PT-2026-33777

Name of the Vulnerable Software and Affected Versions Glances versions prior to 4.5.4 Description A Server-Side Request Forgery SSRF issue exists in the Glances IP plugin due to improper validation of the public api configuration parameter. The value of public api is passed directly to the urlope...

Fedora 44 : cpp-httplib (2026-03599f0b32)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-03599f0b32 advisory. Update to 0.38.0 rhbz2447261 - Filename sanitization for path traversal prevention Added sanitizefilename to prevent path traversal attacks via malicious...

Fedora 43 : cpp-httplib (2026-e76feaf213)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-e76feaf213 advisory. Update to 0.38.0 rhbz2447261 - Filename sanitization for path traversal prevention Added sanitizefilename to prevent path traversal attacks via malicious...

EUVD-2022-54621

In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. While at it, add a bunch of comments to attempt to document the current state of tribal knowledge about RSB attacks and what exactly i...

Subscription Health Dashboard 2025 Update

Deployment health is mission-critical in today’s digital environment. Duplicate records, ghost hosts, and stale data obscure insights, slow decisions, and erode confidence. Building on last year’s Subscription Health Dashboard blog and best practices, the 2025 update delivers cleaner visibility,...

CVE-2024-53526

creationtimestamp| type| source ---|---|--- 2025-01-08 19:08:25+00:00| seen| https://infosec.exchange/users/cve/statuses/113794305549488094 2025-01-08 19:14:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/783 2025-01-08 19:15:57+00:00| seen|...

OPENSUSE-SU-2024:0130-1 Security update for git-cliff

This update for git-cliff fixes the following issues: - update to 2.2.2: changelog Allow adding custom context changelog Ignore empty lines when using splitcommits parser Allow matching empty commit body Documentation updates - update to 2.2.1: Make rendering errors more verbose Support detecting...

SUSE-SU-2024:1497-1 Security update for skopeo

This update for skopeo fixes the following issues: - Update to version 1.14.2: release-1.14 Bump Skopeo to v1.14.2 release-1.14 Bump c/image to v5.29.2, c/common to v0.57.3 fixes bsc1219563 - Update to version 1.14.1: Bump to v1.14.1 fixdeps: update module github.com/containers/common to v0.57.2...

SUSE-SU-2024:0726-1 Security update for Java

This update for Java fixes the following issues: apache-commons-codec was updated to version 1.16.1: - Changes in version 1.16.1: New features: + Added Maven property project.build.outputTimestamp for build reproducibility Bugs fixed: + Correct error in Base64 Javadoc + Added minimum Java version...

SUSE-SU-2023:4513-1 Security update for apache2-mod_jk

This update for apache2-modjk fixes the following issues: Update to version 1.2.49: Apache Retrieve default request id from moduniqueid. It can also be taken from an arbitrary environment variable by configuring 'JkRequestIdIndicator'. Don't delegate the generatation of the response body to httpd...

Metasploit Weekly Wrap-Up

Possible Web Service Removal Metasploit has support for running with a local database, or from a remote web service which can be initialized with msfdb init --component webservice. Future versions of Metasploit Framework may remove the msfdb remote webservice. Users that leverage this functionali...

SUSE-FU-2022:4496-1 Feature update for SCA patterns

This update for SCA patterns fixes the following issues: sca-patterns-base: - Version update from 1.3.1 to 1.5.0 to implement the conversion of SCA Tool to Python3 jscSLE-25064, jscSLE-24335: Convert SCA Tool from Python2 to Python3 bsc1191005, SLE-21579 Added Core.loadFullFile for sectionless...

OPENSUSE-SU-2022:10016-1 Security update for firejail

This update for firejail fixes the following issues: firejail was updated to version 0.9.70: - CVE-2022-31214 - root escalation in --join logic boo1199148 Reported by Matthias Gerstner, working exploit code was provided to our development team. In the same time frame, the problem was independentl...

SUSE-SU-2022:1565-1 Security update for giflib

This update for giflib fixes the following issues: - CVE-2019-15133: Fixed a divide-by-zero exception in the decoder function DGifSlurp in dgiflib.c if the height field of the ImageSize data structure is equal to zero bsc1146299. - CVE-2018-11490: Fixed a heap-based buffer overflow in...

SUSE-SU-2022:0310-1 Security Beta update for SUSE Manager Client Tools

This update fixes the following issues: grafana: - Update to version 7.5.12: Fix markdown path traversal 42969, bsc1193688, CVE-2021-43813 - Recreate tarballs using the makefile to update the npm and go modules required - Update to version 7.5.11: Fix Snapshot authentication bypass bsc1191454,...

VMware Response to Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)

1. Impacted Products Under Evaluation VMware Horizon VMware vCenter Server VMware HCX VMware NSX-T Data Center VMware Unified Access Gateway VMware WorkspaceOne Access VMware Identity Manager VMware vRealize Operations VMware vRealize Operations Cloud Proxy VMware vRealize Automation VMware...

SUSE-SU-2021:2660-1 Security update for grafana

This update for grafana fixes the following issues: - CVE-2021-27358: unauthenticated remote attackers to trigger a Denial of Service via a remote API call bsc1183803 - Update to version 7.5.7: Updated relref to 'Configuring exemplars' section 34240 34243 Added exemplar topic 34147 34226 Quota: D...

Security update for cobbler (moderate)

openSUSE Security Update: Security update for cobbler Announcement ID: openSUSE-SU-2021:0058-1 Rating: moderate References: 1020376 1029276 1048183 1074594 1075014 1081714 1081739 1090205 1097733 1101670 1104189 1104190 1104287 1105440 1105442 1113747 1128754 1128926 1130658 1134588 1149075 11518...

SUSE-SU-2019:2941-1 Security update for libseccomp

This update for libseccomp fixes the following issues: Update to new upstream release 2.4.1: Fix a BPF generation bug where the optimizer mistakenly identified duplicate BPF code blocks. Updated to 2.4.0 bsc1128828 CVE-2019-9893: Update the syscall table for Linux v5.0-rc5 Added support for the...

openSUSE Security Update : libseccomp (openSUSE-2019-2283)

This update for libseccomp fixes the following issues : Security issues fixed : - CVE-2019-9893: An incorrect generation of syscall filters in libseccomp was fixed bsc1128828 libseccomp was updated to new upstream release 2.4.1 : - Fix a BPF generation bug where the optimizer mistakenly identifie...