Security update for distribution

This update for distribution rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15...

Security update for buildah

This update for buildah rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15.5...

PT-2026-40947

Open OnDemand is an open-source high-performance computing portal. Prior to 4.0.11, 4.1.5, and 4.2.2, specially crafted filenames can execute javascript in the file browser This vulnerability is fixed in 4.0.11, 4.1.5, and 4.2.2...

Microsoft HPC Pack < 6.3.8355 Local Privilege Escalation (CVE-2026-32184)

The version of Microsoft HPC Pack installed on the remote host is prior to 6.3.8355. It is, therefore, affected by a vulnerability: - Deserialization of untrusted data in Microsoft High Performance Compute Pack HPC allows an authorized attacker to elevate privileges locally. CVE-2026-32184 Note...

CVE-2026-32184

Deserialization of untrusted data in Microsoft High Performance Compute Pack HPC allows an authorized attacker to elevate privileges locally...

KLA90984 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Monitor Agent can be...

PT-2026-32842

Уязвимость набора инструментов для высокопроизводительных вычислений HPC Microsoft HPC Pack связана с недостатками механизма десериализации. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии...

Security update for cosign

This update for cosign rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15....

[SECURITY] Fedora 43 Update: munge-0.5.18-1.fc43

MUNGE MUNGE Uid 'N' Gid Emporium is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having...

[SECURITY] Fedora 42 Update: munge-0.5.18-1.fc42

MUNGE MUNGE Uid 'N' Gid Emporium is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having...

Important: munge security update

MUNGE MUNGE Uid 'N' Gid Emporium is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having...

Security update for apptainer

This update for apptainer fixes the following issues: CVE-2025-58190: Fixed a HTML parser misimplementation of a part of the HTML specification for table related tags. bsc1258048. CVE-2025-47911: Fixed an issue where the HTML parser takes a very long time or even never returns. bsc1258047. Patch...

CVE-2022-26052

Uncontrolled search path element in the IntelR MPI Library before version 2021.6 for IntelR oneAPI HPC Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-26062

Uncontrolled search path element in the IntelR Trace Analyzer and Collector before version 2021.6 for IntelR oneAPI HPC Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...

Open OnDemand 安全漏洞

Open OnDemand is an open source implementation of Open Interactive HPC over the Web from Ohio Supercomputer Center. A security vulnerability exists in Open OnDemand 4.0.8 and earlier versions, which originates when the Apache proxy passes sensitive headers to the origin server, potentially leadin...

Intel HPC Toolkit Privilege Escalation Vulnerability (INTEL-SA-01386)

Intel® oneAPI HPC Toolkit is installed on the remote Windows host. It is, therefore, affected by an escalation of privilege vulnerability: - Uncontrolled search path for the Intel® oneAPI HPC Toolkit and 2025.2: User Applications may allow an escalation of privilege. Unprivileged software...

ITT API Software Advisory

Summary: A potential security vulnerability in some Instrumentation and Tracing Technology API ITT API software may allow escalation of privilage. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-31931 Description: Uncontrolled...

Intel® MPI Library Software Advisory

Summary: A potential security vulnerability in some Intel® MPI Library software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-35972 Description: Uncontrolled search path for the Intel MPI...

EUVD-2010-1666

Malware in sbrugna...

EUVD-2022-30620

Malicious code in bioql PyPI...