Lucene search
+L

99 matches found

osv
osv
added 2026/05/06 11:26 p.m.19 views

CLSA-2026-1778109988 toolbox: Fix of 9 CVEs

Rebuild with golang = 1.22.5 to fix CVE-2022-1705, CVE-2022-41717, CVE-2023-29406, CVE-2023-39318, CVE-2023-39319, CVE-2023-39326, CVE-2023-45290, CVE-2024-24785, CVE-2024-24791...

7.5CVSS7.1AI score0.05623EPSS
Exploits1References1
nessus
nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : buildah-1.37.2-1.el9 (AXSA:2024-9390:11)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9390:11 advisory. containers/image: digest type does not guarantee valid type CVE-2024-3727 net/http: Denial of service due to improper 100-continue handling in...

8.3CVSS7.7AI score0.01414EPSS
Exploits0References3
f5
f5
added 2025/07/23 12:55 a.m.12 views

K000152677: Golang net/http vulnerabilities CVE-2023-39326 and CVE-2024-24791

Security Advisory Description CVE-2023-39326 A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes from the network than are in the body. A malicious HTTP client can further exploit this to cause a server to...

7.5CVSS6.7AI score0.01414EPSS
Exploits0
nessus
nessus
added 2025/06/16 12:0 a.m.8 views

TencentOS Server 4: golang (TSSA-2024:0493)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0493 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.8CVSS7.3AI score0.01952EPSS
Exploits0References7
nessus
nessus
added 2025/06/16 12:0 a.m.7 views

TencentOS Server 3: go-toolset:rhel8 (TSSA-2024:0770)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0770 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.4AI score0.01414EPSS
Exploits0References5
nessus
nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: grafana (TSSA-2024:0549)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0549 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.5CVSS7.4AI score0.01414EPSS
Exploits0References2
ibm
ibm
added 2025/06/12 11:11 a.m.7 views

Security Bulletin: Go net/http package is vulnerable to a denial of service,a remote attacker could exploit this vulnerability to cause a denial of service, affects watsonx.data

Summary Go net/http package is vulnerable to a denial of service, caused by improper 100-continue header handling. By sending "Expect: 100-continue" requests, a remote attacker could exploit this vulnerability to cause a denial of service and this could affect watsonx.data. Vulnerability Details...

7.5CVSS9.2AI score0.01414EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/05/30 1:17 p.m.22 views

Security Bulletin: IBM Maximo Application Suite uses axios-1.7.7.tgz, Kubectl-1.22.4 and Websphere Liberty - 24.0.0.11 which is vulnerable to CVE-2025-27152, CVE-2024-47535, CVE-2024-24791, CVE-2024-45336, CVE-2024.

Summary IBM Maximo Application Suite uses axios-1.7.7.tgz, Kubectl-1.22.4 and Websphere Liberty - 24.0.0.11 which is vulnerable to CVE-2025-27152, CVE-2024-47535, CVE-2024-24791, CVE-2024-45336, CVE-2024. . This bulletin contains information regarding the vulnerability and its fixture...

8.7CVSS6.7AI score0.01414EPSS
Exploits2Affected Software1
almalinux
almalinux
added 2025/05/13 12:0 a.m.8 views

Moderate: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: crypto/tls: panic when processing post-handshake message on QUIC connections...

9.8CVSS7.3AI score0.01952EPSS
Exploits0References14
redhat
redhat
added 2025/04/17 4:8 a.m.15 views

Important: Red Hat Security Advisory: OpenShift Virtualization 4.16.7 Images

Red Hat OpenShift Virtualization release 4.16.7 is now available with updates to packages and images that fix several bugs and add enhancements. OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains OpenShift...

7.5CVSS6.8AI score0.01414EPSS
Exploits0References16
osv
osv
added 2025/03/17 8:16 p.m.22 views

RLSA-2024:9135 Moderate: toolbox security update

Toolbox is a tool for Linux operating systems, which allows the use of containerized command line environments. It is built on top of Podman and other standard container technologies from OCI. Security Fixes: golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in...

7.5CVSS7.1AI score0.01414EPSS
Exploits0References5
nessus
nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-24791

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The net/http HTTP/1.1 client mishandled the case where a server responds to a request with an Expect: 100-continue header with a non-informational 200 or higher...

7.5CVSS7.2AI score0.01414EPSS
Exploits0References4
openvas
openvas
added 2025/02/25 12:0 a.m.3 views

openSUSE Security Advisory (SUSE-SU-2024:2309-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.01414EPSS
Exploits0References5
osv
osv
added 2025/01/17 2:8 p.m.5 views

OESA-2025-1058 buildah security update

The package provides a command line tool which can be used to create a working container from scratch or create a working container from an image as a starting point mount/umount a working container's root file system for manipulation save container's root file system layer to create a new image...

7.5CVSS6.8AI score0.01414EPSS
Exploits0References2
redhat
redhat
added 2024/12/03 3:4 p.m.14 views

Moderate: Red Hat Security Advisory: OpenShift Virtualization 4.12.15 Images

Red Hat OpenShift Virtualization release 4.12.15 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which...

7.5CVSS6.8AI score0.01414EPSS
Exploits0References2
openvas
openvas
added 2024/11/26 12:0 a.m.9 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-2921)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.01414EPSS
Exploits0References2
openvas
openvas
added 2024/11/26 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-2927)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.01414EPSS
Exploits0References2
nessus
nessus
added 2024/11/25 12:0 a.m.11 views

RHEL 7 : rhc-worker-script (RHSA-2024:10133)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:10133 advisory. Remote Host Configuration rhc worker for executing scripts on hosts managed by Red Hat Insights. Security Fixes: net/http: Denial of servic...

7.5CVSS7.9AI score0.01414EPSS
Exploits0References7
redhat
redhat
added 2024/11/21 1:11 a.m.14 views

Moderate: Red Hat Security Advisory: rhc-worker-script security update

An update for rhc-worker-script is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.5CVSS7AI score0.01414EPSS
Exploits0References3
nessus
nessus
added 2024/11/19 12:0 a.m.12 views

Oracle Linux 9 : containernetworking-plugins (ELSA-2024-9089)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-9089 advisory. - rebuild for CVE-2024-24791 - rebuild for following CVEs: CVE-2022-41724 CVE-2022-41725 CVE-2023-24538 CVE-2023-24534 CVE-2023-24536 CVE-2022-41723...

9.8CVSS7.2AI score0.04561EPSS
Exploits0References3
Rows per page
Query Builder