GHSA-W6XH-C82W-H997 vulnerabilities

Vulnerabilities for packages: mattermost-fips...

CVE-2025-32914 affecting package libsoup for versions less than 3.4.4-4

CVE-2025-32914 affecting package libsoup for versions less than 3.4.4-4. A patched version of the package is available...

CVE-2025-21605 affecting package valkey for versions less than 8.0.3-1

CVE-2025-21605 affecting package valkey for versions less than 8.0.3-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-43859 vulnerabilities

Vulnerabilities for packages: kserve, kubeflow-pipelines-visualization-server, checkov, airflow, mitmproxy, reflex, jupyter-base-notebook...

Erlang/OTP Installed (Linux / Unix)

Binary data ericssonerlangotpnixinstalled.nbin...

CVE-2025-3641

A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS Dropbox repository. By default, this was only available to teachers and managers on sites with the Dropbox repository enabled...

CVE-2025-3644

A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify...

CVE-2025-22870 affecting package prometheus for versions less than 2.45.4-12

CVE-2025-22870 affecting package prometheus for versions less than 2.45.4-12. A patched version of the package is available...

SUSE CVE-2024-47829

pnpm is a package manager. Prior to version 10.0.0, the path shortening function uses the md5 function as a path shortening compression function, and if a collision occurs, it will result in the same storage path for two different libraries. Although the real names are under the package name...

ROS-20250424-07

Vulnerability of xmlPatMatch function in pattern.c file of libxml2 library is related to null pointer dereferencing. pointer. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. denial of service A vulnerability in the libxml2 library is related...

thunderbird security update

128.9.0-2.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.9.0 - Add OpenELA debranding 128.9.0-2 - Update to 128.9.0 build3 128.9.0-1 - Update to 128.9.0 build1...

CVE-2025-46397

A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via bezierspline function...

SUSE CVE-2023-26819

cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...

CVE-2025-31344 affecting package giflib for versions less than 5.2.1-9

CVE-2025-31344 affecting package giflib for versions less than 5.2.1-9. A patched version of the package is available...

CVE-2025-21613 affecting package cri-o for versions less than 1.22.3-12

CVE-2025-21613 affecting package cri-o for versions less than 1.22.3-12. A patched version of the package is available...

CVE-2023-6693 affecting package qemu for versions less than 8.2.0-13

CVE-2023-6693 affecting package qemu for versions less than 8.2.0-13. A patched version of the package is available...

CVE-2023-46045 affecting package graphviz for versions less than 2.42.4-12

CVE-2023-46045 affecting package graphviz for versions less than 2.42.4-12. A patched version of the package is available...

GHSA-5VXX-C285-PCQ4 vulnerabilities

Vulnerabilities for packages: hubble-ui-backend-fips, hubble-fips, hubble...

[SECURITY] Fedora 40 Update: rust-zip-2.6.1-1.fc40

Library to support the reading and writing of zip files...

[SECURITY] Fedora 40 Update: rust-utf16_iter-1.0.5-1.fc40

Iterator by char over potentially-invalid UTF-16 in &u16...