CVE-2024-45337 affecting package packer for versions less than 1.9.5-4

CVE-2024-45337 affecting package packer for versions less than 1.9.5-4. A patched version of the package is available...

CVE-2025-30164

Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. A vulnerability in versions prior to 2.11.5 and 2.12.13 vulnerability allows an attacker to craft a URL that, once visited by an authenticated user or one that is able to authenticate, allows to...

CVE-2025-30232

A use-after-free in Exim 4.96 through 4.98.1 could allow users with command-line access to escalate privileges...

CVE-2025-27552

DBIx::Class::EncodedColumn use the rand function, which is not cryptographically secure to salt password hashes. This vulnerability is associated with program files Crypt/Eksblowfish/Bcrypt.pm. This issue affects DBIx::Class::EncodedColumn until 0.00032...

Updated ffmpeg packages fix security vulnerability

FFmpeg NULL Pointer Dereference. CVE-2024-12361...

CVE-2025-2312

A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. This issue may lead to disclosing sensitive data from the host's Kerberos credentials cache...

GHSA-24QP-4XX8-3JVJ vulnerabilities

Vulnerabilities for packages: hubble, hubble-ui...

CVE-2025-2751

A vulnerability has been found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This vulnerability affects the function Assimp::CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp of the component CSM File Handler. The manipulation of the argument na...

CVE-2025-2723

Last updated 25 March 2025...

CVE-2025-27830

An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs during serialization of DollarBlend in a font, for base/writet1.c and psi/zfapi.c...

GHSA-FMJ5-WV96-R2CH vulnerabilities

Vulnerabilities for packages: hadoop-fips...

GHSA-255R-3PRX-MF99 vulnerabilities

Vulnerabilities for packages: zellij...

CVE-1999-1412 vulnerabilities

Vulnerabilities for packages: apache2...

CVE-2025-30472

Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in orftokenendianconvert in exec/totemsrp.c via a large UDP packet...

CVE-2021-23807 vulnerabilities

Vulnerabilities for packages: py3-jsonpointer...

GHSA-92M3-M5PW-P2X9 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2025-29923 vulnerabilities

Vulnerabilities for packages: fluent-bit-plugin-loki, kots, splunk-otel-collector, argo-cd, gitea, falcosidekick, authservice, oauth2-proxy, telegraf, atlantis, mattermost...

CVE-2025-2591

A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function MDLImporter::InternReadFileQuake1 of the file code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument skinwidth/skinheight leads to divide by zero. The...

GHSA-4W4V-5HC9-XRR2 vulnerabilities

Vulnerabilities for packages: solr...

CVE-2024-21319 vulnerabilities

Vulnerabilities for packages: dotnet...