Lucene search
K

29 matches found

Rosalinux
Rosalinux
added 2026/05/19 2:20 p.m.11 views

Advisory ROSA-SA-2026-3281

software: libde265 1.0.18 OS: ROSA-CHROME unaffected versions = libde265-1.0.18-1 affected versions libde265-1.0.18-1 CVE-ID: CVE-2025-61147 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in strukturag libde265 commit d9fea9d is related to a segmentation error in the...

6.2CVSS5.7AI score0.00159EPSS
Exploits1
Rosalinux
Rosalinux
added 2026/05/19 2:0 p.m.14 views

Advisory ROSA-SA-2026-3274

software: vim 9.2.0173 WASP: ROSA-CHROME unaffected versions = vim-9.2.0173-1 affected versions vim-9.2.0173-1 CVE-ID: CVE-2026-28417 BDU-ID: 2026-02589 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the vim text editor is related to failure to take measures to neutralize special elements...

7.8CVSS7.1AI score0.01162EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/08/03 8:54 p.m.5 views

Advisory ROSA-SA-2025-2913

software: c-ares 1.19.1 OS: ROSA-CHROME unaffected versions = c-ares-1.19.1-2 affected versions c-ares-1.19.1-2 CVE-ID: CVE-2024-25629 BDU-ID: 2024-01708 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the aresreadline function of the C-ares asynchronous DNS query library is related to an operatio...

5.5CVSS6.5AI score0.00349EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/06/09 8:53 a.m.8 views

Advisory ROSA-SA-2025-2882

Software: libtasn1 4.13 OS: ROSA Virtualization 2.1 packageevrstring: libtasn1-4.13-5.rv3 CVE-ID: CVE-2024-12133 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in libtasn1 causes the system to slow down or crash due to inefficient processing of certain certificate data. As a result, an...

5.3CVSS6AI score0.01025EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/04/30 7:45 a.m.37 views

Advisory ROSA-SA-2025-2851

Software: httpd 2.4.37 OS: ROSA Virtualization 2.1 packageevrstring: httpd-2.4.37-65.0.1.rv3.3 CVE-ID: CVE-2023-27522 BDU-ID: 2023-02021 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the modproxyuwsgi component of the Apache HTTP Server web server is related to flaws in HTTP request handling...

9.8CVSS9AI score0.99957EPSS
Exploits2
Rosalinux
Rosalinux
added 2025/04/11 10:8 p.m.44 views

Advisory ROSA-SA-2025-2835

Software: bind-dyndb-ldap 11.6 OS: ROSA Virtualization 2.1 packageevrstring: bind-dyndb-ldap-11.6-5.rv3 CVE-ID: CVE-2023-50387 BDU-ID: 2024-01359 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the DNSSEC component of the DNS protocol implementation of the DNS server BIND is related to the algorithm...

7.5CVSS7.8AI score0.99995EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/04/11 10:8 p.m.24 views

Advisory ROSA-SA-2025-2846

Software: iperf3 3.5 OS: ROSA Virtualization 2.1 packageevrstring: iperf3-3.5-11.rv3 CVE-ID: CVE-2024-53580 BDU-ID: 2024-11145 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Iperf3 network bandwidth measurement tool is related to improper handling of test parameters passed to the server in json...

7.5CVSS7.4AI score0.00908EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/04/11 9:55 p.m.15 views

Advisory ROSA-SA-2025-2827

Software: postgresql 13.20 OS: ROSA Virtualization 3.0 packageevrstring: postgresql-13.20-1.rv30 CVE-ID: CVE-2024-10976 BDU-ID: 2024-09684 CVE-Crit: LOW CVE-DESC.: A vulnerability in the CREATE POLICY row-protected table security policy of the PostgreSQL database management system is related to a...

8.8CVSS9.2AI score0.89472EPSS
Exploits11
Rosalinux
Rosalinux
added 2025/04/11 9:49 p.m.15 views

Advisory ROSA-SA-2025-2798

Software: flatpak 1.10.8 OS: ROSA Virtualization 3.0 packageevrstring: flatpak-1.10.8-2.rv30 CVE-ID: CVE-2023-28100 BDU-ID: 2024-04881 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the ioctl component of the Flatpak application and environment management tool is related to copying text from the...

10CVSS5.5AI score0.00887EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/03/01 9:32 p.m.7 views

Advisory ROSA-SA-2025-2736

Software: ghostscript 9.27 OS: ROSA Virtualization 3.0 packageevrstring: ghostscript-9.27-13.0.1.rv30 CVE-ID: CVE-2024-33871 BDU-ID: 2024-05064 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability exists in the contrib/opvp/gdevopvp.c component of the Ghostscript processing, conversion, and document...

