A serious vulnerability in runc open-source container management has been discovered and patched. runc is used by most of the underlying container engines and runtime, such as Docker, cri-o, containerd, and Kubernetes.
A security researcher has disclosed a severe remote code execution bug in open source software versions of LibreOffice and Apache OpenOffice. One of the two have been patched, the other still vulnerable.
libssh issued an important security and maintenance release earlier this week to address a critical authentication bypass vulnerability (CVE-2018-10933).
Red Hat released security guidance that addresses recent Distributed Denial of Service (DDoS) amplification attacks being performed by attackers who are exploiting vulnerable memcached systems exposed to the internet.