10 matches found
SUSE-SU-2026:22066-1 Security update for elemental-operator
This update for elemental-operator fixes the following issue - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header bsc1260277. Changes for elemental-operator: - Fix substitution - Fix reference in labels - Adapt labels to pass...
Security update for cosign
This update for cosign fixes the following issues: Update to version 3.0.5 jscSLE-23879. Security issues fixed: CVE-2025-11065: github.com/go-viper/mapstructure/v2: sensitive Information leak in logs bsc1250620. CVE-2025-58181: golang.org/x/crypto/ssh: invalidated number of mechanisms can cause...
[SECURITY] Fedora 43 Update: golangci-lint-2.7.1-1.fc43
Fast linters runner for Go...
Fedora 43 : golangci-lint (2025-cc4c533b49)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-cc4c533b49 advisory. Latest version - This build with the latest golang should also fix all the Go CVEs, although I did verify how/if this package is affected by these...
GHSA-FV92-FJC5-JJ9H vulnerabilities
Vulnerabilities for packages: swagger, tkn, glow, boring-registry, dataplaneapi, amazon-cloudwatch-agent-operator-fips, terraform-mcp-server, atlantis, gh, opa-fips, gitlab-cng-fips, kube-bench-fips, kube-state-metrics-fips, opentelemetry-operator, falcoctl-fips, grafana-alloy-fips, jaeger-fips,...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : cosign (SUSE-SU-2025:1333-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1333-1 advisory. - CVE-2024-6104: cosign: hashicorp/go-retryablehttp: Fixed sensitive information disclosure to l...
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: render-template, scorecard, kube-bench, thanos-operator, litefs, helm-operator, nri-mssql, k8sgpt-operator, secrets-store-csi-driver-provider-azure, local-path-provisioner, kubevela, cortex, up, nri-couchbase, cue, influx, paranoia, stakater-reloader, kubebuilder,...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: src, boring-registry, prometheus-redis-exporter-fips, kubernetes-csi-driver-hostpath, stakater-reloader, pulumi-language-dotnet, configmap-reload-fips, capslock, skaffold, kube-state-metrics, sigstore-scaffolding-fips, logstash-exporter-fips, kaniko, step-ca,...
Fedora: Security Advisory for golang-github-golangci-lint-1 (FEDORA-2022-3969b64d4b)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for golang-github-golangci-lint-1 (FEDORA-2022-fae3ecee19)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...