Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2026/06/25 5:32 p.m.6 views

net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

A flaw was found in the net/textproto package in Golang. When functions in this package return errors, they include their input as part of the error message. An attacker could exploit this by injecting misleading content into these error messages, which are then printed or logged. This could lead...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References8
OSV
OSV
added 2026/05/21 4:24 p.m.16 views

RLSA-2026:1380 Moderate: osbuild-composer security update

A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients. Security Fixes: golang:...

7.5CVSS5.8AI score0.00419EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.7 views

MiracleLinux 9 : grafana-10.2.6-21.el9_7 (AXSA:2026-536:12)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-536:12 advisory. golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root CVE-2026-32282 crypto/tls: golang: Go crypto/tls: Denial of Service via...

7.5CVSS5.8AI score0.00621EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/20 8:4 p.m.27 views

Important: Red Hat Security Advisory: containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

10CVSS7.2AI score0.01945EPSS
Exploits3References5
SUSE Linux
SUSE Linux
added 2025/08/27 12:5 p.m.5 views

Security update for ignition

This update for ignition fixes the following issues: CVE-2022-28948: Fixed an issue during unmarshaling in Go-Yaml v3 can lead to DoS via invalid input bsc1248548 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.5CVSS7.3AI score0.03733EPSS
Exploits1References4
Rows per page
Query Builder