Astra Linux – Vulnerability in Firefox

A use-after-free vulnerability was identified during testing, and it was traced to an outdated Cairo library. Updating the library resolved the issue, and it may have also addressed other unknown security vulnerabilities. This vulnerability affects Firefox versions earlier than 90...

ROOT-APP-NPM-CVE-2025-58754 CVE-2025-58754 in @rootio/axios - Patched by Root

Root has patched CVE-2025-58754 in the @rootio/axios package for Root:npm. Multiple fixed versions available...

OPENSUSE-SU-2026:20948-1 Security update for enc

This update for enc fixes the following issues: Changes in enc: - CVE-2026-1229: Fix incorrect value bsc1265533 Bump circl to 1.6.3 - Update to 1.1.5: Update dependencies 10 - Update to 1.1.4: Update all dependencies 9...

UBUNTU-CVE-2026-46318

In the Linux kernel, the following vulnerability has been resolved: Revert "mm/hugetlbfs: update hugetlbfs to use mmapprepare" This reverts commit ea52cb24cd3f "mm/hugetlbfs: update hugetlbfs to use mmapprepare" with conflict resolution to account for changes in commit ea52cb24cd3f "mm/hugetlbfs:...

RHSA-2026:23221 Red Hat Security Advisory: libsndfile security update

Bulletin has no description...

UBUNTU-CVE-2026-46269

In the Linux kernel, the following vulnerability has been resolved: pinctrl: canaan: k230: Fix NULL pointer dereference when parsing devicetree When probing the k230 pinctrl driver, the kernel triggers a NULL pointer dereference. The crash trace showed: 0.732084 Unable to handle kernel NULL point...

[SECURITY] Fedora 44 Update: libssh2-1.11.1-6.fc44

libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20, SECSH-FILEXFER06, SECSH-DHGEX04, and SECSH-NUMBERS10...

RLSA-2026:19367 Important: giflib update

Please update...

OPENSUSE-SU-2026:20834-1 Security update for apptainer

This update for apptainer fixes the following issues: Changes in apptainer: - Fix CVE-2026-39827, CVE-2026-39834, CVE-2026-39828, CVE-2026-39829, CVE-2026-39831, CVE-2026-42508, CVE-2026-39833, CVE-2026-39830, CVE-2026-39832, CVE-2026-46597, CVE-2026-46598, CVE-2026-46595, CVE-2026-39835 bsc12662...

RHSA-2026:21682 Red Hat Security Advisory: python3.9 security update

Bulletin has no description...

RHSA-2026:21295 Red Hat Security Advisory: .NET 10.0 security update

Bulletin has no description...

RHSA-2026:20585 Red Hat Security Advisory: compat-libtiff3 security update

Bulletin has no description...

CLSA-2026-1779371632 Fix CVE(s): CVE-2021-46848

CVE-2021-46848: Fix ETYPEOK off by one array size check...

RHSA-2026:19366 Red Hat Security Advisory: python-markdown security update

Bulletin has no description...

CLSA-2026-1779218750 gcc: Fix of 2 CVEs

CVE-2021-3826: fix buffer overflow in dlanglname function to prevent denial of service - CVE-2021-46195: fix infinite recursion in rust demangler to prevent denial of service...

RHSA-2026:18045 Red Hat Security Advisory: jq security update

Bulletin has no description...

CLSA-2026-1779179759 Update of openssl

Rebuilt els9 for FIPS review...

ALSA-2026:19367 Important: giflib update

Please update...

RHSA-2026:17659 Red Hat Security Advisory: openexr security update

Bulletin has no description...

Security update for log4j

This update for log4j fixes the following issues: CVE-2026-34477: TLS connections vulnerable to interception due to incomplete hostname verification configuration checks bsc1262050. CVE-2026-34479: silent log event loss due to improper XML escaping in Log4j1XmlLayout bsc1262091. CVE-2026-34480:...