Lucene search
K

6095 matches found

Rosalinux
Rosalinux
added 2025/01/28 11:31 a.m.23 views

Advisory ROSA-SA-2025-2609

software: shadow-utils 4.10 WASP: ROSA-CHROME packageevrstring: shadow-utils-4.10-7 CVE-ID: CVE-2023-4641 BDU-ID: 2024-02776 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the shadow-utils package involves requesting a password twice and failing to clear the memory buffer. Exploitation of the...

5.5CVSS7.2AI score0.00257EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/01/28 11:14 a.m.12 views

Advisory ROSA-SA-2025-2608

software: pam 1.5.1 OS: ROSA-CHROME packageevrstring: pam-1.5.1-5 CVE-ID: CVE-2024-22365 BDU-ID: 2024-00829 CVE-Crit: LOW CVE-DESC.: A vulnerability in the protectdir pamnamespace.so function of the Linux-PAM authentication module is related to incorrect resource sweep or release. Exploitation of...

5.5CVSS7.1AI score0.00455EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/01/28 11:6 a.m.7 views

Advisory ROSA-SA-2025-2605

software: libuv 1.44.2 OS: ROSA-CHROME packageevrstring: libuv-1.44.2-2 CVE-ID: CVE-2024-24806 BDU-ID: 2024-02979 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the uvgetaddrinfo function src/unix/getaddrinfo.c, src/win/getaddrinfo.c of the libuv asynchronous I/O library is related to insufficient...

7.3CVSS6.9AI score0.02003EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/01/27 1:49 p.m.19 views

Advisory ROSA-SA-2025-2599

software: binutils 2.38 WASP: ROSA-CHROME packageevrstring: binutils-2.38-5 CVE-ID: CVE-2022-35205 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in Binutils allows attackers to perform a denial of service via displaydebugnames. CVE-STATUS: The vulnerability has been resolved CVE-REV: T...

5.5CVSS6.8AI score0.00397EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/01/27 1:43 p.m.7 views

Advisory ROSA-SA-2025-2598

software: glib2.0 2.72.3 OS: ROSA-CHROME packageevrstring: glib2.0-2.72.3-4 CVE-ID: CVE-2023-29499 BDU-ID: 2023-07646 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the isnormal function of the Glib library is associated with uncontrolled resource consumption. Exploitation of the vulnerability coul...

7.8CVSS7.9AI score0.00761EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/01/27 12:26 p.m.16 views

Advisory ROSA-SA-2025-2594

software: freerdp 2.11.7 OS: ROSA-CHROME packageevrstring: freerdp-2.11.7-1 CVE-ID: CVE-2024-22211 BDU-ID: 2024-00706 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the freerdpbitmapplanarcontextreset function of the FreeRDP RDP client is related to an integer overflow when processing the...

9.8CVSS6.9AI score0.01085EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/01/27 11:51 a.m.29 views

Advisory ROSA-SA-2025-2591

software: postfix 3.5.25 OS: ROSA-CHROME packageevrstring: postfix-3.5.25-1 CVE-ID: CVE-2023-51764 BDU-ID: 2024-00106 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the smtpd daemon of the Postfix mail server is related to insufficient data authentication when processing string endings other tha...

5.3CVSS7.2AI score0.02598EPSS
Exploits4
Rosalinux
Rosalinux
added 2025/01/27 11:23 a.m.4 views

Advisory ROSA-SA-2025-2588

software: assimp 5.0.1 OS: ROSA-CHROME packageevrstring: assimp-5.0.1.1-4 CVE-ID: CVE-2024-40724 BDU-ID: 2024-06186 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the File Handler component of the 3D model import library Open Asset Import Library Assimp is related to a heap buffer overflow...

8.4CVSS7.8AI score0.00281EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/01/27 10:17 a.m.16 views

Advisory ROSA-SA-2025-2577

Software: wpasupplicant 2.11 WASP: ROSA-CHROME packageevrstring: wpasupplicant-2.11-3 CVE-ID: CVE-2023-52160 BDU-ID: 2024-01426 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Protected Extensible Authentication Protocol PEAP implementation of the Wi-Fi WPA Supplicant secure access client is...

