100 matches found
CVE-2026-46680 vulnerabilities
Vulnerabilities for packages: trivy-operator, containerd, grype, kaniko, kots, kube-arangodb, scorecard, gatekeeper, teleport, dagger, opa-envoy, skaffold, zarf, datadog-agent, cluster-api-helm-controller, kubevela, docker, eksctl, fuse-overlayfs-snapshotter, tigera-operator, consul-k8s, k9s,...
CVE-2026-46680 vulnerabilities
Vulnerabilities for packages: grype, opa, kube-mgmt-fips, linkerd2-fips, grype-db, k9s, neuvector-fips, trivy-operator, kubescape-server-fips, k9s-fips, chaos-mesh-fips, kubevela-fips, spegel, k8sgpt, zarf, trivy, cluster-api-helm-controller-fips, osv-scanner, teleport, k3s, headlamp-fips,...
SUSE CVE-2026-31465
In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...
EUVD-2026-24809
In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...
CVE-2026-31465
CVE-2026-31465 in the Linux kernel concerns the writeback path for filesystems without data integrity guarantees (e.g., fuse). The fix adds a SB_I_NO_DATA_INTEGRITY superblock flag; when set, sync kicks off writeback of dirty inodes but does not wait for flusher threads to finish. The change move...
PT-2026-34370
In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SB I NO DATA INTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set...
GHSA-W4GW-W5JQ-G9JH vulnerabilities
Vulnerabilities for packages: wuzz, k3s, cilium-envoy, aws-load-balancer-controller, runc, fuse-overlayfs-snapshotter, k8s-device-plugin, gitness...
GHSA-W4GW-W5JQ-G9JH vulnerabilities
Vulnerabilities for packages: cilium-envoy, gendesk, fuse-overlayfs-snapshotter, aws-load-balancer-controller, k8s-device-plugin, terraform, wuzz, rke2-runtime, localstack, backup-restore-operator, nvidia-gpu-operator-validator, gitness, cilium-envoy-fips, k3s, gitlab-rails-ce, rke2-runtime-fips,...
CVE-2025-58190 vulnerabilities
Vulnerabilities for packages: cilium-envoy, gendesk, fuse-overlayfs-snapshotter, aws-load-balancer-controller, k8s-device-plugin, terraform, wuzz, rke2-runtime, localstack, backup-restore-operator, nvidia-gpu-operator-validator, gitness, cilium-envoy-fips, k3s, gitlab-rails-ce, rke2-runtime-fips,...
CVE-2025-47911 vulnerabilities
Vulnerabilities for packages: cilium-envoy, gendesk, fuse-overlayfs-snapshotter, aws-load-balancer-controller, k8s-device-plugin, terraform, wuzz, rke2-runtime, localstack, backup-restore-operator, nvidia-gpu-operator-validator, gitness, cilium-envoy-fips, k3s, gitlab-rails-ce, rke2-runtime-fips,...
CVE-2025-58190 vulnerabilities
Vulnerabilities for packages: wuzz, k3s, cilium-envoy, aws-load-balancer-controller, runc, fuse-overlayfs-snapshotter, k8s-device-plugin, gitness...
CVE-2025-47911 vulnerabilities
Vulnerabilities for packages: wuzz, k3s, cilium-envoy, aws-load-balancer-controller, runc, fuse-overlayfs-snapshotter, k8s-device-plugin, gitness...
MiracleLinux 8 : container-tools: rhel8 (AXSA:2020-295:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-295:01 advisory. QEMU: Slirp: potential OOB access due to unsafe snprintf usages CVE-2020-8608 Bug Fixes: useradd and groupadd fail under rootless Buildah and podman Podman...
container-tools:rhel8 security update
aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/a7f8179 - fixes 'CVE-2025-47913...
CVE-2025-61729 vulnerabilities
Vulnerabilities for packages: polaris-fips, fluxcd-kustomize-mutating-webhook-fips, k9s, nri-discovery-kubernetes, tetragon-fips, nats, k8s-device-plugin, hugo-extended, spicedb-fips, kube-bench, terraform-mcp-server, k9s-fips, sqlexporter-fips, k8sgpt, newrelic-fluent-bit-output-fips,...
CVE-2025-61729 vulnerabilities
Vulnerabilities for packages: nri-postgresql, opentofu, go-discover, kserve-rest-proxy, kubernetes-csi-livenessprobe, minio-object-browser, sftpgo, s5cmd, thanos-operator, minio-operator, pulumi-language-yaml, newrelic-nri-kube-events, kubernetes-csi-node-driver-registrar, temporal-ui-server,...
GHSA-265R-HFXG-FHMG vulnerabilities
Vulnerabilities for packages: cilium-cli, grype, kots, flux-source-controller, gatekeeper, teleport, dagger, opa-envoy, skaffold, flux-helm-controller, nerdctl, zarf, datadog-agent, cluster-api-helm-controller, kubevela, docker, eksctl, rancher-fleet, fuse-overlayfs-snapshotter, consul-k8s,...
fuse-overlayfs bug fix and enhancement update
An update is available for fuse-overlayfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Lin...
container-tools:ol8 security update
aardvark-dns buildah 2:1.33.11-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/fe85f0d - Resolves: RHEL-61853 2:1.33.10-1 - update to the latest content of...
Oracle Linux 8 : container-tools:ol8 (ELSA-2024-8038)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8038 advisory. aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah cockpit-podman conmon containernetworking-plugins...