41 matches found
SUSE SLES16 Security Update : cargo-c (SUSE-SU-2026:20096-1)
The remote SUSE Linux SLES16 / SLESSAP16 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:20096-1 advisory. - CVE-2025-4574: crossbeam-channel: Fixed double-free on drop in Channel::discardallmessages bsc1243179 - CVE-2025-58160:...
CVE-2025-4574 vulnerabilities
Vulnerabilities for packages: wasmcloud, samply, oxipng, ztunnel-fips, nushell, ruff, yara-x, zed, lychee, rust-analyzer, fd, deno, cargo-c, pixi, starship, yazi, oranda, wadm, cargo-audit, ztunnel...
Security Bulletin: IBM Edge Data Collector uses crossbeam-channel-0.5.14.crate which is vulnerable to CVE-2025-4574.
Summary IBM Edge Data Collector uses crossbeam-channel-0.5.14.crate which is vulnerable to CVE-2025-4574. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2025-4574 DESCRIPTION: In crossbeam-channel rust crate, the internal Channel type's...
Fedora: Security Advisory (FEDORA-2025-df23dd806a)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-57f7169b9d)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
cargo-audit-0.21.2~git0.18e58c2-2.1 on GA media (moderate)
cargo-audit-0.21.2git0.18e58c2-2.1 on GA media Announcement ID: openSUSE-SU-2025:15550-1 Rating: moderate Cross-References: CVE-2024-12224 CVE-2025-4574 CVE-2025-58160 CVSS scores: CVE-2024-12224 SUSE : 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N CVE-2024-12224 SUSE : 2.1...
CVE-2025-4574 affecting package kata-containers for versions less than 3.18.0.kata0-1
CVE-2025-4574 affecting package kata-containers for versions less than 3.18.0.kata0-1. An upgraded version of the package is available that resolves this issue...
CBL Mariner 2.0 Security Update: azl-compliance / rust (CVE-2025-4574)
The version of azl-compliance / rust installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-4574 advisory. - In crossbeam-channel rust crate, the internal Channel type's Drop method has a race condition...
Azure Linux 3.0 Security Update: azl-compliance / rust (CVE-2025-4574)
The version of azl-compliance / rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-4574 advisory. - In crossbeam-channel rust crate, the internal Channel type's Drop method has a race condition...
CVE-2025-4574 affecting package rust for versions less than 1.86.0-3
CVE-2025-4574 affecting package rust for versions less than 1.86.0-3. A patched version of the package is available...
CVE-2025-4574 affecting package rust for versions less than 1.75.0-16
CVE-2025-4574 affecting package rust for versions less than 1.75.0-16. A patched version of the package is available...
CVE-2025-4574 affecting package azl-compliance for versions less than 1.0.2-2
CVE-2025-4574 affecting package azl-compliance for versions less than 1.0.2-2. A patched version of the package is available...
Fedora 41 : atuin / awatcher / gotify-desktop / keylime-agent-rust / etc (2025-297c7ac7fe)
The remote Fedora 41 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-297c7ac7fe advisory. Rebuild applications to apply two recent security updates: - build with idna 1.0.0+ to address CVE-2024-12224 idna accepts Punycode labels that do n...
Fedora: Security Advisory (FEDORA-2025-297c7ac7fe)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 42 : atuin / awatcher / gotify-desktop / mirrorlist-server (2025-8a18a5a077)
The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-8a18a5a077 advisory. Rebuild applications to apply two recent security updates: - build with idna 1.0.0+ to address CVE-2024-12224 idna accepts Punycode labels that do n...
Fedora 42 : rust-git-interactive-rebase-tool (2025-da9b58be96)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-da9b58be96 advisory. Rebuild for CVE-2024-12224, CVE-2025-4574 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note tha...
Fedora: Security Advisory (FEDORA-2025-26640e9e35)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 43 : atuin / awatcher / gotify-desktop / mirrorlist-server (2025-9f8cbb5e03)
The remote Fedora 43 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-9f8cbb5e03 advisory. Rebuild applications to apply two recent security updates: - build with idna 1.0.0+ to address CVE-2024-12224 idna accepts Punycode labels that do n...
Fedora: Security Advisory (FEDORA-2025-c53905e83d)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 42 : ruff / rust-hashlink / rust-rusqlite (2025-04894ce9bd)
The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-04894ce9bd advisory. Security update for CVE-2025-4574, GHSA-pg9f-39pc-qf8g: by rebuilding ruff, we ensure that it uses version 0.5.15 of the crossbeam-channel crate library. ---...