Lucene search
K

21 matches found

RedHat Linux
RedHat Linux
added 2026/05/14 1:30 a.m.14 views

Critical: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nginx: nginx-1.30.1-1.hum1 aarch64, x8664 nginx-all-modules-1.30.1-1.hum1 noarch nginx-core-1.30.1-1.hum1 aarch64, x8664 nginx-filesystem-1.30.1-1.hum1 noarch nginx-mod-devel-1.30.1-1.hum1 aarch6...

9.2CVSS6AI score0.61469EPSS
Exploits40References3
OSV
OSV
added 2026/02/26 8:31 p.m.5 views

AZL-78659 CVE-2026-27141 affecting package cri-o 1.30.1-1

Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic...

7.5CVSS7.2AI score0.00501EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 8:14 a.m.7 views

AZL-57289 CVE-2025-22869 affecting package cri-o 1.30.1-1

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...

7.5CVSS6.6AI score0.00868EPSS
Exploits0References1
OSV
OSV
added 2025/01/06 5:15 p.m.5 views

AZL-55067 CVE-2025-21613 affecting package cri-o 1.30.1-1

go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vulnerability could allow an attacker to set arbitrary values to git-upload-pack flags. This only...

9.8CVSS6.8AI score0.01261EPSS
Exploits0References1
OSV
OSV
added 2024/09/03 7:15 p.m.11 views

AZL-48525 CVE-2024-45310 affecting package cri-o 1.30.1-1

runc is a CLI tool for spawning and running containers according to the OCI specification. runc 1.1.13 and earlier, as well as 1.2.0-rc2 and earlier, can be tricked into creating empty files or directories in arbitrary locations in the host filesystem by sharing a volume between two containers an...

3.6CVSS7AI score0.00317EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2024/07/22 3:42 p.m.24 views

CVE-2024-28180 affecting package kubernetes for versions less than 1.30.1-1

CVE-2024-28180 affecting package kubernetes for versions less than 1.30.1-1. A patched version of the package is available...

4.3CVSS7.3AI score0.01956EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/07/22 3:42 p.m.16 views

CVE-2023-45288 affecting package cri-tools for versions less than 1.30.1-1

CVE-2023-45288 affecting package cri-tools for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.8AI score0.91969EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.20 views

CVE-2023-47108 affecting package cri-o for versions less than 1.30.1-1

CVE-2023-47108 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.01592EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.24 views

CVE-2023-49568 affecting package cri-o for versions less than 1.30.1-1

CVE-2023-49568 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.00704EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.34 views

CVE-2023-49569 affecting package cri-o for versions less than 1.30.1-1

CVE-2023-49569 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

9.8CVSS6.9AI score0.01523EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.24 views

CVE-2024-28180 affecting package cri-o for versions less than 1.30.1-1

CVE-2024-28180 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

4.3CVSS7.1AI score0.01956EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.13 views

CVE-2022-2879 affecting package cri-o for versions less than 1.30.1-1

CVE-2022-2879 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.8AI score0.01544EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.25 views

CVE-2023-48795 affecting package kubernetes for versions less than 1.30.1-1

CVE-2023-48795 affecting package kubernetes for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

5.9CVSS6.1AI score0.93305EPSS
Exploits4
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.15 views

CVE-2024-24786 affecting package kubernetes for versions less than 1.30.1-1

CVE-2024-24786 affecting package kubernetes for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.7AI score0.01262EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.28 views

CVE-2024-24786 affecting package cri-o for versions less than 1.30.1-1

CVE-2024-24786 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

6.7AI score0.01262EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.13 views

CVE-2023-45288 affecting package kubernetes for versions less than 1.30.1-1

CVE-2023-45288 affecting package kubernetes for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.91969EPSS
Exploits1
OSV
OSV
added 2024/05/14 3:42 p.m.7 views

AZL-45243 CVE-2024-3727 affecting package cri-o 1.30.1-1

A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks...

8.3CVSS6.6AI score0.01279EPSS
Exploits0References1
OSV
OSV
added 2024/04/22 11:15 p.m.9 views

AZL-40016 CVE-2024-3177 affecting package kubernetes for versions less than 1.30.1-1

A security issue was discovered in Kubernetes where users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using containers, init containers, and ephemeral containers with the envFrom field populated. The policy ensures...

2.7CVSS6.7AI score0.02224EPSS
Exploits1References1
OSV
OSV
added 2024/03/05 11:15 p.m.7 views

AZL-35662 CVE-2024-24786 affecting package kubernetes for versions less than 1.30.1-1

The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set...

7.5CVSS6.6AI score0.01262EPSS
Exploits0References1
OSV
OSV
added 2024/01/31 10:15 p.m.4 views

AZL-34896 CVE-2024-21626 affecting package kubernetes for versions less than 1.30.1-1

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

8.6CVSS6.7AI score0.18087EPSS
Exploits18References1
Rows per page
Query Builder