Lucene search
K

17347 matches found

RedHat Linux
RedHat Linux
added 2025/11/25 8:2 a.m.4 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS6.6AI score0.00526EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/11/25 8:2 a.m.9 views

Important: Red Hat Security Advisory: podman security update

An update for podman is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7.1AI score0.00526EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2025/11/25 5:23 a.m.6 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS6.6AI score0.00526EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/11/25 5:3 a.m.5 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS6.6AI score0.00526EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/11/25 12:0 a.m.4 views

AlmaLinux 10 : podman (ALSA-2025:21220)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:21220 advisory. runc: container escape and denial of service due to arbitrary write gadgets and procfs write redirects CVE-2025-52881 Tenable has extracted the preceding...

7.5CVSS7AI score0.00526EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/11/25 12:0 a.m.3 views

Fedora 42 : python-mkdocs-include-markdown-plugin (2025-cb26113de5)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-cb26113de5 advisory. v7.2.0 New features - Add new argument order to sort multiple inclusions. v7.1.8 Bug fixes - Escape substitution placeholders to prevent malformed...

6.5CVSS5.6AI score0.00318EPSS
Exploits0References2
OSV
OSV
added 2025/11/25 12:0 a.m.5 views

ALSA-2025:22012 Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS6.9AI score0.00526EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/11/25 12:0 a.m.6 views

RHEL 9 : buildah (RHSA-2025:22011)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:22011 advisory. The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a...

7.5CVSS7AI score0.00526EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/11/25 12:0 a.m.2 views

RHEL 10 : buildah (RHSA-2025:22012)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:22012 advisory. The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a...

7.5CVSS7AI score0.00526EPSS
Exploits1References6
Oracle linux
Oracle linux
added 2025/11/25 12:0 a.m.6 views

podman security update

5.6.0-7.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 6:5.6.0-7 - update to the latest content of...

7.3CVSS7.3AI score0.01008EPSS
Exploits1
AlmaLinux
AlmaLinux
added 2025/11/25 12:0 a.m.4 views

Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS7AI score0.00526EPSS
Exploits1References6
OSV
OSV
added 2025/11/25 12:0 a.m.5 views

ALSA-2025:22011 Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS6.9AI score0.00526EPSS
Exploits1References6
Mageia
Mageia
added 2025/11/24 6:27 p.m.31 views

Updated ruby-rack packages fix security vulnerabilities

Possible Log Injection in Rack::CommonLogger. CVE-2025-25184 Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection. CVE-2025-27111 Local File Inclusion in Rack::Static. CVE-2025-27610...

7.5CVSS6.9AI score0.01095EPSS
Exploits1References2
OSV
OSV
added 2025/11/24 6:27 p.m.5 views

MGASA-2025-0311 Updated ruby-rack packages fix security vulnerabilities

Possible Log Injection in Rack::CommonLogger. CVE-2025-25184 Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection. CVE-2025-27111 Local File Inclusion in Rack::Static. CVE-2025-27610...

7.5CVSS7.1AI score0.01095EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2025/11/24 11:21 a.m.7 views

USN-7851-2: runC regression

USN-7851-1 fixed vulnerabilities in runC. The introduction of a new upstream release has caused regressions in runc-app and runc-stable. This update fixes the problem. Original advisory details: Lei Wang and Li Fubang discovered that runC incorrectly handled masked paths. An attacker could possib...

7.3AI score
Exploits0References1
OSV
OSV
added 2025/11/24 11:21 a.m.6 views

USN-7851-2 runc-app, runc-stable regression

USN-7851-1 fixed vulnerabilities in runC. The introduction of a new upstream release has caused regressions in runc-app and runc-stable. This update fixes the problem. Original advisory details: Lei Wang and Li Fubang discovered that runC incorrectly handled masked paths. An attacker could possib...

5.8AI score
Exploits0References2
OSV
OSV
added 2025/11/24 7:56 a.m.7 views

SUSE-SU-2025:4184-1 Security update for tomcat

This update for tomcat fixes the following issues: - CVE-2025-55752: Fixed directory traversal via rewrite with possible RCE if PUT is enabled bsc1252753 - CVE-2025-55754: Fixed improper neutralization of escape, meta, or control sequences vulnerability bsc1252905 - CVE-2025-61795: Fixed denial o...

9.6CVSS8.8AI score0.66535EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2025/11/24 12:0 a.m.4 views

RHEL 8 / 9 : OpenShift Container Platform 4.14.59 (RHSA-2025:21328)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:21328 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

9.1CVSS7.2AI score0.00724EPSS
Exploits4References10
Tenable Nessus
Tenable Nessus
added 2025/11/24 12:0 a.m.2 views

Google Chrome < 98.0.4758.81 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 98.0.4758.81. It is, therefore, affected by multiple vulnerabilities as referenced in the 202202stable-channel-update-for-desktop advisory. - Out of bounds memory access in V8 in Google Chrome prior to 98.0.4758.80...

9.6CVSS7.5AI score0.00953EPSS
Exploits3References41
Tenable Nessus
Tenable Nessus
added 2025/11/24 12:0 a.m.6 views

Google Chrome < 98.0.4758.82 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 98.0.4758.82. It is, therefore, affected by multiple vulnerabilities as referenced in the 202202stable-channel-update-for-desktop advisory. - Out of bounds memory access in V8 in Google Chrome prior to 98.0.4758.80...

9.6CVSS7.5AI score0.00953EPSS
Exploits3References41
Rows per page
Query Builder