GHSA-8QVM-5X2C-J2W7 vulnerabilities

Vulnerabilities for packages: request-1276, kserve, datadog-agent, datadog-agent-fips, ghidra, grafana-oncall, nemo, text-generation-inference, spamcheck, awx...

OS Command Exec, Unix Command Shell, Reverse TCP (via AWK)

Execute an OS command from PHP. Creates an interactive shell via GNU AWK Module Options msf use payload/php/unix/cmd/reverseawk msf payloadreverseawk show actions ...actions... msf payloadreverseawk set ACTION msf payloadreverseawk show options ...show and set options... msf payloadreverseawk run...

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

GHSA-C72G-53HW-82Q7 vulnerabilities

Vulnerabilities for packages: grafana...

CVE-2016-9843 affecting package fltk for versions less than 1.3.8-1

CVE-2016-9843 affecting package fltk for versions less than 1.3.8-1. An upgraded version of the package is available that resolves this issue...

nginx: specially crafted MP4 file may cause denial of service

A flaw was found in the ngxhttpmp4module module of Nginx. Processing a specially crafted MP4 file can trigger a buffer over-read and cause the nginx process to terminate, resulting in a denial of service...

kernel: ipvs: properly dereference pe in ip_vs_add_service

An improper dereference was found in the Linux kernel in ipvsaddservice. This may lead to a crash...

[SECURITY] Fedora 40 Update: java-17-openjdk-17.0.15.0.6-1.fc40

The OpenJDK 17 runtime environment...

CVE-2025-23147

In the Linux kernel, the following vulnerability has been resolved: i3c: Add NULL pointer check in i3cmasterqueueibi The I3C master driver may receive an IBI from a target device that has not been probed yet. In such cases, the master calls i3cmasterqueueibi to queue an IBI work task, leading to...

GHSA-RC42-6C7J-7H5R vulnerabilities

Vulnerabilities for packages: camunda-zeebe...

CVE-2025-22071

In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak in spufscreatecontext Leak fixes back in 2008 missed one case - if we are trying to set affinity and spufsmkdir fails, we need to drop the reference to neighbor...

CVE-2025-30348 affecting package qtbase for versions less than 6.6.3-3

CVE-2025-30348 affecting package qtbase for versions less than 6.6.3-3. A patched version of the package is available...

[SECURITY] Fedora 41 Update: nodejs-nodemon-3.1.9-3.fc41

Simple monitor script for use during development of a node.js app. For use during development of a node.js based application. nodemon will watch the files in the directory in which nodemon was started, and if any files change, nodemon will automatically restart your node application. nodemon does...

GHSA-WR3J-PWJ9-HQQ6 vulnerabilities

Vulnerabilities for packages: argo-workflows...

CVE-2025-2584

A vulnerability was found in WebAssembly wabt 1.0.36. It has been declared as critical. This vulnerability affects the function BinaryReaderInterp::GetReturnCallDropKeepCount of the file wabt/src/interp/binary-reader-interp.cc. The manipulation leads to heap-based buffer overflow. The attack can ...

[SECURITY] Fedora 42 Update: python3.6-3.6.15-43.fc42

Python 3.6 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.6, see other distributions that support it, such as CentOS or RHEL with Software...

CVE-2025-57833

An issue was discovered in Django 4.2 before 4.2.24, 5.1 before 5.1.12, and 5.2 before 5.2.6. FilteredRelation is subject to SQL injection in column aliases, using a suitably crafted dictionary, with dictionary expansion, as the kwargs passed QuerySet.annotate or QuerySet.alias...

CVE-2022-49432

In the Linux kernel, the following vulnerability has been resolved: powerpc/xics: fix refcount leak in icpopalinit The offindcompatiblenode function returns a node pointer with refcount incremented, use ofnodeput on it when done...

CVE-2025-1378

A vulnerability, which was classified as problematic, was found in radare2 5.9.9 33286. Affected is an unknown function in the library /libr/main/rasm2.c of the component rasm2. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed to...

Moderate Photon OS Security Update - PHSA-2025-5.0-0473

Updates of 'libtasn1' packages of Photon OS have been released...