11 matches found
Security update for docker-stable
This update for docker-stable fixes the following issues CVE-2026-33747: github.com/moby/buildkit: malicious frontends can craft API messages that cause files to be written outside of the BuildKit state directory bsc1260967. CVE-2026-33748: github.com/moby/buildkit: insufficient validation of Git...
Fedora 45 : docker-compose (2026-f5bc7ff320)
The remote Fedora 45 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-f5bc7ff320 advisory. Automatic update for docker-compose-5.1.3-1.fc45. Changelog Wed Apr 15 2026 Bradley G Smith - 5.1.3-1 - Update to release v5.1.3 - Resolves...
openSUSE 16 Security Update : trivy (openSUSE-SU-2026:20702-1)
The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20702-1 advisory. Changes in trivy: - Update to version 0.70.0 bsc1260193, CVE-2026-33186, bsc1260971, CVE-2026-33747, bsc1261052, CVE-2026-33748, bsc1262389,...
Fedora 42 : doctl (2026-729f84f3b6)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-729f84f3b6 advisory. update to 1.154.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...
Fedora 43 : doctl (2026-6ad76ebb29)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-6ad76ebb29 advisory. update to 1.154.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...
Fedora: Security Advisory (FEDORA-2026-6ad76ebb29)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
conftest-0.67.1-2.1 on GA media (moderate)
conftest-0.67.1-2.1 on GA media Announcement ID: openSUSE-SU-2026:10472-1 Rating: moderate Cross-References: CVE-2026-33747 CVSS scores: CVE-2026-33747 SUSE : 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2026-33747 SUSE : 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N...
tailscale-1.96.4-1.1 on GA media (moderate)
tailscale-1.96.4-1.1 on GA media Announcement ID: openSUSE-SU-2026:10456-1 Rating: moderate Cross-References: CVE-2026-33747 CVSS scores: CVE-2026-33747 SUSE : 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2026-33747 SUSE : 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:...
CVE-2026-33747
creationtimestamp| type| source ---|---|--- 2026-03-27 02:55:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhz4ki53yj2d 2026-03-27 03:18:12+00:00| seen| Telegram/wovzpCQvp7hlTQxwTsDEYFJDESQHFA6mVe176dFHuk85of0 2026-03-28 23:00:56+00:00| seen|...
CVE-2026-33747 BuildKit vulnerable to malicious frontend causing file escape outside of storage root
BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Prior to version 0.28.1, when using a custom BuildKit frontend, the frontend can craft an API message that causes files to be written outside of the BuildKit state directory for...
Linux Distros Unpatched Vulnerability : CVE-2026-33747
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Prior to version 0.28.1, when using a...