Lucene search
K

91 matches found

OSV
OSV
added 2022/01/13 9:15 p.m.2 views

UBUNTU-CVE-2022-21682

Flatpak is a Linux application sandboxing and distribution framework. A path traversal vulnerability affects versions of Flatpak prior to 1.12.3 and 1.10.6. flatpak-builder applies finish-args last in the build. At this point the build directory will have the full access that is specified in the...

7.7CVSS7.2AI score0.01666EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/01/13 12:0 a.m.3 views

Flatpak 路径遍历漏洞

Flatpak is an application virtualization system for Linux desktop application computing environments. flatpak is vulnerable and can be exploited by malicious applications to replace appstream util binaries and potentially perform other malicious operations...

7.7CVSS5.5AI score0.01666EPSS
Exploits0References12
OSV
OSV
added 2021/11/09 8:32 a.m.8 views

ALBA-2021:4178 cockpit-appstream bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

6.8AI score
Exploits0
AlmaLinux
AlmaLinux
added 2021/11/09 8:32 a.m.16 views

cockpit-appstream bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

6.8AI score
Exploits0
Oracle linux
Oracle linux
added 2021/09/13 12:0 a.m.34 views

thunderbird security update

78.14.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.14.0-1 - Update to 78.14.0 build1 78.13.0-2 - Use the right name for the appstream file...

8.8CVSS1AI score0.01205EPSS
Exploits0
Oracle linux
Oracle linux
added 2021/09/13 12:0 a.m.38 views

thunderbird security update

78.14.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.14.0-1 - Update to 78.14.0 build1 78.13.0-2 - Use the right name for the appstream file...

8.8CVSS1AI score0.01205EPSS
Exploits0
Rockylinux
Rockylinux
added 2021/05/18 6:17 a.m.10 views

cockpit-appstream bug fix and enhancement update

An update is available for cockpit-appstream. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

2.1AI score
Exploits0
AlmaLinux
AlmaLinux
added 2021/05/18 6:17 a.m.9 views

cockpit-appstream bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

1.6AI score
Exploits0
Oracle linux
Oracle linux
added 2020/11/10 12:0 a.m.90 views

gnome-software and fwupd security, bug fix, and enhancement update

appstream-data 8-20200724 - Regenerate the RHEL metadata to include the EPEL apps too - Resolves: 1844488 8-20200630 - Regenerate the RHEL metadata - Resolves: 1844488 fwupd 1.4.2-4.0.1 - Build with the updated Oracle certificate - Use oraclesecureboot301 as certdir Orabug: 29881368 - Use new...

8.2CVSS0.2AI score0.01068EPSS
Exploits1
AlmaLinux
AlmaLinux
added 2020/11/03 12:28 p.m.12 views

cockpit-appstream bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

1.6AI score
Exploits0
Rockylinux
Rockylinux
added 2020/11/03 12:4 p.m.31 views

gnome-software and fwupd security, bug fix, and enhancement update

An update is available for appstream-data, libxmlb. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gnome-software packages contain an application that makes...

6CVSS6AI score0.0049EPSS
Exploits1
AlmaLinux
AlmaLinux
added 2020/11/03 12:4 p.m.26 views

Low: gnome-software and fwupd security, bug fix, and enhancement update

The gnome-software packages contain an application that makes it easy to add, remove, and update software in the GNOME desktop. The appstream-data package provides the distribution specific AppStream metadata required for the GNOME and KDE software centers. The fwupd packages provide a service th...

6CVSS6.5AI score0.0049EPSS
Exploits1References6
OSV
OSV
added 2020/11/03 12:4 p.m.27 views

RLSA-2020:4436 Low: gnome-software and fwupd security, bug fix, and enhancement update

The gnome-software packages contain an application that makes it easy to add, remove, and update software in the GNOME desktop. The appstream-data package provides the distribution specific AppStream metadata required for the GNOME and KDE software centers. The fwupd packages provide a service th...

5.7CVSS6.4AI score0.0049EPSS
Exploits1References7
OSV
OSV
added 2020/11/03 12:4 p.m.28 views

ALSA-2020:4436 Low: gnome-software and fwupd security, bug fix, and enhancement update

The gnome-software packages contain an application that makes it easy to add, remove, and update software in the GNOME desktop. The appstream-data package provides the distribution specific AppStream metadata required for the GNOME and KDE software centers. The fwupd packages provide a service th...

6CVSS6.4AI score0.0049EPSS
Exploits1References5
Oracle linux
Oracle linux
added 2020/05/05 12:0 a.m.65 views

GNOME security, bug fix, and enhancement update

accountsservice 0.6.50-8 - Dont set HasNoUsers=true if realmd has providers Related: 1750516 appstream-data 8-20191129 - Regenerate the RHEL metadata to include the latest evince changes - Resolves: 1768461 clutter 1.26.2-8 - rebuild to get the new in 8.2.0 - plus address 1785233 evince 3.28.4-4 ...

8.8CVSS7.5AI score0.0207EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2019/12/23 8:55 a.m.103 views

Important: Red Hat Security Advisory: libyang security update

An update for libyang is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.8CVSS7.7AI score0.0387EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2019/12/23 3:32 a.m.60 views

Important: libyang security update

The libyang package provides a library for YANG data modeling language. libyang is a YANG data modelling language parser and toolkit written and providing API in C. The library is used e.g. in libnetconf2, Netopeer2, sysrepo and FRRouting projects. Security Fixes: libyang: stack-based buffer...

7.5CVSS9.6AI score0.0387EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/23 12:0 a.m.54 views

RHEL 8 : libyang (RHSA-2019:4360)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:4360 advisory. The libyang package provides a library for YANG data modeling language. libyang is a YANG data modelling language parser and toolkit written...

9.8CVSS8.3AI score0.0387EPSS
Exploits0References6
Oracle linux
Oracle linux
added 2019/11/14 12:0 a.m.44 views

GNOME security, bug fix, and enhancement update

accountsservice 0.6.50-7 - Dont send change updates for login history changes Resolves: 1713080 appstream-data 8-20190805 - Regenerate the RHEL metadata to include the latest cockpit changes - Resolves: 1673011 8-20190719 - Regenerate the RHEL metadata - Resolves: 1673011 8-20180721 - Regenerate...

7.8CVSS7.4AI score0.01443EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/02 12:0 a.m.21 views

Fedora 30 : appstream-generator / gir-to-d / glibd (2019-146f3a7d7f)

Update to rebuild against new glib2 and ldc to fix FTBFS in Fedora 30 and make it installable. Also rebuilt against new Meson for execstack fix. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted t...

5.4AI score
Exploits0References1
Rows per page
Query Builder