6.5CVSS6.7AI score0.01177EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/01/27 8:27 a.m.32 views

Advisory ROSA-SA-2025-2573

Software: qbittorrent 4.6.7 OS: ROSA-CHROME packageevrstring: qbittorrent-4.6.7-1 CVE-ID: CVE-2024-51774 BDU-ID: 2024-09433 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the cross-platform BitTorrent client qBittorrent is related to improper SSL/TLS certificate authentication. Exploitation of the...

8.1CVSS6.7AI score0.03295EPSS
Exploits2
Rosalinux
Rosalinux
added 2025/01/27 7:47 a.m.21 views

Advisory ROSA-SA-2025-2567

software: curl 8.7.1 OS: ROSA-CHROME packageevrstring: curl-8.7.1-1 CVE-ID: CVE-2024-0853 BDU-ID: 2024-01014 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the TLS protocol implementation of the cURL command line utility is related to erroneous storage of the session ID as a result of a lack of...

5.3CVSS7.1AI score0.01102EPSS
Exploits1
Veeam
Veeam
added 2025/01/23 12:0 a.m.32 views

Release Information for Veeam Backup for Microsoft 365 8.1 and Cumulative Patches

More Recent Version Available Please find the latest version of Veeam Backup for Microsoft 365 here: Veeam Downloads - Latest Version Build Numbers and Versions of Veeam Backup for Microsoft 365 Requirements This release can be used to: update manually from a previous Veeam Backup for Microsoft 3...

6.1AI score
Exploits0Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2025/01/22 12:0 a.m.4 views

nvidia-modprobe-565.77-1.1 on GA media (moderate)

nvidia-modprobe-565.77-1.1 on GA media Announcement ID: openSUSE-SU-2025:14667-1 Rating: moderate Cross-References: CVE-2024-0131 CVE-2024-0147 CVSS scores: CVE-2024-0131 SUSE : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2024-0147 SUSE : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H...

5.5CVSS5.6AI score0.00184EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/01/20 7:22 a.m.7 views

CVE-2025-21634

In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: remove kernfs active break A warning was found: WARNING: CPU: 10 PID: 3486953 at fs/kernfs/file.c:828 CPU: 10 PID: 3486953 Comm: rmdir Kdump: loaded Tainted: G RIP: 0010:kernfsshoulddrainopenfiles+0x1a1/0x1b0 RSP:...

5.5CVSS6.6AI score0.00138EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/01/20 6:22 a.m.7 views

CVE-2024-57904

In the Linux kernel, the following vulnerability has been resolved: iio: adc: at91: call inputfreedevice on allocated iiodev Current implementation of at91tsregister calls inputfreedeivce on st-tsinput, however, the err label can be reached before the allocated iiodev is stored to st-tsinput. Thu...

5.5CVSS6.6AI score0.0023EPSS
Exploits0References4
OSV
OSV
added 2025/01/19 10:18 a.m.7 views

CVE-2025-21644 drm/xe: Fix tlb invalidation when wedging

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix tlb invalidation when wedging If GuC fails to load, the driver wedges, but in the process it tries to do stuff that may not be initialized yet. This moves the xegttlbinvalidationinit to be done earlier: as its own doc...

5.5CVSS5.6AI score0.00212EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/01/15 1:10 p.m.7 views

CVE-2024-57857

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Remove direct link to netdevice Do not manage a per device direct link to netdevice. Rely on associated ibdevices netdevice management, not doubling the effort locally. A badly managed local link to netdevice was causin...

7.8CVSS5.6AI score0.00208EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/15 1:10 p.m.4 views

CVE-2024-57801

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Skip restore TC rules for vport rep without loaded flag During driver unload, unregisternetdev is called after unloading vport rep. So, the mlx5ereppriv is already freed while trying to get rpriv-netdev, or walk...

7.8CVSS6.2AI score0.00219EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/15 1:10 p.m.7 views

CVE-2024-39282

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: Fix FSM command timeout issue When driver processes the internal state change command, it use an asynchronous thread to process the command operation. If the main thread detects that the task has timed out, the...

5.5CVSS5.7AI score0.00217EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/15 1:5 p.m.6 views

CVE-2024-57899

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix mbss changed flags corruption on 32 bit systems On 32-bit systems, the size of an unsigned long is 4 bytes, while a u64 is 8 bytes. Therefore, when using oreachsetbitbit, &bits, sizeofchanged BITSPERBYTE, the...

7.8CVSS5.9AI score0.0022EPSS
Exploits0
Rows per page
Query Builder