283 matches found
Security update for util-linux (moderate)
openSUSE security update: security update for util-linux ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20495-1 Rating: moderate References: bsc1222465 bsc1254666 bsc1258859 Cross-References: CVE-2025-14104 CVE-2026-3184 CVSS scores: CVE-2025-14104...
jetty-annotations-9.4.58-4.1 on GA media (moderate)
jetty-annotations-9.4.58-4.1 on GA media Announcement ID: openSUSE-SU-2026:10574-1 Rating: moderate Cross-References: CVE-2026-2332 CVE-2026-5795 CVSS scores: CVE-2026-2332 SUSE : 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2026-5795 SUSE : 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:...
cpp-httplib-devel-0.42.0-1.1 on GA media (moderate)
cpp-httplib-devel-0.42.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10573-1 Rating: moderate Cross-References: CVE-2026-33745 CVE-2026-34441 CVSS scores: CVE-2026-33745 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2026-33745 SUSE : 8.7...
Security Bulletin: Multiple vulnerabilities in IBM Tivoli Network Configuration Manager IP Edition (ITNCM)
Summary Multiple vulnerabilities were addressed in ITNCM version 6.4.2 Fix Pack 24 6.4.2.24 Vulnerability Details CVEID:CVE-2025-68161 DESCRIPTION: The Socket Appender in Apache Log4j Core versions 2.0-beta9 through 2.25.2 does not perform TLS hostname verification of the peer certificate, even...
CLSA-2026-1776243051 expat: Fix of 2 CVEs
CVE-2022-25313: prevent stack exhaustion in buildmodel - CVE-2024-50602: make XMLStopParser refuse to stop/suspend an unstarted parser...
python311-aiohttp-3.13.5-3.1 on GA media (moderate)
python311-aiohttp-3.13.5-3.1 on GA media Announcement ID: openSUSE-SU-2026:10545-1 Rating: moderate Cross-References: CVE-2026-34516 CVE-2026-34520 CVSS scores: CVE-2026-34516 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-34516 SUSE : 6.9...
Exploit for Missing Authentication for Critical Function in Flowiseai Flowise
Flowise Dual CVE PoC — CVE-2025-58434 + CVE-2025-59528 !CVE-...
python315-3.15.0~a8-1.1 on GA media (moderate)
python315-3.15.0a8-1.1 on GA media Announcement ID: openSUSE-SU-2026:10522-1 Rating: moderate Cross-References: CVE-2026-2297 CVE-2026-3479 CVSS scores: CVE-2026-2297 SUSE : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2026-2297 SUSE : 5.7...
CLSA-2026-1775723090 python-pip: Fix of 2 CVEs
CVE-2025-66471: add decompression size limit to bundled urllib3 - CVE-2026-21441: skip decompression when draining redirect responses in bundled urllib3...
Important: Red Hat Security Advisory: freerdp security update
An update for freerdp is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...
Security update for libpng16 (important)
openSUSE security update: security update for libpng16 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20466-1 Rating: important References: bsc1260754 bsc1260755 Cross-References: CVE-2026-33416 CVE-2026-33636 CVSS scores: CVE-2026-33416 SUSE : 8.1...
RHEL 9 : kernel (RHSA-2026:6940)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:6940 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-After-Free...
Fedora 43 : corosync (2026-ee4ff58256)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-ee4ff58256 advisory. Security fix for CVE-2026-35091 and CVE-2026-35092 Tenable has extracted the preceding description block directly from the Fedora security advisory...
Security Bulletin: Maximo AI Service uses qs-6.14.1.tgz and flask-3.0.3-py3-none-any.whl which is vulnerable to CVE-2026-2391 and CVE-2026-27205.
Summary Maximo AI Service uses qs-6.14.1.tgz and flask-3.0.3-py3-none-any.whl which is vulnerable to CVE-2026-2391 and CVE-2026-27205. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-2391 DESCRIPTION: Summary The arrayLimit opti...
libinput-devel-1.31.1-1.1 on GA media (moderate)
libinput-devel-1.31.1-1.1 on GA media Announcement ID: openSUSE-SU-2026:10489-1 Rating: moderate Cross-References: CVE-2026-35093 CVE-2026-35094 CVSS scores: CVE-2026-35093 SUSE : 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2026-35093 SUSE : 6.3...
SUSE: Security Advisory (SUSE-SU-2026:20905-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ImageMagick < 6.9.13-43 / 7.x < 7.1.2-18 Multiple Vulnerabilities
The remote host has a version of ImageMagick installed that is prior to 6.9.13-43 and 7.x prior to 7.1.2-18. It is, therefore, affected by multiple vulnerabilities: - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an...
SUSE SLES12 Security Update : perl-XML-Parser (SUSE-SU-2026:1152-1)
The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1152-1 advisory. - CVE-2006-10002: heap buffer overflow in parsestream when processing UTF-8 input streams bsc1259901. - CVE-2006-10003: off-by-one heap buffer...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : perl-XML-Parser (SUSE-SU-2026:1153-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1153-1 advisory. - CVE-2006-10002: heap buffer overflow in parsestream when processing UTF-8 input streams...
Mageia: Security Advisory (MGASA-2026-0074)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...