EulerOS 2.0 SP12 : xorg-x11-server (EulerOS-SA-2025-1844)

According to the versions of the xorg-x11-server package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A use-after-free flaw was found in X.Org and Xwayland. When changing an alarm, the values of the change mask are evaluated one after the...

EulerOS 2.0 SP12 : iputils (EulerOS-SA-2025-1825)

According to the versions of the iputils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : ping in iputils through 20240905 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet,...

EulerOS 2.0 SP12 : golang (EulerOS-SA-2025-1821)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate...

EulerOS 2.0 SP12 : libxml2 (EulerOS-SA-2025-1831)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap- based buffer under-read. To exploit thi...

EulerOS 2.0 SP12 : libxml2 (EulerOS-SA-2025-1830)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap- based buffer under-read. To exploit thi...

EulerOS 2.0 SP12 : python-jinja2 (EulerOS-SA-2025-1839)

According to the versions of the python-jinja2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr filte...

EulerOS 2.0 SP12 : haproxy (EulerOS-SA-2025-1822)

According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sampleconvregsub heap-based buffer overflow because of mishandling of the...

EulerOS 2.0 SP12 : glibc (EulerOS-SA-2025-1818)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Untrusted LDLIBRARYPATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of...

EulerOS 2.0 SP10 : golang (EulerOS-SA-2025-1775)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization head...

EulerOS 2.0 SP10 : libtheora (EulerOS-SA-2025-1781)

According to the versions of the libtheora packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : ochufftreeunpack in huffdec.c in libtheora in Theora through 1.0 7180717 has an invalid negative left shift. NOTE: this is disputed by third...

EulerOS 2.0 SP10 : golang (EulerOS-SA-2025-1798)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization head...

EulerOS 2.0 SP10 : ghostscript (EulerOS-SA-2025-1773)

According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in Artifex Ghostscript before 10.05.0. The DOCXWRITE TXTWRITE device has a text buffer overflow via long characters t...

EulerOS 2.0 SP10 : grub2 (EulerOS-SA-2025-1776)

According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in command/gpg. In some scenarios, hooks created by loaded modules are not removed when the related module is unloaded. This flaw...

EulerOS 2.0 SP13 : docker-engine (EulerOS-SA-2025-1685)

According to the versions of the docker-engine packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers...

EulerOS 2.0 SP13 : grub2 (EulerOS-SA-2025-1688)

According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in command/gpg. In some scenarios, hooks created by loaded modules are not removed when the related module is unloaded. This flaw...

EulerOS 2.0 SP13 : kernel (EulerOS-SA-2025-1689)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : usbnet: gl620a: fix endpoint checking in genelinkbind.CVE-2025-21877 ASoC: soc-compress: prevent the potentially use of null pointerCVE-2021-47650...

EulerOS 2.0 SP13 : xorg-x11-server (EulerOS-SA-2025-1697)

According to the versions of the xorg-x11-server package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect may fail if it cannot allocate...

EulerOS 2.0 SP13 : vim (EulerOS-SA-2025-1711)

According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Vim is a greatly improved version of the good old UNIX editor Vi. Vim allows to redirect screen messages using the :redir ex command to register,...

EulerOS 2.0 SP11 : libxml2 (EulerOS-SA-2025-1670)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c.CVE-2025-27113 libxml2 before 2.12.10...

EulerOS 2.0 SP11 : elfutils (EulerOS-SA-2025-1649)

According to the versions of the elfutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function...