10 matches found
Security update for google-guest-agent (important)
openSUSE security update: security update for google-guest-agent ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21069-1 Rating: important References: bsc1243254 bsc1243505 bsc1260264 bsc1266171 bsc1266603 Cross-References: CVE-2026-33186...
SUSE SLES12 Security Update : google-guest-agent (SUSE-SU-2026:2581-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2581-1 advisory. - CVE-2026-39827: Update golang.org/x/crypto dependency bsc1266171. - CVE-2026-39828: Update golang.org/x/crypto dependency...
SUSE-SU-2026:2611-1 Security update for google-osconfig-agent
This update for google-osconfig-agent fixes the following issue - CVE-2026-33186: Update google.golang.org/grpc dependency bsc1260264. - CVE-2026-39821: Update golang.org/x/net/idna dependency bsc1266603. - CVE-2026-39827: Update golang.org/x/crypto dependency bsc1266171. - CVE-2026-39828: Update...
Amazon Linux 2 : amazon-cloudwatch-agent, --advisory ALAS2-2026-3389 (ALAS-2026-3389)
The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300067.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3389 advisory. Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service...
SUSE-SU-2026:2468-1 Security update for amazon-ssm-agent
This update for amazon-ssm-agent fixes the following issues Update to version 3.3.4624.0: - CVE-2025-22869: golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh bsc1239342. - CVE-2025-22870: golang.org/x/net/proxy: proxy bypass using IPv6 zone IDs bsc1238702. ...
Security update for cheat (important)
openSUSE Security Update: Security update for cheat Announcement ID: openSUSE-SU-2026:0205-1 Rating: important References: 1264943 1265539 1266184 1267330 Cross-References: CVE-2026-1229 CVE-2026-39827 CVE-2026-39828 CVE-2026-39829 CVE-2026-39830 CVE-2026-39831 CVE-2026-39832 CVE-2026-39833...
openSUSE 16 Security Update : apptainer (openSUSE-SU-2026:20834-1)
The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20834-1 advisory. Changes in apptainer: - Fix CVE-2026-39827, CVE-2026-39834, CVE-2026-39828, CVE-2026-39829, CVE-2026-39831, CVE-2026-42508, CVE-2026-39833,...
CVE-2026-39831 vulnerabilities
Vulnerabilities for packages: flux-notification-controller, gomplate, pulumi-kubernetes-operator, k8sgpt, witness, minio, crossplane-provider-azure-authorization, tekton-chains, gh, chisel, cilium, kubernetes-dashboard, pulumi-language-dotnet, docker, flux, rancher-machine,...
CVE-2026-39831 vulnerabilities
Vulnerabilities for packages: reports-server, k9s, fulcio, kubescape-server-fips, terragrunt-fips, harbor, knative-serving-fips, act, nfpm, minio, cilium, argocd-image-updater-fips, gatekeeper-fips, jfrog-cli, peerdb-flow, k3s, crossplane-provider-azure-portal,...
CVE-2026-39831 Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
The Verify method for FIDO/U2F security key types [email protected], [email protected] did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior,...