Lucene search
+L

39 matches found

F5 Networks
F5 Networks
added 2025/07/24 7:58 p.m.9 views

K000152723: Golang crypto/tls vulnerabilities CVE-2023-39321 and CVE-2023-39322

Security Advisory Description CVE-2023-39321 Processing an incomplete post-handshake message for a QUIC connection can cause a panic. CVE-2023-39322 QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection...

7.5CVSS6.6AI score0.01146EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.8 views

Moderate: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: crypto/tls: panic when processing post-handshake message on QUIC connections...

9.8CVSS7.3AI score0.01952EPSS
Exploits0References14
OSV
OSV
added 2025/05/07 7:11 p.m.12 views

RLSA-2024:0121 Moderate: container-tools:4.0 security update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang: archive/tar: unbounded memory consumption when reading headers CVE-2022-2879 golang: net/http/httputil: ReverseProxy should not forward unparseable query...

7.5CVSS7.2AI score0.02607EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2023-39322

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause...

7.5CVSS6.8AI score0.01137EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/11/19 12:0 a.m.15 views

Oracle Linux 9 : runc (ELSA-2024-9200)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-9200 advisory. - Rebuild for CVEs: CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - rebuild for following CVEs: CVE-2021-43784 CVE-2022-41724 CVE-2023-28642 - runc 1.1.5 resolve...

7.8CVSS7AI score0.01677EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2024/11/19 12:0 a.m.25 views

Oracle Linux 9 : buildah (ELSA-2024-9097)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-9097 advisory. - Rebuild for CVEs: CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 - rebuild for following CVEs: CVE-2023-25173 CVE-2022-41724...

9.8CVSS6.9AI score0.04561EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/05/29 12:0 a.m.50 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (etcd) (RHSA-2024:3467)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:3467 advisory. A highly-available key value store for shared configuration Security Fixes: Incomplete fix for CVE-2023-39325/CVE-2023-44487 in OpenStack...

7.5CVSS7.3AI score0.99999EPSS
Exploits21References20
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.48 views

RHEL 8 : Red Hat OpenStack Platform 16.2 (etcd) (RHSA-2024:3352)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:3352 advisory. A highly-available key value store for shared configuration Security Fixes: Incomplete fix for CVE-2023-39325/CVE-2023-44487 in OpenStack...

7.5CVSS7.3AI score0.99999EPSS
Exploits21References21
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.83 views

RHEL 8 : container-tools:rhel8 (RHSA-2024:2988)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2988 advisory. The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: urllib3:...

7.5CVSS7.3AI score0.93305EPSS
Exploits7References43
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.28 views

RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update (Moderate) (RHSA-2023:7517)

The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:7517 advisory. Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT...

7.5CVSS7.1AI score0.01146EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/18 2:18 p.m.50 views

Security Bulletin: IBM Cloud Pak for Data Scheduling contains a vulnerable yq package. [CVE-2023-39320, CVE-2023-39321 and CVE-2023-39322]

Summary Yq is used by IBM Cloud Pak for Data Scheduling as part of the Ansible operator used for installation of the Scheduler. This bulletin identifies the steps to take to address the below vulnerabilities. Vulnerability Details CVEID:CVE-2023-39320 DESCRIPTION: Golang Go could allow a remote...

9.8CVSS8.3AI score0.01424EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.35 views

openSUSE: Security Advisory for go1.21 (SUSE-SU-2023:3701-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.01424EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/01/10 11:36 a.m.44 views

Moderate: Red Hat Security Advisory: container-tools:4.0 security update

An update for the container-tools:4.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

7.5CVSS6.7AI score0.02607EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2023/12/15 12:0 a.m.36 views

AlmaLinux 9 : podman (ALSA-2023:7765)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:7765 advisory. - Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA...

7.5CVSS7.1AI score0.01328EPSS
Exploits0References6
Oracle linux
Oracle linux
added 2023/12/14 12:0 a.m.35 views

podman security update

2:4.6.1-7.0.1 - Rebuild for following CVEs: CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Resolves: 2228743 - Resolves: 2237773 - Resolves: 2237776 - Resolves: 2237777 - Resolves: 2237778 2:4.6.1-6.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case...

7.5CVSS7.8AI score0.01328EPSS
Exploits0
Oracle linux
Oracle linux
added 2023/12/13 12:0 a.m.49 views

containernetworking-plugins security update

1:1.3.0-6 - rebuild for following CVEs: CVE-2023-29409 CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 - Resolves: 2228743 - Resolves: 2237773 - Resolves: 2237776 - Resolves: 2237777 - Resolves: 2237778 1:1.3.0-5 - fix path to dhcp service - Resolves: RHEL-3140...

7.5CVSS6.6AI score0.01328EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/12/12 5:29 p.m.39 views

Moderate: Red Hat Security Advisory: buildah security update

An update for buildah is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS6.7AI score0.01328EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/12/12 5:25 p.m.36 views

Moderate: Red Hat Security Advisory: runc security update

An update for runc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

7.5CVSS6.7AI score0.01328EPSS
Exploits0References4
OSV
OSV
added 2023/12/12 12:0 a.m.32 views

ALSA-2023:7763 Moderate: runc security update

The runC tool is a lightweight, portable implementation of the Open Container Format OCF that provides container runtime. Security Fixes: golang: crypto/tls: slow verification of certificate chains containing large RSA keys CVE-2023-29409 golang: crypto/tls: panic when processing post-handshake...

7.5CVSS7.1AI score0.01328EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2023/12/12 12:0 a.m.56 views

Moderate: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS7.8AI score0.01328EPSS
Exploits0References12
Rows per page
Query Builder