Lucene search
K

571 matches found

OSV
OSV
added 2026/05/19 12:0 a.m.15 views

ALSA-2026:18913 Important: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

10CVSS7AI score0.01945EPSS
Exploits3References8
AlmaLinux
AlmaLinux
added 2025/06/20 12:0 a.m.76 views

Moderate: open-vm-tools security update

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fixes: open-vm-tools:A malicious actor with non-administrative...

6.1CVSS8.6AI score0.00247EPSS
Exploits0References3
OSV
OSV
added 2025/05/13 12:0 a.m.6 views

ALSA-2025:7050 Moderate: rsync security update

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fixes:...

7.5CVSS7.1AI score0.04575EPSS
Exploits1References8
OSV
OSV
added 2025/05/13 12:0 a.m.4 views

ALSA-2025:7256 Moderate: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: crypto/tls: panic when processing post-handshake message on QUIC connections...

9.8CVSS7.6AI score0.01952EPSS
Exploits0References14
OSV
OSV
added 2025/05/13 12:0 a.m.10 views

ALSA-2025:6993 Moderate: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled CVE-2025-26465 For more...

6.8CVSS7.2AI score0.06997EPSS
Exploits4References4
OSV
OSV
added 2025/05/13 12:0 a.m.4 views

ALSA-2025:7138 Moderate: protobuf security update

The protobuf packages provide Protocol Buffers, Google's data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data. Security Fixes: protobuf: message parsin...

7.5CVSS7AI score0.01191EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.8 views

Moderate: protobuf security update

The protobuf packages provide Protocol Buffers, Google's data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data. Security Fixes: protobuf: message parsin...

7.5CVSS6.5AI score0.01191EPSS
Exploits0References4
OSV
OSV
added 2025/05/13 12:0 a.m.5 views

ALSA-2025:7309 Moderate: openjpeg2 security update

OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. Security Fixes: openjpeg: heap buffer overflow in bin/common/color.c CVE-2024-56826 openjpeg: heap buffer overflow in lib/openjp2/j2k.c CVE-2024-56827 For more details about the security issues, including t...

5.6CVSS7.9AI score0.00309EPSS
Exploits0References6
OSV
OSV
added 2025/05/13 12:0 a.m.5 views

ALSA-2025:7067 Moderate: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

7.1CVSS7.2AI score0.00606EPSS
Exploits0References4
OSV
OSV
added 2025/05/13 12:0 a.m.6 views

ALSA-2025:7160 Moderate: bootc security update

Bootable container system Security Fixes: rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in the References...

6.3CVSS5AI score0.0065EPSS
Exploits0References4
OSV
OSV
added 2025/05/13 12:0 a.m.5 views

ALSA-2025:7094 Moderate: aardvark-dns security update

Authoritative DNS server for A/AAAA container records Forwards other request to configured resolvers. Read more about configuration in src/backend/mod.rs. Security Fixes: containers/aardvark-dns: TCP Query Handling Flaw in Aardvark-dns Leading to Denial of Service CVE-2024-8418 For more details...

7.5CVSS7.3AI score0.00759EPSS
Exploits1References4
OSV
OSV
added 2025/05/13 12:0 a.m.11 views

ALSA-2025:7147 Moderate: rpm-ostree security update

The rpm-ostree tool binds together the RPM packaging model with the OSTree model of bootable file system trees. It provides commands that can be used both on client systems and on server-side composes. The rpm-ostree-client package provides commands for client systems to perform upgrades and...

6.3CVSS5.2AI score0.0065EPSS
Exploits0References4
OSV
OSV
added 2025/05/13 12:0 a.m.8 views

ALSA-2025:7107 Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6.3CVSS7.3AI score0.01499EPSS
Exploits0References4
OSV
OSV
added 2025/05/13 12:0 a.m.6 views

ALSA-2025:7350 Moderate: perl-Module-ScanDeps security update

This module scans potential modules used by perl programs and returns a hash reference. Its keys are the module names as they appear in %INC e.g. Test/More.pm. The values are hash references. Security Fixes: module-scandeps: local privilege escalation via unsanitized input CVE-2024-10224 For more...

7.8CVSS6.9AI score0.08598EPSS
Exploits3References4
OSV
OSV
added 2025/05/13 12:0 a.m.7 views

ALSA-2025:7049 Moderate: python-requests security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

5.6CVSS6.8AI score0.0034EPSS
Exploits0References4
OSV
OSV
added 2025/05/13 12:0 a.m.4 views

ALSA-2025:7077 Moderate: libtasn1 security update

A library that provides Abstract Syntax Notation One ASN.1, as specified by the X.680 ITU-T recommendation parsing and structures management, and Distinguished Encoding Rules DER, as per X.690 encoding and decoding functions. Security Fixes: libtasn1: Inefficient DER Decoding in libtasn1 Leading ...

5.3CVSS5.8AI score0.01025EPSS
Exploits0References4
OSV
OSV
added 2025/05/13 12:0 a.m.6 views

ALSA-2025:7317 Moderate: python3.12-cryptography security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6.3CVSS5.4AI score0.0065EPSS
Exploits0References4
OSV
OSV
added 2025/05/13 12:0 a.m.8 views

ALSA-2025:7109 Moderate: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6.3CVSS7.3AI score0.01499EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.17 views

Moderate: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled CVE-2025-26465 For more...

6.8CVSS6.9AI score0.06997EPSS
Exploits4References4
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.6 views

Moderate: aardvark-dns security update

Authoritative DNS server for A/AAAA container records Forwards other request to configured resolvers. Read more about configuration in src/backend/mod.rs. Security Fixes: containers/aardvark-dns: TCP Query Handling Flaw in Aardvark-dns Leading to Denial of Service CVE-2024-8418 For more details...

7.5CVSS6.9AI score0.00759EPSS
Exploits1References4
Rows per page
Query Builder