8.8CVSS8.9AI score0.01425EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/03/01 9:21 p.m.6 views

Advisory ROSA-SA-2025-2731

Software: PackageKit 1.1.12 OS: ROSA Virtualization 3.0 packageevrstring: PackageKit-1.1.12-7.0.1.rv30 CVE-ID: CVE-2024-0217 BDU-ID: None CVE-Crit: LOW CVE-DESC.: A use-after-free vulnerability in PackageKitd allows an attacker to access freed memory and potentially execute arbitrary code...

3.3CVSS4.5AI score0.00228EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/02/24 12:28 p.m.12 views

Advisory ROSA-SA-2025-2712

Software: lz4 1.8.3 OS: ROSA Virtualization 3.0 packageevrstring: lz4-1.8.3-3.0.1 CVE-ID: CVE-2021-3520 BDU-ID: 2021-05259 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the memmove function of the LZ4 lossless data compression algorithm is related to an operation exceeding the allowable data buffe...

9.8CVSS7.3AI score0.03216EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/01/29 12:9 p.m.19 views

Advisory ROSA-SA-2025-2677

software: qt4 4.8.7 OS: ROSA-CHROME packageevrstring: qt4-4.8.7-18 CVE-ID: CVE-2023-32763 BDU-ID: 2023-03802 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the QTextLayout component of the Qt cross-platform software development framework is related to buffer copying without input validation...

7.5CVSS7.7AI score0.01324EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/01/28 7:30 p.m.9 views

Advisory ROSA-SA-2025-2659

software: openslp 2.0.0 WASP: ROSA-CHROME packageevrstring: openslp-2.0.0 CVE-ID: CVE-2016-4912 BDU-ID: None CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in OpenSLP allows remote attackers to cause a denial of service via a large number of specially crafted packets. CVE-STATUS: The vulnerability...

7.5CVSS6.8AI score0.0536EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/01/28 1:43 p.m.26 views

Advisory ROSA-SA-2025-2621

software: xerces-j2 2.12.0 WASP: ROSA-CHROME packageevrstring: xerces-j2-2.12.0-4 CVE-ID: CVE-2022-23437 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Apache Xerces Java XercesJ XML parser causes it to hang in an infinite loop when processing specially crafted XML documents...

7.1CVSS6.9AI score0.0444EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/01/27 12:23 p.m.18 views

Advisory ROSA-SA-2025-2593

software: qpdf 11.9.1 OS: ROSA-CHROME packageevrstring: qpdf-11.9.1-1 CVE-ID: CVE-2024-24246 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A heap buffer overflow vulnerability in qpdf allows attackers to cause application crashes via the std::sharedcount function in sharedptrbase.h. CVE-STATUS: The...

5.5CVSS7.3AI score0.00436EPSS
Exploits1
Rosalinux
Rosalinux
added 2024/07/31 9:50 a.m.22 views

Advisory ROSA-SA-2024-2460

software: gnuplot 5.4.10 OS: ROSA-CHROME packageevrstring: gnuplot-5.4.10-1 CVE-ID: CVE-2020-25412 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: comline in command.c in gnuplot causes writes outside the memory buffer from strncpy, which may lead to arbitrary code execution. CVE-STATUS: Fixed CVE-REV...

9.8CVSS7.5AI score0.02528EPSS
Exploits1
Rosalinux
Rosalinux
added 2024/07/15 10:11 a.m.23 views

Advisory ROSA-SA-2024-2452

software: redis 7.0.14 OS: ROSA-CHROME packageevrstring: redis-7.0.14-1 CVE-ID: CVE-2023-41053 BDU-ID: 2023-05475 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Redis database management system is related to insecure privilege management. Exploitation of the vulnerability could allow an...

3.3CVSS4.1AI score0.0034EPSS
Exploits0
Rosalinux
Rosalinux
added 2023/02/13 5:13 p.m.14 views

Advisory ROSA-SA-2023-2107

kernel 123 rosa-server79 test00 software: kernel 123xxxxxxxxxzzzzzzzzzzzz CVE-Crit: packageevrstring: test00 CVE-ID: test CVE-Crit: Not Current...

2AI score
Exploits0
Rosalinux
Rosalinux
added 2021/07/02 6:19 p.m.39 views

Advisory ROSA-SA-2021-1996

Software: wget 1.14 OS: Cobalt 7.9 CVE-ID: CVE-2016-7098 CVE-Crit: HIGH CVE-DESC: The race condition in wget 1.17 and earlier, when used in recursive or mirror mode to download a single file, may allow remote servers to bypass perceived access list restrictions by leaving the HTTP connection open...

8.1CVSS8.3AI score0.07499EPSS
Exploits7
Rows per page
Query Builder