Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.24 security, enhancement & bug fix update

Red Hat OpenShift Data Foundation 4.18.24 security, enhancement & bug fix update Red Hat OpenShift Data Foundation 4.18.24 security, enhancement & bug fix update FIXED BUGS: ========== DFBUGS-7107: Backport to 4.18.z CLONE - ODF Console is breaking DFBUGS-7064: RHODF 4.18.24 release DFBUGS-7046:...

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.30 security, enhancement & bug fix update

Red Hat OpenShift Data Foundation 4.16.30 security, enhancement & bug fix update Red Hat OpenShift Data Foundation 4.16.30 security, enhancement & bug fix update FIXED BUGS: ========== DFBUGS-7345: RHODF 4.16.30 release DFBUGS-7105: Backport to 4.16.z CLONE - ODF Console is breaking DFBUGS-6743:...

Security update for restic (important)

openSUSE Security Update: Security update for restic Announcement ID: openSUSE-SU-2026:0206-1 Rating: important References: 1240262 1265915 1266211 1266795 Cross-References: CVE-2026-33814 CVSS scores: CVE-2026-33814 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSU...

PT-2026-48834

openSUSE released security advisories for CVE-2026-0183 in RoundcubeMail and CVE-2025-3548 in Assimp, addressing XSS/SQL injection and denial-of-service flaws in SLE-15-SP6 and SP7 backports, Linuxsecurity reported. https://t.co/mZCkbHBQjS...

Security update for python-simpleeval (important)

openSUSE Security Update: Security update for python-simpleeval Announcement ID: openSUSE-SU-2026:0087-1 Rating: important References: 1259685 Cross-References: CVE-2026-32640 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available. Description: Th...

Security update for doomsday (important)

openSUSE Security Update: Security update for doomsday Announcement ID: openSUSE-SU-2025:0117-1 Rating: important References: 1239917 Cross-References: CVE-2025-2592 CVSS scores: CVE-2025-2592 SUSE: 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2025:0367-1 Rating: important References: 1249999 Cross-References: CVE-2025-10500 CVE-2025-10501 CVE-2025-10502 CVE-2025-10585 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes four...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2024:0302-1 Rating: important References: 1230391 Cross-References: CVE-2024-8636 CVE-2024-8637 CVE-2024-8638 CVE-2024-8639 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes four vulnerabilitie...

Security update for flannel (important)

openSUSE Security Update: Security update for flannel Announcement ID: openSUSE-SU-2026:0149-1 Rating: important References: 1260847 1260853 Cross-References: CVE-2026-33343 CVE-2026-33413 CVSS scores: CVE-2026-33343 SUSE: 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N...

Security update for xtrabackup (moderate)

openSUSE Security Update: Security update for xtrabackup Announcement ID: openSUSE-SU-2025:0270-1 Rating: moderate References: 1244333 1244383 1244389 Cross-References: CVE-2025-5914 CVE-2025-5916 CVE-2025-5917 CVSS scores: CVE-2025-5914 SUSE: 7.3...

Security update for shadowsocks-v2ray-plugin (moderate)

openSUSE Security Update: Security update for shadowsocks-v2ray-plugin Announcement ID: openSUSE-SU-2025:0365-1 Rating: moderate References: 1243954 Cross-References: CVE-2025-297850 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available...

PT-2026-47706

openSUSE issued new Chromium 149.0.7827.53 and Chromedriver builds fixing CVE-2026-0194 and CVE-2026-10958 for Backports SLE-15-SP7 and Tumbleweed, LinuxSecurity reported. https://t.co/OjsKRZMxHK...

CVE-2026-46289

In the Linux kernel, CVE-2026-46289 concerns bugs in lib/scatterlist during extract_kvec_to_sg when transferring data from a kvec to a sglist. The main issues: (1) the computed length for a sglist entry can exceed the page size, causing overread; (2) while extracting a user buffer, the sglist can...

Security update for kanidm (critical)

openSUSE Security Update: Security update for kanidm Announcement ID: openSUSE-SU-2026:0192-1 Rating: critical References: Affected Products: openSUSE Backports SLE-15-SP7 An update that contains security fixes can now be installed. Description: This update for kanidm fixes the following issues: ...

Security update for re (critical)

openSUSE Security Update: Security update for re Announcement ID: openSUSE-SU-2026:0181-1 Rating: critical References: Affected Products: openSUSE Backports SLE-15-SP7 An update that contains security fixes can now be installed. Description: This update for re fixes the following issues: Fixed...

[BSA-135] Security Update for exim4

Andreas Metzler uploaded new packages for exim4 which fixed the following security problems: CVE-2026-48840 PROXYv2 parser: reject PROXY frames whose declared payload length is too short for the claimed address family 12 bytes for TCPv4/0x11, 36 bytes for TCPv6/0x21. Previously a frame with...

CAPM3 vulnerable to Cross-Namespace resource access

Summary CAPM3 is Metal3's Cluster API CAPI provider for baremetal provisioning in Kubernetes. Multiple cross-namespace access control vulnerabilities in Cluster API Provider Metal3 allow users with permissions to create or modify CAPM3 resources in one namespace to reference, read, or claim...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2026:0179-1 Rating: important References: 1266471 Affected Products: openSUSE Backports SLE-15-SP7 An update that contains security fixes can now be installed. Description: This update for chromium fixes the...

Security update for cockpit (important)

openSUSE Security Update: Security update for cockpit Announcement ID: openSUSE-SU-2026:0176-1 Rating: important References: 1265040 Cross-References: CVE-2026-4802 CVSS scores: CVE-2026-4802 SUSE: 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE...

CLSA-2026-1779494089 Fix of 7 CVEs

SECURITY UPDATE: PostgreSQL 2026-05-14 security batch CVE-2026-6473, 6474, 6475, 6477, 6478, 6479, 6637. Backports adapted from upstream REL14STABLE to PG 12 source. - debian/patches/CVE-2026-6473.patch: integer wraparound in tsheadline and ltree lquery parsing; bound...