One in five Internet users access the net primarily through their smartphones…….

While Verizon remains mum on challenging any secret U.S. court order that authorizes the mass vacuuming of U.S. and international data, a growing number of technology firms are calling on Congress for greater transparency and data request reporting…….

Mandriva Linux Security Advisory 2013-244 – Davfs2, a filesystem client for WebDAV, calls the function system() insecurely while is setuid root. This might allow a privilege escalation. The updated packages have been patched to correct this issue…….

Ubuntu Security Notice 1978-1 – It was discovered that libKDcraw incorrectly handled photo files. If a user or automated system were tricked into processing a specially crafted photo file, applications linked against libKDcraw could be made to crash, resulting in a denial of service…….

Ubuntu Security Notice 1976-1 – An information leak was discovered in the handling of ICMPv6 Router Advertisement (RA) messages in the Linux kernel’s IPv6 network stack. A remote attacker could exploit this flaw to cause a denial of service (excessive retries and address-generation outage), and consequently obtain sensitive information. Kees Cook discovered flaw in the…

Ubuntu Security Notice 1980-1 – Jonathan Claudius discovered that Vino incorrectly handled closing invalid connections. A remote attacker could use this issue to cause Vino to consume resources, resulting in a denial of service…….

Ubuntu Security Notice 1979-1 – Patrick J Cherry discovered that txt2man contained leftover debugging code that incorrectly created a temporary file. A local attacker could possibly use this issue to overwrite arbitrary files. In the default Ubuntu installation, this should be prevented by the Yama link restrictions…….

Debian Linux Security Advisory 2766-1 – Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation…….

Slackware Security Advisory – New seamonkey packages are available for Slackware 14.0 and -current to fix security issues…….

Debian Linux Security Advisory 2767-1 – Kingcope discovered that the mod_sftp and mod_sftp_pam modules of proftpd, a powerful modular FTP/SFTP/FTPS server, are not properly validating input, before making pool allocations. An attacker can use this flaw to conduct denial of service attacks against the system running proftpd (resource exhaustion)…….