* Patches from Linux, Conectiva, others * Beware latest version of the Minmail virus * Jitux.A worm hits MSN Messenger, and other interesting reading Today’s bug patches and security alerts:Security group warns of hole in Linux kernelComputer security researchers are again warning about a critical vulnerability in the Linux kernel that could be used by malicious hackers to take control of systems using the popular open source operating system. IDG News Service, 01/05/04.https://www.nwfusion.com/news/2004/0105securgroup.html?nl Related patches:Debian: https://www.debian.org/security/2004/dsa-413https://www.debian.org/security/2004/dsa-417EnGarde:https://www.nwfusion.com/go2/0105bug2a.htmlImmunix 7.3 (source code package):https://www.nwfusion.com/go2/0105bug2b.html Slackware:https://www.nwfusion.com/go2/0105bug2c.htmlSuSE:https://www.suse.com/de/security/2004_01_linux_kernel.html Trustix:https://www.nwfusion.com/go2/0105bug2d.html**********Linux vendors patch EtherealTwo vulnerabilities in the Ethereal network monitoring utility could be exploited to cause the application to crash. There’s no word on if the flaws could be used to run code on the affected machine. For more, go to:Conectiva:https://www.nwfusion.com/go2/0105bug2e.htmlDebian:https://www.debian.org/security/2004/dsa-407Red Hat:https://rhn.redhat.com/errata/RHSA-2004-001.html**********Conectiva, Debian patch lftpA buffer overflow vulnerability has been found in the lftp FTP client. The flaw could be exploited when the “ls” or “rels” command is executed on a “specially prepared directory.” An attacker could use this to run arbitrary code on the affected client. For more, go to:Conectiva:https://www.nwfusion.com/go2/0105bug2f.htmlDebian:https://www.debian.org/security/2004/dsa-406**********Debian releases slew of updatesOver the past week Debian has released around a dozen new patches for various applications that run on its platform. Two of the patches can be found above. Here are links to the rest:New screen packages fix group utmp exploit:https://www.debian.org/security/2004/dsa-408New xsok packages fix local group games exploit:https://www.debian.org/security/2003/dsa-405New bind packages fix denial of service:https://www.debian.org/security/2004/dsa-409New mpg321 packages fix format string vulnerability:https://www.debian.org/security/2004/dsa-411New nd packages fix buffer overflows:https://www.debian.org/security/2004/dsa-412New libnids packages fix buffer overflow:https://www.debian.org/security/2004/dsa-410New fsp packages fix buffer overflow, directory traversal:https://www.debian.org/security/2004/dsa-416New jabber packages fix denial of service:https://www.debian.org/security/2004/dsa-414New zebra packages fix denial of service:https://www.debian.org/security/2004/dsa-415**********Today’s roundup of virus alerts:Troj/Dloader-K – A Trojan horse that attempts to download new components from a remote Web site. (Sophos)Bookmark.B – This virus overwrites the Favorites in Internet Explorer with adult Web sites. (Panda Software)Autodes – A joke virus that makes the user think the computer is going to self-destruct after 10 seconds. Another message appears letting the user in the gag. (Panda Software)Troj/StartPg-BG – This virus alters the Internet Explorer start page and uses stylesheets to redirect users to adult Web sites. (Sophos)W32/Randon-AB – Another virus that attempts to spread via weakly protected network shares. This virus drops several executable files on the infected machine. (Sophos)Troj/Uproot-A – A backdoor Trojan that allows a remote user access to the infected machine. (Sophos)W32/Mimail-N – The latest version of the Mimail virus disguises itself as a Paypal credit card message. It asks the user for their credit card information and sends it to a remote Web site. (Sophos)W32/Mimail-M – Another version of the Mimail virus that spreads via an e-mail message that claims to have pornographic pictures attached. (Sophos)VBS/Suzer-B – A Trojan horse that’s used to drop another virus (Troj/Cidra-A) on the infected machine. (Sophos)Troj/Antikl-Dam – A virus that spreads via e-mail and pretends to be security software from a financial institution. Fortunately, the virus is broken. (Sophos)W32/Agobot-BT – A virus that provided remote access to the infected via IRC. It spreads between computers via weakly protected network shares and attempts to exploit the DCOM RPC vulnerability in Windows. (Sophos)**********From the interesting reading department:Overview of Office Features That Are Intended to Enable Collaboration and That Are Not Intended to Increase SecurityMicrosoft Office products include features that enable specific collaboration scenarios and features that are designed to help make your documents and files more secure. Features that enable collaboration scenarios function correctly in collaboration environments that do not include users who have malicious intent. Microsoft Knowledge Base.https://support.microsoft.com/default.aspx?scid=kb;EN-US;822924Jitux.A worm hits MSN MessengerA worm targeting users of Microsoft’s MSN Messenger software has squirmed through the instant messaging (IM) application. IDG News Service, 01/05/04.https://www.nwfusion.com/news/2004/0105jituxworm.html?nlAOL adds spyware protectionAn upcoming software release from America Online will add spyware protection to the list of standard features for its broadband and dial-up Internet customers, the company said Tuesday. IDG News Service, 01/06/04.https://www.nwfusion.com/news/2004/0106aoladds.html?nl Related content how-to Doing tricks on the Linux command line Linux tricks can make even the more complicated Linux commands easier, more fun and more rewarding. By Sandra Henry-Stocker Dec 08, 2023 5 mins Linux news TSMC bets on AI chips for revival of growth in semiconductor demand Executives at the chip manufacturer are still optimistic about the revenue potential of AI, as Nvidia and its partners say new GPUs have a lead time of up to 52 weeks. By Sam Reynolds Dec 08, 2023 3 mins CPUs and Processors Technology Industry news End of road for VMware’s end-user computing and security units: Broadcom Broadcom is refocusing VMWare on creating private and hybrid cloud environments for large enterprises and divesting its non-core assets. By Sam Reynolds Dec 08, 2023 3 mins Mergers and Acquisitions news analysis IBM cloud service aims to deliver secure, multicloud connectivity IBM Hybrid Cloud Mesh is a multicloud networking service that includes IT discovery, security, monitoring and traffic-engineering capabilities. By Michael Cooney Dec 07, 2023 3 mins Network Security Network Security Network Security Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe