Lucene search
+L

33 matches found

rocky
rocky
added yesterday4 views

go-toolset:rhel8 security, bug fix, and enhancement update

An update is available for delve, module.delve, module.golang, golang. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Go Toolset provides the Go programming...

9.6CVSS6.5AI score0.00939EPSS
Exploits0
osv
osv
added 3 days ago3 views

RLSA-2026:37435 Important: golang security, bug fix, and enhancement update

The golang packages provide the Go programming language compiler. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 os: golang: Go os.Root: Symlink following vulnerability allows directory traversal...

8.2CVSS6.5AI score0.00478EPSS
Exploits0References3
osv
osv
added 2026/07/09 7:2 p.m.1 views

SUSE-SU-2026:2832-1 Security update for rustup

This update for rustup fixes the following issues Security issues: - CVE-2024-12224: idna: idna accepts Punycode labels that do not produce any non-ASCII when decoded bsc1243862. - CVE-2025-58160: tracing-subscriber: Tracing log pollution bsc1249008. - CVE-2026-41676: openssl: Deriver:derive and...

9.8CVSS7.1AI score0.00412EPSS
Exploits1References23
osv
osv
added 2026/07/07 12:3 p.m.4 views

RLSA-2026:35828 Important: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 For more details about the security issue...

8.2CVSS5.9AI score0.00478EPSS
Exploits0References2
redhat
redhat
added 2026/07/07 10:2 a.m.13 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.22.4 packages and security update

Red Hat OpenShift Container Platform release 4.22.4 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.22. Red Hat Product Security has rated this update as having a...

9.6CVSS6.7AI score0.00478EPSS
Exploits0References2
osv
osv
added 2026/07/05 12:5 p.m.6 views

RLSA-2026:30855 Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycod...

8.2CVSS6AI score0.00478EPSS
Exploits0References2
rocky
rocky
added 2026/07/01 6:0 a.m.5 views

git-lfs security update

An update is available for git-lfs. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Git Large File Storage LFS replaces large files such as audio samples, videos...

9.6CVSS6.7AI score0.00478EPSS
Exploits0
nessus
nessus
added 2026/06/30 12:0 a.m.9 views

RHEL 10 : git-lfs (RHSA-2026:30855)

The remote Redhat Enterprise Linux 10 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:30855 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing...

9.6CVSS6.7AI score0.00478EPSS
Exploits0References4
almalinux
almalinux
added 2026/06/29 12:0 a.m.6 views

Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycod...

9.6CVSS6.8AI score0.00478EPSS
Exploits0References4
osv
osv
added 2026/06/24 10:44 a.m.3 views

SUSE-SU-2026:22442-1 Security update for google-guest-agent

This update for google-guest-agent fixes the following issues - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header bsc1260264. - CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allo...

10CVSS6AI score0.00533EPSS
Exploits1References21
vulnersosv
vulnersosv
added 2026/05/19 2:34 p.m.10 views

0lever-utils (>=0.0.2 <=0.0.7), 2keys (=0.5.1) +5826 more potentially affected by CVE-2026-45409 via idna (>=2.0.0 <=3.14.0)

idna PYPI version =2.0.0, =0.0.2, =0.0.1a0, =0.0.2, =0.0.6, =0.1.0, =0.1.3, =0.0.3, =19.11.0, =0.2.0rc1, =1.1.0rc1 and more Source cves: CVE-2026-45409 Source advisory: OSV:GHSA-65PC-FJ4G-8RJX...

6.9CVSS6.2AI score0.00408EPSS
Exploits0
vulnersosv
vulnersosv
added 2026/05/12 9:0 p.m.9 views

a-mailx (=0.1.0), aaaai (>=0.1.3 <=0.3.0) +1028 more potentially affected by CVE-2024-3651 +1 more via idna (>=3.10.0 <=3.14.0)

idna PYPI version =3.10.0, =0.1.3, =4.8.2, =0.1.3, =0.1.0, =0.3.4, =0.4.0, =0.0.6, =0.1.0, =0.1.31, =0.1.0, =0.4.0, =0.1.0, =1.0.0, =1.0.3 and more Source cves: CVE-2024-3651, CVE-2026-45409 Source advisory: SNYK:PYTHON-IDNA-16769942...

7.5CVSS6.5AI score0.01386EPSS
Exploits1
nessus
nessus
added 2026/01/31 12:0 a.m.6 views

EulerOS Virtualization 2.10.0 : python-pip (EulerOS-SA-2026-1194)

According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. Prior to 2.5.0, it is possible to disable redirects for all requests...

7.5CVSS7.1AI score0.01386EPSS
Exploits3References4
nessus
nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : python-idna-2.5-7.el8_10 (AXSA:2024-8515:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8515:02 advisory. python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode CVE-2024-3651 Tenable has extracted the preceding description...

7.5CVSS8AI score0.01386EPSS
Exploits1References2
osv
osv
added 2025/10/24 1:28 p.m.6 views

SUSE-SU-2025:3784-1 Security update for afterburn

This update for afterburn fixes the following issues: Update to version 5.9.0.git21.a73f509. Security issues fixed: - CVE-2022-24713: regex: no proper complexity limitation when parsing untrusted regular expressions with large repetitions on empty sub-expressions can lead to excessive resource...

8.8CVSS6.8AI score0.1446EPSS
Exploits2References11
suse
suse
added 2025/10/24 1:28 p.m.3 views

Security update for afterburn

This update for afterburn fixes the following issues: Update to version 5.9.0.git21.a73f509. Security issues fixed: CVE-2022-24713: regex: no proper complexity limitation when parsing untrusted regular expressions with large repetitions on empty sub-expressions can lead to excessive resource...

8.4CVSS6.8AI score0.1446EPSS
Exploits2References20
vulnersosv
vulnersosv
added 2025/10/18 12:0 p.m.5 views

doge_dns (>=0.2.4-beta <=1.0.2), rev-up-your-harley (>=0.1.0 <=1.0.1) +3 more potentially affected by unknown CVE via unic-idna (>=0.5.0 <=0.9.0)

unic-idna CARGO version =0.5.0, =0.2.4-beta, =0.1.0, =0.1.0, =0.5.0, =0.7.0, =0.9.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0085...

5.8AI score
Exploits0
suse
suse
added 2025/10/14 1:21 p.m.5 views

Security update for rust-keylime

This update for rust-keylime fixes the following issues: CVE-2025-55159: slab: incorrect bounds check in getdisjointmut function can lead to undefined behavior or potential crash due to out-of-bounds access bsc1248006 CVE-2025-3416: openssl: Use-After-Free in Md::fetch and Cipher::fetch in...

6.5CVSS7.1AI score0.0078EPSS
Exploits1References22
nessus
nessus
added 2025/10/02 12:0 a.m.4 views

SUSE SLES15 / openSUSE 15 Security Update : snpguest (SUSE-SU-2025:03445-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03445-1 advisory. - CVE-2024-12224: idna: acceptance of Punycode labels that do not produce any non-ASCII output may lead to incorrect...

8.8CVSS5.2AI score0.00486EPSS
Exploits1References7
suse
suse
added 2025/10/01 1:10 p.m.6 views

Security update for snpguest

This update for snpguest fixes the following issues: CVE-2024-12224: idna: acceptance of Punycode labels that do not produce any non-ASCII output may lead to incorrect hostname comparisons and incorrect URL parsing bsc1243869. CVE-2025-3416: openssl: use-after-free in Md::fetch and Cipher::fetch...

6.3CVSS7AI score0.00486EPSS
Exploits1References8
Rows per page
Query Builder