Lucene search
+L

1004 matches found

RedHat Linux
RedHat Linux
added 2026/04/13 7:42 p.m.9 views

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: freetype: freetype-2.14.3-1.hum1 aarch64, x8664 freetype-demos-2.14.3-1.hum1 aarch64, x8664 freetype-devel-2.14.3-1.hum1 aarch64, x8664 freetype-2.14.3-1.hum1.src src...

5.3CVSS7.2AI score0.00141EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/13 10:5 a.m.15 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: qt6: qt6-filesystem-6.11.0-1.hum1 aarch64, x8664 qt6-rpm-macros-6.11.0-1.hum1 noarch qt6-srpm-macros-6.11.0-1.hum1 noarch qt6-6.11.0-1.hum1.src src...

9.3CVSS5.8AI score0.00224EPSS
Exploits0References3
Amazon
Amazon
added 2026/04/13 12:0 a.m.8 views

Important: python3.11

Issue Overview: The webbrowser.open API would accept leading dashes in the URL which could be handled as command line options for certain web browsers. New behavior rejects leading dashes. Users are recommended to sanitize URLs prior to passing to webbrowser.open. CVE-2026-4519 Affected Packages:...

7CVSS5.8AI score0.00308EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/04/11 12:49 a.m.14 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: yarnpkg: yarnpkg-1.22.22-18.1.hum1 aarch64, x8664 yarnpkg-1.22.22-18.1.hum1.src src...

7.5CVSS6.2AI score0.00745EPSS
Exploits3References7
RedHat Linux
RedHat Linux
added 2026/04/11 12:22 a.m.9 views

Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: uriparser: mingw32-uriparser-1.0.0-2.1.hum1 noarch mingw64-uriparser-1.0.0-2.1.hum1 noarch uriparser-1.0.0-2.1.hum1 aarch64, x8664 uriparser-devel-1.0.0-2.1.hum1 aarch64, x8664...

2.9CVSS5.8AI score0.00122EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/10 11:58 p.m.7 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: qt5: qt5-filesystem-5.15.18-2.1.hum1 aarch64, x8664 qt5-rpm-macros-5.15.18-2.1.hum1 noarch qt5-srpm-macros-5.15.18-2.1.hum1 noarch qt5-5.15.18-2.1.hum1.src src...

9.3CVSS5.8AI score0.00224EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/10 11:52 p.m.7 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: php: php-8.5.5-1.1.hum1 aarch64, x8664 php-bcmath-8.5.5-1.1.hum1 aarch64, x8664 php-cli-8.5.5-1.1.hum1 aarch64, x8664 php-common-8.5.5-1.1.hum1 aarch64, x8664 php-dba-8.5.5-1.1.hum1 aarch64, x866...

8.2CVSS6.9AI score0.00573EPSS
Exploits4References5
RedHat Linux
RedHat Linux
added 2026/04/10 8:49 p.m.7 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: libtiff: libtiff-4.7.1-2.1.hum1 aarch64, x8664 libtiff-devel-4.7.1-2.1.hum1 aarch64, x8664 libtiff-static-4.7.1-2.1.hum1 aarch64, x8664 libtiff-tools-4.7.1-2.1.hum1 aarch64, x8664...

9.8CVSS6.3AI score0.00739EPSS
Exploits2References6
RedHat Linux
RedHat Linux
added 2026/04/10 7:25 p.m.11 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python3.13: python3.13-3.13.13-1.hum1 aarch64, x8664 python3.13-debug-3.13.13-1.hum1 aarch64, x8664 python3.13-devel-3.13.13-1.hum1 aarch64, x8664 python3.13-freethreading-3.13.13-1.hum1 aarch64,...

7.5CVSS6.9AI score0.01525EPSS
Exploits0References20
RedHat Linux
RedHat Linux
added 2026/04/10 6:39 p.m.12 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: bind: bind-9.18.48-1.1.hum1 aarch64, x8664 bind-chroot-9.18.48-1.1.hum1 aarch64, x8664 bind-devel-9.18.48-1.1.hum1 aarch64, x8664 bind-dnssec-utils-9.18.48-1.1.hum1 aarch64, x8664...

