Important: Red Hat Security Advisory: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update

An update for jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

RLSA-2025:4244 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

glibc security update

An update is available for glibc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The glibc packages provide the standard C libraries libc, POSIX thread librarie...

RLSA-2025:7895 Important: compat-openssl10 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries and is provided for compatibility with previous releases and software that does not support compilation with OpenSSL-1.1. Security Fixes: openssl: X.400...

glibc security update

An update is available for glibc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The glibc packages provide the standard C libraries libc, POSIX thread librarie...

glibc security update

An update is available for glibc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The glibc packages provide the standard C libraries libc, POSIX thread librarie...

RLSA-2025:3828 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

RLSA-2025:8686 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

[SECURITY] Fedora 41 Update: glibc-2.40-27.fc41

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

[SECURITY] Fedora 41 Update: mingw-binutils-2.42-3.fc41

Cross compiled binutils utilities like 'strip', 'as', 'ld' which understand Windows executables and DLLs...

[SECURITY] Fedora 42 Update: glibc-2.41-9.fc42

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

[SECURITY] Fedora 42 Update: mingw-binutils-2.43.1-4.fc42

Cross compiled binutils utilities like 'strip', 'as', 'ld' which understand Windows executables and DLLs...

com.github.DilvanLab:GroovySparql (=0.9.1), com.github.albaker:GroovySparql (=0.6) +10 more potentially affected by CVE-2025-50151 via org.apache.jena:jena (>=2.7.4 <=5.0.0)

org.apache.jena:jena MAVEN version =2.7.4, =0.8.0-RC3, =0.8.0-RC3, =0.3.0, =0.8.0-RC3, =0.8.0-RC3, =0.8.0-RC3, =0.8.0-RC3, =0.9.0 Source cves: CVE-2025-50151 Source advisory: OSV:GHSA-XG9P-P463-3QJP...

io.github.sparql-anything:sparql-anything-fuseki (>=v1.0-DEV.3 <=v1.0.0), io.telicent.jena.graphql:graphql-fuseki-module (>=0.6.0 <=0.10.4) +12 more potentially affected by CVE-2025-50151 via org.apache.jena:jena-fuseki-main (>=5.0.0-rc1 <=5.4.0)

org.apache.jena:jena-fuseki-main MAVEN version =5.0.0-rc1, =v1.0-DEV.3, =0.6.0, =1.3.2, =0.72.1, =0.71.2, =0.71.2, =1.0.0, =0.80.0, =0.80.0, =1.2.0, =5.0.0, =5.0.0, =5.4.0 - zone.cogni.semanticz:semanticz-connector-fuseki =2.0.0 - zone.cogni.semanticz:semanticz-connectors-spring =2.0.0 Source cve...

Trellix Endpoint Security 代码注入漏洞

Trellix Endpoint Security ENS is an endpoint security solution from FireEye Trellix USA. A code injection vulnerability exists in the Trellix Endpoint Security HX Agent that originates from a privileged user being able to create a malicious OpenSSL configuration file that could lead to the loadin...

IBM Cognos Analytics Mobile 安全漏洞

IBM Cognos Analytics Mobile is an application from International Business Machines IBM, Inc. Integrates reporting, modeling, analytics, dashboards, cases, and event management. A security vulnerability exists in IBM Cognos Analytics Mobile versions 1.1.0 through 1.1.22, which stems from the use o...

IBM Cognos Analytics Mobile 加密问题漏洞

IBM Cognos Analytics Mobile is an application from International Business Machines IBM, Inc. Integrated reporting, modeling, analytics, dashboards, cases and event management. An encryption issue vulnerability exists in IBM Cognos Analytics Mobile versions 1.1.0 through 1.1.22, which stems from t...

apko is vulnerable to attack through incorrect permissions in /etc/ld.so.cache and other files

It was discovered that the ld.so.cache in images generated by apko had file system permissions mode 0666: bash-5.3 find / -type f -perm -o+w /etc/ld.so.cache This issue was introduced in commit 04f37e2 "generate /etc/ld.so.cache 1629"v0.27.0. Impact This potentially allows a local unprivileged us...

CVE-2025-40777

If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of cached or...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the DDL component. An attacker can disrupt the availability of the service by sending crafted requests over the network with high privileges. Details Denial of Service DoS describes a family of attacks, all aim...