CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: docker-cli-buildx, tw, manifest-tool, helm-operator, xeol, k8ssandra-client, ctop, osv-scanner, gogatekeeper, fuse-overlayfs-snapshotter, docker-compose, kubescape, kubescape-operator, k9s, trivy-operator, envoy-gateway, kube-arangodb, kots, k3s, consul-k8s, rancher,...

CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: packer, grype, containerd-fips, spegel-fips, neuvector-fips, trivy-operator-fips, helm-mapkubeapis, buildkitd, opa-envoy, helm, cloudbeat, cg, docker-cli-buildx-fips, chainctl-fips, neuvector-scanner-fips, k8ssandra-client, kubescape-server,...

SUSE CVE-2026-31465

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

EUVD-2026-24809

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

CVE-2026-31465

CVE-2026-31465 in the Linux kernel concerns the writeback path for filesystems without data integrity guarantees (e.g., fuse). The fix adds a SB_I_NO_DATA_INTEGRITY superblock flag; when set, sync kicks off writeback of dirty inodes but does not wait for flusher threads to finish. The change move...

PT-2026-34370

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SB I NO DATA INTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set...

GHSA-W4GW-W5JQ-G9JH vulnerabilities

Vulnerabilities for packages: wuzz, aws-load-balancer-controller, k3s, runc, gitness, fuse-overlayfs-snapshotter, k8s-device-plugin, cilium-envoy...

GHSA-W4GW-W5JQ-G9JH vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, nvidia-gpu-operator-validator, gendesk, rke2-runtime, localstack, gitlab-rails-ce, runc, cilium-envoy, gitness, k3s, k8s-device-plugin, aws-load-balancer-controller, terraform, cilium-envoy-fips, rke2-runtime-fips, backup-restore-operator,...

CVE-2025-58190 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, nvidia-gpu-operator-validator, gendesk, rke2-runtime, localstack, gitlab-rails-ce, runc, cilium-envoy, gitness, k3s, k8s-device-plugin, aws-load-balancer-controller, terraform, cilium-envoy-fips, rke2-runtime-fips, backup-restore-operator,...

CVE-2025-47911 vulnerabilities

Vulnerabilities for packages: fuse-overlayfs-snapshotter, nvidia-gpu-operator-validator, gendesk, rke2-runtime, localstack, gitlab-rails-ce, runc, cilium-envoy, gitness, k3s, k8s-device-plugin, aws-load-balancer-controller, terraform, cilium-envoy-fips, rke2-runtime-fips, backup-restore-operator,...

CVE-2025-58190 vulnerabilities

Vulnerabilities for packages: wuzz, aws-load-balancer-controller, k3s, runc, gitness, fuse-overlayfs-snapshotter, k8s-device-plugin, cilium-envoy...

CVE-2025-47911 vulnerabilities

Vulnerabilities for packages: wuzz, aws-load-balancer-controller, k3s, runc, gitness, fuse-overlayfs-snapshotter, k8s-device-plugin, cilium-envoy...

MiracleLinux 8 : container-tools: rhel8 (AXSA:2020-295:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-295:01 advisory. QEMU: Slirp: potential OOB access due to unsafe snprintf usages CVE-2020-8608 Bug Fixes: useradd and groupadd fail under rootless Buildah and podman Podman...

container-tools:rhel8 security update

aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/a7f8179 - fixes 'CVE-2025-47913...

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: grype, kuberay-operator-fips, k8sgateway, amazon-vpc-cni-plugins-fips, amazon-cloudwatch-agent-operator-fips, regclient-fips, hello-world-golang, knative-operator-fips, spegel-fips, nfpm, cass-operator-fips, flux-image-automation-controller-fips,...

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: spire-controller-manager, kafka-proxy, sftpgo-plugin-pubsub, promxy, octo-sts, kubernetes-event-exporter, dgraph, kube-state-metrics, falco-exporter, stakater-reloader, pdfcpu, kserve-modelmesh-serving, sonobuoy, paranoia, openbao-k8s,...

GHSA-265R-HFXG-FHMG vulnerabilities

Vulnerabilities for packages: docker-cli-buildx, flux-helm-controller, flux-source-controller, helm-operator, xeol, k8ssandra-client, ctop, osv-scanner, fuse-overlayfs-snapshotter, docker-compose, kubescape, cert-manager-cmctl, envoy-gateway, melange, kots, cilium-cli, k3s, skaffold, datadog-agen...

fuse-overlayfs bug fix and enhancement update

An update is available for fuse-overlayfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Lin...

container-tools:ol8 security update

aardvark-dns buildah 2:1.33.11-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/fe85f0d - Resolves: RHEL-61853 2:1.33.10-1 - update to the latest content of...

Oracle Linux 8 : container-tools:ol8 (ELSA-2024-8038)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8038 advisory. aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah cockpit-podman conmon containernetworking-plugins...