38 matches found
SUSE-SU-2026:21882-1 Security update for nvidia-open-driver-G06-signed
This update for nvidia-open-driver-G06-signed fixes the following issues: - Get rid of "'naked' return found in MITIGATIONRETHUNK build" objtool warnings bsc1212841, bsc1263834 - update CUDA variant to 580.159.03 - update non-CUDA variant to 580.159.03 bsc1262749 - Fixes CVEs: CVE-2025-33221,...
osbuild-composer security update
149-5.0.1 - Add missing dependency over dracut-config-rescue for image-installer ORABUG: 38587453 - Switch to UEKR8 repositories for OL9.6 Orabug: 37962207 - Add support to create OpenScap images JIRA: OLDIS-35301 - Simplify repository names JIRA: OLDIS-35893 - Refactor patches to fix some naming...
Security update 5.1.2 for Multi-Linux Manager Salt Bundle
This update fixes the following issues: venv-salt-minion: Backported security patches for Salt vendored tornado: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header paramete...
kernel security update
4.18.0-553.97.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
EUVD-2020-3108
Malware in sbrugna...
MulVuln: Enhancing Pre-Trained LMs with Shared and Language-Specific Knowledge for Multilingual Vulnerability Detection
Software vulnerabilities SVs pose a critical threat to safety-critical systems, driving the adoption of AI-based approaches such as machine learning and deep learning for software vulnerability detection. Despite promising results, most existing methods are limited to a single programming languag...
Nokogiri patches vendored libxml2 to resolve multiple CVEs
Summary Nokogiri v1.18.9 patches the vendored libxml2 to address CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796. Impact and severity CVE-2025-6021 A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead t...
libsoup security update
2.62.3-9 - Add patches to improve test reliability - Backport patches for various CVEs Resolves: RHEL-85879 Resolves: RHEL-92280 Resolves: RHEL-93031 Resolves: RHEL-93032...
Oracle Linux 8 : libsoup (ELSA-2025-8132)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8132 advisory. 2.62.3-9 - Add patches to improve test reliability - Backport patches for various CVEs Resolves: RHEL-85879 Resolves: RHEL-92280 Resolves: RHEL-93031...
Oracle Linux 9 : libsoup (ELSA-2025-8126)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8126 advisory. 2.72.0-10.2 - Backport patches for various CVEs Resolves: RHEL-85888 Resolves: RHEL-87081 Resolves: RHEL-88332 Resolves: RHEL-92285 Tenable has extract...
EulerOS 2.0 SP12 : kernel (EulerOS-SA-2025-1299)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : initramfs: avoid filename buffer overrunCVE-2024-53142 bpf, sockmap: Several fixes to bpfmsgpopdataCVE-2024-56720 scsi: sg: Fix slab-use-after-fre...
RLSA-2024:8870 Moderate: kernel-rt security update
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: net/bluetooth: race condition in conninfomin,maxageset CVE-2024-24857 kernel: dmaengine: fix NULL pointer in channel unregistratio...
ALSA-2024:8726 Moderate: firefox security update
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: History interface could have been used to cause a Denial of Service condition in the browser CVE-2024-10464 firefox: thunderbird: XSS due to...
Unbreakable Enterprise kernel security update
4.14.35-2047.541.4.1 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37137499 4.14.35-2047.541.4 - selftests: make order checking verbose in msgzerocopy selftest Zijian Zhang Orabug: 37063821 - selftests: fix OOM in msgzerocopy selftest Zijian Zhang Orabug: 37063821 -...
nodejs:20 security update
nodejs 1:20.12.2-2 - Backport nghttp2 patch for CVE-2024-28182 1:20.12.2-1 - Rebase to version 20.12.0 Fixes: CVE-2024-27983 CVE-2024-27982 CVE-2024-22025 node Fixes: CVE-2024-25629 c-ares nodejs-nodemon nodejs-packaging...
Fedora 39 : CuraEngine (2023-1d57a86dfa)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-1d57a86dfa advisory. Ensure stbimage contains the latest CVE patches Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
Fedora 38 : mlpack (2023-23c0bd9a45)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-23c0bd9a45 advisory. Use RPM macros for python and cmake build directory ---- Ensure stbimage contains the latest CVE patches Tenable has extracted the preceding description bloc...
Fedora 37 : attract-mode (2023-e58495988e)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-e58495988e advisory. Ensure stbimage contains the latest CVE patches Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
Fedora 38 : attract-mode (2023-1242b3ada2)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-1242b3ada2 advisory. Ensure stbimage contains the latest CVE patches Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
grub2, mokutil, shim, and shim-unsigned-x64 security update
2.02-123.0.4.el86.8 - enable multiboot2 Orabug: 34285558 - backport arm64: Fix EFI loader kernel image allocation Orabug: 33702462 - backport Arm: check for the PE magic for the compiled arch Orabug: 33702462 - Backport some better script logic for BTRFS support Orabug: 32448171 - Do not add shim...