5836 matches found
Important: Red Hat Security Advisory: Assisted Installer RHEL 8 components for Multicluster Engine for Kubernetes 2.6.12
Assisted installer RHEL 8 components for the multicluster engine for Kubernetes 2.6.12 General Availability release, with updates to container images. Assisted Installer RHEL 8 integrates components for the general multicluster engine for Kubernetes 2.6.12 release that simplify the process of...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hciuart: A missing NULL check was added in h5enqueue. The Syzbot encountered a general protection fault in pmruntimeresume. The issue was due to a missing NULL check. hu-serdev can be NULL, and we should not blindly...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: ftrace: Clean up the hash of directfunctions in case of register failures. The following GPF messages are observed when registerftracedirect fails: General protection fault, likely for non-canonical addresses ...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: fs/ntfs3: Fixed a general protection fault in runismappedfull. ntfscreate inode: Fixed the deletion of a non-resident attribute...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: mptcp: fixed TCP options overflow. Syzbot reported the following errors: Oops: general protection fault, likely due to a non-canonical address 0xdffffc0000000001: 0000 1 PREEMPT SMP KASAN PTI KASAN: null-ptr-deref in range...
alloy-1.17.0-1.1 on GA media (moderate)
alloy-1.17.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:11053-1 Rating: moderate Cross-References: CVE-2026-25680 CVE-2026-25681 CVE-2026-33532 CVE-2026-39821 CVE-2026-39827 CVE-2026-39830 CVE-2026-39831 CVE-2026-39834 CVE-2026-44740 CVE-2026-45678 CVE-2026-45682 CVE-2026-45685...
WordPress WP DSGVO Tools (GDPR) plugin <= 3.1.39 - Missing Authorization to Unauthenticated Sensitive Personal Data Disclosure vulnerability
Missing Authorization to Unauthenticated Sensitive Personal Data Disclosure vulnerability discovered by kalomba - KAPENTEST in WordPress Plugin WP DSGVO Tools GDPR versions = 3.1.39...
OPENSUSE-SU-2026:11058-1 python311-starlette-1.3.1-1.1 on GA media
These are all security issues fixed in the python311-starlette-1.3.1-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11060-1 tinyproxy-1.11.3-3.1 on GA media
These are all security issues fixed in the tinyproxy-1.11.3-3.1 package on the GA media of openSUSE Tumbleweed...
kernel: md/bitmap: fix GPF in write_page caused by resize race
A flaw was found in the Linux kernel's md/bitmap component. This vulnerability involves a use-after-free race condition that occurs during array resize operations. When the bitmapdaemonwork and bitmapresize functions execute concurrently, they can access memory pages that have already been freed...
CVE-2026-46937
Vulnerability in the Oracle iSetup product of Oracle E-Business Suite component: General Ledger Update Transform, Reports. Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2026-46893
Vulnerability in the JD Edwards EnterpriseOne General Ledger product of Oracle JD Edwards component: E1 Foundation. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via SMB to compromise JD Edwards EnterpriseOne...
Vulnerabilities in Oracle JD Edwards EnterpriseOne
Oracle has identified several vulnerabilities in Oracle JD Edwards EnterpriseOne, including the modules Tools, Accounts Payable, Human Resources Management, General Ledger, Order Promising, and Project Costing, specifically for versions 9.2.0.0 to 9.2.26.2. These vulnerabilities enable attackers ...
kernel: md/bitmap: fix GPF in write_page caused by resize race
A flaw was found in the Linux kernel's md/bitmap component. This vulnerability involves a use-after-free race condition that occurs during array resize operations. When the bitmapdaemonwork and bitmapresize functions execute concurrently, they can access memory pages that have already been freed...
Important: Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.21.2
The 1.21.2 GA release of Red Hat OpenShift Pipelines Operator.. For more details see product documentation. The 1.21.2 release of Red Hat OpenShift Pipelines Operator...
OPENSUSE-SU-2026:11047-1 traefik-3.7.5-1.1 on GA media
These are all security issues fixed in the traefik-3.7.5-1.1 package on the GA media of openSUSE Tumbleweed...
GHSA-9X8Q-7H8H-WCW9 vulnerabilities
Vulnerabilities for packages: mlflow, metaflow-service-fips, py3-vllm-cuda-12.4, py3-vllm-cuda-12.9, mlflow-fips, authentik-fips, text-generation-inference, request-1276, tritonserver-backend-vllm-cuda-13.0, authentik...
Moderate: Red Hat Security Advisory: General availability of the satellite/iop-yuptoo-rhel9 container image
A new satellite/iop-yuptoo-rhel9 container image is now generally available in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running services, and...
Important: Red Hat Security Advisory: General availability of the satellite/iop-remediations-rhel9 container image
A new satellite/iop-remediations-rhel9 container image is now generally available in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running services, an...
PT-2026-50040
Name of the Vulnerable Software and Affected Versions Oracle iSetup versions 12.2.3 through 12.2.15 Description An issue exists in the General Ledger Update Transform, Reports component of the Oracle iSetup product within Oracle E-Business Suite. A low privileged attacker with network access via...