On March 21st, the openssh package was updated to patch two moderate vulnerabilities; CVE-2015-5600 and CVE-2016-3115.
Continue Reading…


If you’re running a nameserver using BIND, you likely want to update before someone zeros in on you causing named to crash.
Continue Reading…


Today, a co-worker alerted me to the ‘drown attack’. DROWN is an acronym for “Decrypting RSA with Obsolete and Weakened eNcryption”. While it’s a spin on an older vulnerability, it also builds upon it. This has been declared CVE-2016-0800.
Continue Reading…


On Feb 16th, Google and Red Hat announced a critical glibc stack-based buffer overflow bug. Here’s how you can patch it on Red Hat (RHEL), CentOS, etc..
Continue Reading…

Back on Jan 19th there was a lot of hoopla about the kernel vulnerability that is CVE-2016-0728. Updating your CentOS 7 kernel won’t be difficult – here are some tips. Continue Reading…