2504 matches found
GHSA-WJXJ-F8RG-99WX vulnerabilities
Vulnerabilities for packages: druid...
[SECURITY] Fedora 42 Update: man2html-1.6-39.g.fc42
man2html is a man page to HTML converter. This package contains CGI scripts that allow you to view, browse, and search man pages using a web server...
CVE-2025-21743 affecting package kernel for versions less than 6.6.78.1-1
CVE-2025-21743 affecting package kernel for versions less than 6.6.78.1-1. A patched version of the package is available...
CVE-2024-43841 affecting package kernel for versions less than 5.15.176.3-1
CVE-2024-43841 affecting package kernel for versions less than 5.15.176.3-1. A patched version of the package is available...
CVE-2025-1861
In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. before 8.3.19, from 8.4. before 8.4.5, when parsing HTTP redirect in the response to an HTTP request, there is currently limit on the location value size caused by limited size of the location buffer to 1024. However as per RFC911...
CVE-2024-55549
xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes...
CVE-2024-58007 affecting package kernel for versions less than 6.6.78.1-3
CVE-2024-58007 affecting package kernel for versions less than 6.6.78.1-3. An upgraded version of the package is available that resolves this issue...
CVE-2025-21640 affecting package kernel for versions less than 6.6.78.1-3
CVE-2025-21640 affecting package kernel for versions less than 6.6.78.1-3. An upgraded version of the package is available that resolves this issue...
CVE-2024-47141 affecting package kernel for versions less than 6.6.76.1-1
CVE-2024-47141 affecting package kernel for versions less than 6.6.76.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-21745 affecting package kernel for versions less than 6.6.78.1-3
CVE-2025-21745 affecting package kernel for versions less than 6.6.78.1-3. An upgraded version of the package is available that resolves this issue...
CVE-2024-57802 affecting package kernel for versions less than 6.6.76.1-1
CVE-2024-57802 affecting package kernel for versions less than 6.6.76.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-29768
Vim, a text editor, is vulnerable to potential data loss with zip.vim and special crafted zip files in versions prior to 9.1.1198. The impact is medium because a user must be made to view such an archive with Vim and then press 'x' on such a strange filename. The issue has been fixed as of Vim...
CVE-2023-3978 affecting package containerized-data-importer for versions less than 1.57.0-12
CVE-2023-3978 affecting package containerized-data-importer for versions less than 1.57.0-12. A patched version of the package is available...
CVE-2025-27423 affecting package vim for versions less than 9.1.1164-1
CVE-2025-27423 affecting package vim for versions less than 9.1.1164-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-1215 affecting package vim for versions less than 9.1.0791-4
CVE-2025-1215 affecting package vim for versions less than 9.1.0791-4. A patched version of the package is available...
CVE-2025-26594 affecting package xorg-x11-server-Xwayland for versions less than 24.1.6-1
CVE-2025-26594 affecting package xorg-x11-server-Xwayland for versions less than 24.1.6-1. An upgraded version of the package is available that resolves this issue...
kernel security update
3.10.0-1160.119.1.0.6.el7.OL7 - media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat Benoit Sevens CVE-2024-53104 Orabug: 37584712...
CVE-2025-21866
In the Linux kernel, the following vulnerability has been resolved: powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VMALLOC Erhard reported the following KASAN hit while booting his PowerMac G4 with a KASAN-enabled kernel 6.13-rc6: BUG: KASAN: vmalloc-out-of-bounds in...
CVE-2025-21845
In the Linux kernel, the following vulnerability has been resolved: mtd: spi-nor: sst: Fix SST write failure 'commit 18bcb4aa54ea "mtd: spi-nor: sst: Factor out common write operation to sstnorwritedata"' introduced a bug where only one byte of data is written, regardless of the number of bytes...
CVE-2025-21846
In the Linux kernel, the following vulnerability has been resolved: acct: perform last write from workqueue In 1 it was reported that the acct2 system call can be used to trigger NULL deref in cases where it is set to write to a file that triggers an internal lookup. This can e.g., happen when...