CVE-2026-4428

The CVE relates to AWS-LC CRL distribution point validation logic before 1.71.0. A logic error caused partitioned CRLs to be incorrectly rejected as out of scope, enabling a revoked certificate to bypass revocation checks. Affected software is AWS-LC prior to 1.71.0; the issue is fixed in AWS-LC ...

GHSA-8Q2W-WR49-WHQJ vulnerabilities

Vulnerabilities for packages: traefik-fips, traefik...

GHSA-46WH-PXPV-Q5GQ vulnerabilities

Vulnerabilities for packages: kibana, langfuse-fips, opensearch-dashboards-fips, opensearch-dashboards, langfuse...

USN-8059-7: Linux kernel (AWS FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - SMB network file system; CVE-2025-22037, CVE-2025-37899...

CVE-2025-3950 vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce, gitlab-rails-ce-fips, gitlab-workhorse-ce, gitlab-workhorse-ce-fips...

RHSA-2026:0794 Red Hat Security Advisory: openssl and openssl-fips-provider security update

Bulletin has no description...

GHSA-V9H3-MQGC-W575 vulnerabilities

Vulnerabilities for packages: gitlab-operator-fips...

GHSA-3P78-2X5R-GJPP vulnerabilities

Vulnerabilities for packages: gitlab-operator-fips...

GHSA-475M-QJ5V-HVQ3 vulnerabilities

Vulnerabilities for packages: gitlab-operator-fips...

GHSA-6V4W-CQRG-XV3G vulnerabilities

Vulnerabilities for packages: gitlab-operator-fips...

CLSA-2025-1762512792 Update of kernel

Rebased FIPS patches to 5.14.0-570.60.1...

CLSA-2025-1762198875 Update of kernel

Rebased FIPS patches to 5.14.0-570.58.1...

EUVD-2025-35896

Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All API modules, Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All API modules allows Excessive Allocation. This vulnerability is associated wi...

CVE-2025-12194

Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All API modules, Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All API modules allows Excessive Allocation. This vulnerability is associated wi...

PT-2025-43686

Name of the Vulnerable Software and Affected Versions Bouncy Castle for Java FIPS versions 2.1.0 through 2.1.1 Bouncy Castle for Java LTS versions 2.73.0 through 2.73.7 Description An uncontrolled resource consumption issue exists in Bouncy Castle for Java FIPS and Bouncy Castle for Java LTS. The...

Bouncy Castle Java 安全漏洞

Bouncy Castle Java is a cryptographic algorithm program open-sourced by Legion of the Bouncy Castle Inc. A security vulnerability exists in Bouncy Castle Java FIPS version 2.1.0 through 2.1.1 and LTS version 2.73.0 through 2.73.7, which stems from uncontrolled consumption of resources that could...

CLSA-2025-1759223618 Update of kernel

Rebased FIPS patches to 5.14.0-570.46.1...

CLSA-2025-1758295568 Update of kernel

Rebased FIPS patches to 5.14.0-570.44.1...

GHSA-V8G6-HVF8-9CWQ vulnerabilities

Vulnerabilities for packages: gitlab-runner-fips, gitlab-runner...

GHSA-QJH3-4J3H-VMWP vulnerabilities

Vulnerabilities for packages: flux, kyverno-fips, kyverno, flux-fips...