39 matches found
SUSE-SU-2026:2831-1 Security update for rustup
This update for rustup fixes the following issues Security issues: - CVE-2024-12224: idna: idna accepts Punycode labels that do not produce any non-ASCII when decoded bsc1243862. - CVE-2025-58160: tracing-subscriber: Tracing log pollution bsc1249008. - CVE-2026-25727: time: parsing of user-provid...
OESA-2026-2945 rpm-ostree security update
rpm-ostree is a hybrid image/package system. It supports "composing" packages on a build server into an OSTree repository, which can then be replicated by client systems with atomic upgrades. Additionally, unlike many "pure" image systems, with rpm-ostree each client system can layer on additiona...
OESA-2026-2944 rpm-ostree security update
rpm-ostree is a hybrid image/package system. It supports "composing" packages on a build server into an OSTree repository, which can then be replicated by client systems with atomic upgrades. Additionally, unlike many "pure" image systems, with rpm-ostree each client system can layer on additiona...
openSUSE Security Advisory (SUSE-SU-2026:0243-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: gdk-pixbuf-loader-rsvg / gdk-pixbuf-loader-rsvg-32bit / librsvg-2-2 / etc (SUSE-SU-2026:0243-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0243-1 advisory. Update to version 2.57.4 - bsc1243867: - CVE-2024-12224: RUSTSEC-2024-0421 - idna accepts Punycode labels...
SUSE SLES16 Security Update : cargo-c (SUSE-SU-2026:20096-1)
The remote SUSE Linux SLES16 / SLESSAP16 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:20096-1 advisory. - CVE-2025-4574: crossbeam-channel: Fixed double-free on drop in Channel::discardallmessages bsc1243179 - CVE-2025-58160:...
Security update for librsvg
This update for librsvg fixes the following issues: Update to version 2.57.4 - bsc1243867: CVE-2024-12224: RUSTSEC-2024-0421 - idna accepts Punycode labels that do not produce any non-ASCII when decoded. RUSTSEC-2024-0404 - Unsoundness in anstream. Patch Instructions: To install this SUSE update...
SUSE-SU-2025:3786-1 Security update for afterburn
This update for afterburn fixes the following issues: Update to version 5.9.0.git21.a73f509. Security issues fixed: - CVE-2022-24713: regex: no proper complexity limitation when parsing untrusted regular expressions with large repetitions on empty sub-expressions can lead to excessive resource...
Security update for afterburn
This update for afterburn fixes the following issues: Update to version 5.9.0.git21.a73f509. Security issues fixed: CVE-2022-24713: regex: no proper complexity limitation when parsing untrusted regular expressions with large repetitions on empty sub-expressions can lead to excessive resource...
sccache-0.12.0~1-1.1 on GA media (moderate)
sccache-0.12.01-1.1 on GA media Announcement ID: openSUSE-SU-2025:15656-1 Rating: moderate Cross-References: CVE-2024-12224 CVSS scores: CVE-2024-12224 SUSE : 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N CVE-2024-12224 SUSE : 2.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N...
SUSE SLES15 Security Update : sevctl (SUSE-SU-2025:03306-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03306-1 advisory. - CVE-2024-12224: idna: Fixed improper validation of unsafe equivalence in punycode. bsc1243860 - CVE-2025-3416: openssl: Fixed...
SUSE-SU-2025:03298-1 Security update for rustup
This update for rustup fixes the following issues: - CVE-2024-12224: Fixed improper validation of unsafe equivalence in punycode bsc1243862 - CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242617...
cargo-audit-0.21.2~git0.18e58c2-2.1 on GA media (moderate)
cargo-audit-0.21.2git0.18e58c2-2.1 on GA media Announcement ID: openSUSE-SU-2025:15550-1 Rating: moderate Cross-References: CVE-2024-12224 CVE-2025-4574 CVE-2025-58160 CVSS scores: CVE-2024-12224 SUSE : 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N CVE-2024-12224 SUSE : 2.1...
SUSE-SU-2025:02810-1 Security update for rust-keylime
This update for rust-keylime fixes the following issues: - Update to version 0.2.7+141: CVE-2025-58266: shlex: Fixed command injection bsc1247193 - Update to version 0.2.7+117: CVE-2023-26964: rust-keylime: hyper,h2: stream stacking when H2 processing HTTP2 RSTSTREAM frames bsc1210344...
SUSE: Security Advisory (SUSE-SU-2025:02586-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Advisory (SUSE-SU-2025:02586-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2025:02587-1 Security update for sccache
This update for sccache fixes the following issues: - Update to version 0.4.24: - CVE-2024-12224: Fixed improper validation of unsafe equivalence in punycode. bsc1243868...
SUSE-SU-2025:02586-1 Security update for rav1e
This update for rav1e fixes the following issues: - CVE-2024-12224: Fixed improper validation of unsafe equivalence in punycode. bsc1243855...
rustup-1.28.2~0-1.1 on GA media (moderate)
rustup-1.28.20-1.1 on GA media Announcement ID: openSUSE-SU-2025:15353-1 Rating: moderate Cross-References: CVE-2024-12224 CVSS scores: CVE-2024-12224 SUSE : 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N CVE-2024-12224 SUSE : 2.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N...
Fedora 41 : atuin / awatcher / gotify-desktop / keylime-agent-rust / etc (2025-297c7ac7fe)
The remote Fedora 41 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-297c7ac7fe advisory. Rebuild applications to apply two recent security updates: - build with idna 1.0.0+ to address CVE-2024-12224 idna accepts Punycode labels that do n...