7 matches found
OPENSUSE-SU-2026:20244-1 Security update for cockpit-machines, cockpit
This update for cockpit-machines, cockpit fixes the following issues: - CVE-2025-13465: Update the lodash dependencie to avoid prototype pollution. bsc1257324 Changes in cockpit-machines: - Update to 346 346 - Performance improvements - Translation updates 345 - New virtual machines don't get SPI...
Security update for cockpit-machines
This update for cockpit-machines fixes the following issues: CVE-2025-13465: Update the lodash dependencie to avoid prototype pollution. bsc1257324 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...
Security update for cockpit-machines
This update for cockpit-machines fixes the following issues: CVE-2025-13465: Update the lodash dependencie to avoid prototype pollution. bsc1257324 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...
SUSE-SU-2026:0396-1 Security update for cockpit-machines
This update for cockpit-machines fixes the following issues: - CVE-2025-13465: Update the lodash dependencie to avoid prototype pollution. bsc1257324...
Fedora 42 : openqa (2026-84de1534b1)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-84de1534b1 advisory. This update bumps the bundled lodash to 4.17.23 to ensure openQA is protected against CVE-2025-13465. It likely was not vulnerable in any case, though, as I...
SUSE-SU-2026:0379-1 Security update for cockpit-podman
This update for cockpit-podman fixes the following issues: - CVE-2025-13465: Update the lodash dependencie to avoid prototype pollution. bsc1257324...
@braneframe/plugin-github (>=0.1.53-main.0b45885 <=0.6.7-staging.e9eb1ed), @dxos/plugin-github (>=0.6.8 <=0.7.4-staging.f7e8224) +26 more potentially affected by CVE-2020-8203 via lodash.update (=4.10.2)
lodash.update NPM version =4.10.2 is affected by a known vulnerability. The following packages have a transitive dependency on lodash.update and may be impacted: - @braneframe/plugin-github =0.1.53-main.0b45885, =0.6.8, =0.2.19, =0.0.1, =5.5.0, =22.1.0, =5.2.0, =4.0.0, =1.0.0, =1.12.0, =1.0.0,...