SUSE SLES15 Security Update : kernel (Live Patch 22 for SLE 15 SP4) (SUSE-SU-2025:0455-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0455-1 advisory. This update for the Linux Kernel 5.14.21-15040024103 fixes several issues. The following security issues were fixed: - CVE-2024-45016: netem: f...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.24 (SUSE-SU-2025:0431-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0431-1 advisory. - CVE-2025-22866: Fixed timing sidechannel for P-256 on ppc64le bsc1236801. - CVE-2025-22867:...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : openssl-3 (SUSE-SU-2025:0430-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0430-1 advisory. - CVE-2024-13176: Fixed timing side-channel in ECDSA signature computation bsc1236136. Tenable has...

Azure Linux 3.0 Security Update: python3 (CVE-2024-6923)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-6923 advisory. - There is a MEDIUM severity vulnerability affecting CPython. The email module didn't properly quote newlines...

Ubuntu: Security Advisory (USN-7262-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

Azure Linux 3.0 Security Update: kernel (CVE-2023-52917)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-52917 advisory. - In the Linux kernel, the following vulnerability has been resolved: ntb: intel: Fix the NULL vs ISERR bug fo...

Azure Linux 3.0 Security Update: kernel (CVE-2024-43856)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43856 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmamfreecoherent...

Azure Linux 3.0 Security Update: edk2 / hvloader (CVE-2023-45233)

The version of edk2 / hvloader installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45233 advisory. - EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option i...

Azure Linux 3.0 Security Update: gdb (CVE-2023-39128)

The version of gdb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-39128 advisory. - GNU gdb GDB 13.0.50.20220805-git was discovered to contain a stack overflow via the function adadecode at...

Azure Linux 3.0 Security Update: edk2 / hvloader (CVE-2024-1298)

The version of edk2 / hvloader installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1298 advisory. - EDK2 contains a vulnerability when S3 sleep is activated where an Attacker May cause a...

Azure Linux 3.0 Security Update: python-pygments (CVE-2021-20270)

The version of python-pygments installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-20270 advisory. - An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 May lead to denial of service when...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47701)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47701 advisory. - In the Linux kernel, the following vulnerability has been resolved: ext4: avoid OOB when system.data xattr...

Azure Linux 3.0 Security Update: cert-manager / helm (CVE-2024-25620)

The version of cert-manager / helm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25620 advisory. - Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49981)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49981 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free bug in...

Azure Linux 3.0 Security Update: edk2 / hvloader / openssl (CVE-2022-1292)

The version of edk2 / hvloader / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-1292 advisory. - The crehash script does not properly sanitise shell metacharacters to prevent command...

Azure Linux 3.0 Security Update: cmake / curl / mysql / rust / tensorflow (CVE-2023-27533)

The version of cmake / curl / mysql / rust / tensorflow installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-27533 advisory. - A vulnerability in input validation exists in curl 8.0 during communicatio...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-26983)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26983 advisory. - In the Linux kernel, the following vulnerability has been resolved: bootconfig: use memblockfreelate...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46763)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46763 advisory. - In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We...

Azure Linux 3.0 Security Update: php (CVE-2024-11234)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-11234 advisory. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, when using streams with configured...