9.8CVSS5.8AI score0.01844EPSS
Exploits0References4
OSV
OSV
added 2026/04/10 3:31 p.m.8 views

GHSA-XX5W-CVP6-JV83 Wasmtime with Winch compiler backend on aarch64 may allow a sandbox-escaping memory access

Impact Wasmtime with its Winch baseline non-default compiler backend may allow properly constructed guest Wasm to access host memory outside of its linear-memory sandbox. This vulnerability requires use of the Winch compiler -Ccompiler=winch. By default, Wasmtime uses its Cranelift backend, not...

9.2CVSS5.8AI score0.00278EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/10 2:47 p.m.14 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nodejs20: nodejs20-20.20.0-7.1.hum1 aarch64, x8664 nodejs20-bin-20.20.0-7.1.hum1 noarch nodejs20-devel-20.20.0-7.1.hum1 aarch64, x8664 nodejs20-docs-20.20.0-7.1.hum1 noarch...

10CVSS6.8AI score0.03782EPSS
Exploits3References12
RedhatCVE
RedhatCVE
added 2026/04/09 11:11 p.m.7 views

CVE-2026-34971

A flaw was found in Wasmtime, a runtime for WebAssembly. On aarch64 systems, a miscompilation bug in Wasmtime's Cranelift backend can be exploited by a guest WebAssembly module. This vulnerability allows the module to bypass memory bounds checks, enabling arbitrary read and write operations on th...

9CVSS5.9AI score0.00319EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/04/09 8:23 p.m.14 views

Wasmtime: Miscompiled guest heap access enables sandbox escape on aarch64 Cranelift

Impact Wasmtime's Cranelift compilation backend contains a bug on aarch64 when performing a certain shape of heap accesses which means that the wrong address is accessed. When combined with explicit bounds checks a guest WebAssembly module this can create a situation where there are two diverging...

9CVSS5.9AI score0.00319EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/04/09 7:16 p.m.3 views

DEBIAN-CVE-2026-34971

Wasmtime is a runtime for WebAssembly. From 32.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Cranelift compilation backend contains a bug on aarch64 when performing a certain shape of heap accesses which means that the wrong address is accessed. When combined with explicit bounds checks a...

9CVSS5.8AI score0.00319EPSS
Exploits0References1
OSV
OSV
added 2026/04/09 7:16 p.m.6 views

UBUNTU-CVE-2026-34971

Wasmtime is a runtime for WebAssembly. From 32.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Cranelift compilation backend contains a bug on aarch64 when performing a certain shape of heap accesses which means that the wrong address is accessed. When combined with explicit bounds checks a...

9CVSS6AI score0.00319EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/09 6:48 p.m.4 views

CVE-2026-34987 Wasmtime with Winch compiler backend on aarch64 may allow a sandbox-escaping memory access

Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime with its Winch baseline non-default compiler backend may allow properly constructed guest Wasm to access host memory outside of its linear-memory sandbox. This vulnerability requires use of the Winch...

9CVSS5.8AI score0.00278EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/09 6:48 p.m.26 views

CVE-2026-34987 Wasmtime with Winch compiler backend on aarch64 may allow a sandbox-escaping memory access

Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime with its Winch baseline non-default compiler backend may allow properly constructed guest Wasm to access host memory outside of its linear-memory sandbox. This vulnerability requires use of the Winch...

9CVSS0.00278EPSS
Exploits0References1
CVE
CVE
added 2026/04/09 6:48 p.m.96 views

CVE-2026-34987

Wasmtime (WebAssembly runtime) with the Winch baseline compiler backend on aarch64 is vulnerable. From 25.0.0 up to but not including 36.0.7, 42.0.2, and 43.0.1, using -Ccompiler=winch may allow a guest Wasm to access host memory outside the linear-memory sandbox. The aarch64 variant has an obser...

9.9CVSS6AI score0.00278EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/04/09 6:45 p.m.35 views

CVE-2026-34971

Wasmtime’s Cranelift backend on the aarch64 path contains a miscompile of a specific load pattern (load(iadd(base, ishl(index, amt)))) that can diverge between bounds checking and loading, enabling an arbitrary read/write of host memory and thus a sandbox escape for guest WebAssembly. Affected ra...

9CVSS6.1AI score0.00319EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder