CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: skaffold, helm-set-status, syft, dagger, neuvector-scanner, kubescape-operator, datadog-agent, fuse-overlayfs-snapshotter, rancher-agent, zot, docker, kubescape, tw, xeol, consul-k8s, docker-compose, kargo, rancher-helm, teleport, kaniko, cluster-api-helm-controller,...

CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: google-osconfig-agent, trivy-fips, helm-operator, docker-cli-buildx, eksctl, chaos-mesh, kubescape, docker-cli-buildx-fips, packer, wolfictl, cluster-api-helm-controller-fips, osv-scanner, consul-k8s, amazon-ecs-agent-fips, datadog-agent, steampipe, envoy-gateway-fip...

SUSE CVE-2026-31465

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

EUVD-2026-24809

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

CVE-2026-31465

CVE-2026-31465 in the Linux kernel concerns the writeback path for filesystems without data integrity guarantees (e.g., fuse). The fix adds a SB_I_NO_DATA_INTEGRITY superblock flag; when set, sync kicks off writeback of dirty inodes but does not wait for flusher threads to finish. The change move...

PT-2026-34370

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SB I NO DATA INTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set...

GHSA-W4GW-W5JQ-G9JH vulnerabilities

Vulnerabilities for packages: gitness, k8s-device-plugin, wuzz, k3s, runc, fuse-overlayfs-snapshotter, aws-load-balancer-controller, cilium-envoy...

GHSA-W4GW-W5JQ-G9JH vulnerabilities

Vulnerabilities for packages: k8s-device-plugin, wuzz, terraform, gendesk, runc, k3s, aws-load-balancer-controller, localstack, nvidia-gpu-operator-validator, rke2-runtime, rke2-runtime-fips, gitlab-rails-ce, cilium-envoy, backup-restore-operator, gitness, fuse-overlayfs-snapshotter,...

CVE-2025-58190 vulnerabilities

Vulnerabilities for packages: k8s-device-plugin, wuzz, terraform, gendesk, runc, k3s, aws-load-balancer-controller, localstack, nvidia-gpu-operator-validator, rke2-runtime, rke2-runtime-fips, gitlab-rails-ce, cilium-envoy, backup-restore-operator, gitness, fuse-overlayfs-snapshotter,...

CVE-2025-47911 vulnerabilities

Vulnerabilities for packages: k8s-device-plugin, wuzz, terraform, gendesk, runc, k3s, aws-load-balancer-controller, localstack, nvidia-gpu-operator-validator, rke2-runtime, rke2-runtime-fips, gitlab-rails-ce, cilium-envoy, backup-restore-operator, gitness, fuse-overlayfs-snapshotter,...

CVE-2025-47911 vulnerabilities

Vulnerabilities for packages: gitness, k8s-device-plugin, wuzz, k3s, runc, fuse-overlayfs-snapshotter, aws-load-balancer-controller, cilium-envoy...

CVE-2025-58190 vulnerabilities

Vulnerabilities for packages: gitness, k8s-device-plugin, wuzz, k3s, runc, fuse-overlayfs-snapshotter, aws-load-balancer-controller, cilium-envoy...

MiracleLinux 8 : container-tools: rhel8 (AXSA:2020-295:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-295:01 advisory. QEMU: Slirp: potential OOB access due to unsafe snprintf usages CVE-2020-8608 Bug Fixes: useradd and groupadd fail under rootless Buildah and podman Podman...

container-tools:rhel8 security update

aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/a7f8179 - fixes 'CVE-2025-47913...

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: falcoctl-fips, helm-operator, nvidia-container-toolkit, rabbitmq-cluster-operator-fips, secrets-store-csi-driver-provider-aws-fips, request-1279-14, newrelic-nri-kube-events-fips, amazon-vpc-cni-plugins-fips, falcosidekick-fips, kubernetes-dashboard-auth-fips,...

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: gostatsd, helm-set-status, smarter-device-manager, knative-operator, kubernetes-csi-external-snapshotter, kbld, prometheus-adapter, secrets-store-csi-driver-provider-aws, spire-controller-manager, pgpool2exporter, nova, boring-registry, ingress-nginx-controller,...

GHSA-265R-HFXG-FHMG vulnerabilities

Vulnerabilities for packages: skaffold, syft, dagger, neuvector-scanner, datadog-agent, fuse-overlayfs-snapshotter, cilium-cli, zot, docker, melange, kubescape, xeol, consul-k8s, docker-compose, kargo, teleport, kaniko, cluster-api-helm-controller, wolfictl, osv-scanner, cert-manager-cmctl, grype...

fuse-overlayfs bug fix and enhancement update

An update is available for fuse-overlayfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Lin...

container-tools:ol8 security update

aardvark-dns buildah 2:1.33.11-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/fe85f0d - Resolves: RHEL-61853 2:1.33.10-1 - update to the latest content of...

Oracle Linux 8 : container-tools:ol8 (ELSA-2024-8038)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8038 advisory. aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah cockpit-podman conmon containernetworking-plugins...