root privileges. SELinux does not prevent this. More details regarding the bug can be found here: https://bugzilla.redhat.com/show_bug.cgi?id=962792 A kernel update is available to resolve this issue (2.6.32-358.6.2.el6). To update your system, run the following command: You will need to restart your ... Read More...