14 matches found
OESA-2026-2819 gnome-tour security update
A guided tour and greeter for GNOME.Tour uses by default the logo of the distribution based on the info from /etc/os-release. The application comes with a feature to replace the logo with a welcome video shipped by the distribution. Security Fixes: slab is a pre-allocated storage for a uniform da...
git-cliff-2.12.0-1.1 on GA media (moderate)
git-cliff-2.12.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10496-1 Rating: moderate Cross-References: CVE-2025-55159 CVSS scores: CVE-2025-55159 SUSE : 5.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H CVE-2025-55159 SUSE : 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:L/VI:L/VA:H/SC:N/SI:N/SA:...
CVE-2025-55159 affecting package rust for versions less than 1.90.0-4
CVE-2025-55159 affecting package rust for versions less than 1.90.0-4. A patched version of the package is available...
SUSE: Security Advisory (SUSE-SU-2025:20921-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for aws-efs-utils
This update for aws-efs-utils fixes the following issues: Update to version 2.3.3 bsc1240044. Security issues fixed: CVE-2025-55159: slab: incorrect bounds check in getdisjointmut function can lead to potential crash due to out-of-bounds access bsc1248055. CVE-2020-35881: traitobject: log4rs:...
SUSE-SU-2025:3954-1 Security update for aws-efs-utils
This update for aws-efs-utils fixes the following issues: Update to version 2.3.3 bsc1240044. Security issues fixed: - CVE-2025-55159: slab: incorrect bounds check in getdisjointmut function can lead to potential crash due to out-of-bounds access bsc1248055. - CVE-2020-35881: traitobject: log4rs:...
Fedora 41 : rust-slab (2025-92719fd556)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-92719fd556 advisory. Update to version 0.4.11. This version includes a fix for CVE-2025-55159, but there are zero packages in Fedora or EPEL that use the affected API, so no...
SUSE-SU-2025:02962-1 Security update for rust-keylime
This update for rust-keylime fixes the following issues: - Update slab to version 0.4.11: CVE-2025-55159: Fixed incorrect bounds check in getdisjointmut function bsc1248006 - Update to version 0.2.8+12: builddeps: bump actions/checkout from 4 to 5 builddeps: bump cfg-if from 1.0.0 to 1.0.1...
aws-efs-utils-2.3.3-1.1 on GA media (moderate)
aws-efs-utils-2.3.3-1.1 on GA media Announcement ID: openSUSE-SU-2025:15462-1 Rating: moderate Cross-References: CVE-2025-55159 CVSS scores: CVE-2025-55159 SUSE : 5.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H CVE-2025-55159 SUSE : 5.8...
CVE-2025-55159
A flaw was found in slab. The getdisjointmut method incorrectly validates index boundaries against the slab's capacity rather than its length, enabling a local attacker to access uninitialized memory. This memory access occurs when requesting disjoint mutable references within the slab...
CVE-2025-55159 vulnerabilities
Vulnerabilities for packages: uv, efs-utils, mdbook, linkerd2-proxy, zola, shadowsocks-rust, linkerd-extension-init, linkerd2, buck2, pixi...
CVE-2025-55159 vulnerabilities
Vulnerabilities for packages: uv, buck2, linkerd2-proxy, linkerd-extension-init, pixi, zola, shadowsocks-rust, linkerd2, mdbook, jujutsu, efs-utils...
AZL-74897 CVE-2025-55159 affecting package rust 1.90.0-3
slab is a pre-allocated storage for a uniform data type. In version 0.4.10, the getdisjointmut method incorrectly checked if indices were within the slab's capacity instead of its length, allowing access to uninitialized memory. This could lead to undefined behavior or potential crashes. This has...
CVE-2025-55159
slab is a pre-allocated storage for a uniform data type. In version 0.4.10, the getdisjointmut method incorrectly checked if indices were within the slab's capacity instead of its length, allowing access to uninitialized memory. This could lead to undefined behavior or potential crashes. This has...