Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix invalid derefence of sblvbptr CVE-2022-50516 In the Linux kernel, the following vulnerability has been resolved: ext4: fix possible double unlock when moving a directory CVE-2023-53626 Affected...

Medium: tomcat

Issue Overview: Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage...

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2025-110 (ALASKERNEL-5.10-2025-110)

The version of kernel installed on the remote host is prior to 5.10.245-241.978. It is, therefore, affected by a vulnerability as referenced in the ALAS2KERNEL-5.10-2025-110 advisory. In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix invalid derefence of sblvbptr...

Important: runfinch-finch

Issue Overview: net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed withi...

Important: amazon-ecr-credential-helper

Issue Overview: net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed withi...

Important: amazon-ecr-credential-helper

Issue Overview: net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed withi...

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2025-114 (ALASKERNEL-5.4-2025-114)

The version of kernel installed on the remote host is prior to 5.4.301-221.445. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-114 advisory. In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix invalid derefence of...

Amazon Linux 2 : gimp, --advisory ALAS2GIMP-2025-009 (ALASGIMP-2025-009)

The version of gimp installed on the remote host is prior to 2.8.22-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2GIMP-2025-009 advisory. GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers t...

Amazon Linux 2023 : nvidia-modprobe (ALAS2023NVIDIA-2025-244)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-244 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Amazon Linux 2023 : nvidia-libXNVCtrl, nvidia-libXNVCtrl-devel, nvidia-settings (ALAS2023NVIDIA-2025-245)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-245 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Amazon Linux 2023 : nvidia, nvidia-fabric-manager (ALAS2023NVIDIA-2025-248)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-248 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Amazon Linux 2 : runc, --advisory ALAS2DOCKER-2025-078 (ALASDOCKER-2025-078)

The version of runc installed on the remote host is prior to 1.3.2-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2DOCKER-2025-078 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

Amazon Linux 2 : runc, --advisory ALAS2NITRO-ENCLAVES-2025-072 (ALASNITRO-ENCLAVES-2025-072)

The version of runc installed on the remote host is prior to 1.3.2-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2NITRO-ENCLAVES-2025-072 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

Amazon Linux 2023 : nvidia-kmod-common (ALAS2023NVIDIA-2025-246)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-246 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Amazon Linux 2023 : libnvidia-cfg, libnvidia-fbc, libnvidia-gpucomp (ALAS2023NVIDIA-2025-251)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-251 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Amazon Linux 2023 : nvidia (ALAS2023NVIDIA-2025-247)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-247 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Amazon Linux 2023 : kmod-nvidia-open-dkms (ALAS2023NVIDIA-2025-252)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-252 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Amazon Linux 2023 : libnvsdm (ALAS2023NVIDIA-2025-249)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-249 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Amazon Linux 2023 : nvidia-xconfig (ALAS2023NVIDIA-2025-241)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-241 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Amazon Linux 2023 : cuda-compat-13-0 (ALAS2023NVIDIA-2025-259)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-259 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...