RHEL 9 : kernel (RHSA-2026:9836)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:9836 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: macvlan: fix possible UAF in...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to fix various security issues The following security issues were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255163. CVE-2023-53827: Bluetooth: L2CAP: Fix use-after-free in...

Security update for golang-github-prometheus-alertmanager

This update for golang-github-prometheus-alertmanager fixes the following issues: Update to version 0.28.1 jscPED-13285: Improved performance of inhibition rules when using Equal labels. Improve the documentation on escaping in UTF-8 matchers. Update alertmanagerconfighash metric help to document...

SUSE CVE-2025-40282

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: 6lowpan: reset link-local header on ipv6 recv path Bluetooth 6lowpan.c netdev has headerops, so it must set link-local header for RX skb, otherwise things crash, eg. with AFPACKET SOCKRAW Add missing skbresetmacheader...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990026)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990026 advisory. In the Linux kernel, the following vulnerability has been resolved: geneve: do not assume mac header is set in genevexmitskb We should not assume mac header is set i...

EUVD-2025-13226

Malicious code in bioql PyPI...

EUVD-2024-53284

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-38476

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpldosrhinline. Running lwtdstcacherefloop.sh in selftest with...

CVE-2022-24733

Sylius is an open source eCommerce platform. Prior to versions 1.9.10, 1.10.11, and 1.11.2, it is possible for a page controlled by an attacker to load the website within an iframe. This will enable a clickjacking attack, in which the attacker's page overlays the target application's interface wi...

UBUNTU-CVE-2025-37900

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix two issues in iommucopystructfromuser In the review for iommucopystructtouser helper, Matt pointed out that a NULL pointer should be rejected prior to dereferencing it:...

CVE-2025-37900 iommu: Fix two issues in iommu_copy_struct_from_user()

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix two issues in iommucopystructfromuser In the review for iommucopystructtouser helper, Matt pointed out that a NULL pointer should be rejected prior to dereferencing it:...

[slackware-security] python3

New python3 packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/python3-3.9.22-i586-1slack15.0.txz: Upgraded. This update fixes security issues: gh-131809 and gh-131261: Upgrade vendored expat to 2.7.1...

AZL-50706 CVE-2024-47685 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix nfrejectip6tcphdrput syzbot reported that nfrejectip6tcphdrput was possibly sending garbage on the four reserved tcp bits th-res1 Use skbputzero to clear the whole TCP header, as done in...

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (python-urllib3) security update

An update for python-urllib3 is now available for Red Hat OpenStack Platform 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

SUSE-SU-2023:0562-1 Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005998 fixes several issues. The following security issues were fixed: - CVE-2022-3564: Fixed use-after-free in l2capcore.c of the Bluetooth component bsc1206314. - CVE-2023-0179: Fixed incorrect arithmetics when fetching VLAN header bits bsc1207139...

SUSE-SU-2023:0547-1 Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005960 fixes several issues. The following security issues were fixed: - CVE-2022-3564: Fixed use-after-free in l2capcore.c of the Bluetooth component bsc1206314. - CVE-2023-0179: Fixed incorrect arithmetics when fetching VLAN header bits bsc1207139...

OPENSUSE-SU-2022:2941-1 Security update for libslirp

This update for libslirp fixes the following issues: - CVE-2021-3593: Fixed invalid pointer initialization may lead to information disclosure udp6 bsc1187365. Non-security fixes: - Fix the version header bsc1201551...

SUSE-SU-2022:2941-1 Security update for libslirp

This update for libslirp fixes the following issues: - CVE-2021-3593: Fixed invalid pointer initialization may lead to information disclosure udp6 bsc1187365. Non-security fixes: - Fix the version header bsc1201551...

SUSE-SU-2022:2846-1 Security update for zlib

This update for zlib fixes the following issues: - CVE-2022-37434: Fixed heap-based buffer over-read or buffer overflow via large gzip header extra field bsc1202175...

CLSA-2022-1656958887 Fixed CVE-2022-31813 in httpd-43.module_el8.5.0+2067+6f259f31.tuxcare.els7

ELS-190: Fix undefined reference to PROXYSHOULDPING100CONTINUE in approxycreatehdrbrgd that occured in httpd-2.4.37-CVE-2022-31813.patch...