USN-7510-4 linux-intel-iot-realtime, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

Metasploit Wrap-Up 05/16/2025

New modules for everyone This week’s release is packed with new module content. We have RCE modules for Car Rental System 1.0, Wordpress plugins SureTriggers, User Registration and Membership. We also have a persistence module for LINQPad software and an auxiliary module for POWERCOM UPSMON PRO. ...

USN-7512-1 linux-gcp-5.15 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

USN-7511-2 linux-gcp-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

USN-7511-1 linux-gcp vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

org.apache.iotdb:client-example (>=1.1.2 <=1.3.4-1), org.apache.iotdb:customize-mqtt-example (>=1.0.0 <=1.3.3) +17 more potentially affected by CVE-2024-24780 via org.apache.iotdb:node-commons (>=1.0.0 <=1.3.4-1)

org.apache.iotdb:node-commons MAVEN version =1.0.0, =1.1.2, =1.0.0, =1.2.2, =1.2.2, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.3.0, =1.0.0, =1.1.2 and more Source cves: CVE-2024-24780 Source advisory: SNYK:JAVA-ORGAPACHEIOTDB-10176116...

org.apache.iotdb:integration-test (=2.0.1-beta), org.apache.iotdb:iotdb-cli (=2.0.1-beta) +2 more potentially affected by CVE-2025-26795 via org.apache.iotdb:iotdb-jdbc (>=2.0.1-beta <=2.0.2-1)

org.apache.iotdb:iotdb-jdbc MAVEN version =2.0.1-beta, =2.0.1-beta, =2.0.2-1 Source cves: CVE-2025-26795 Source advisory: OSV:GHSA-GP98-HFVM-2R4X...

kernel: Secure Boot does not automatically enable kernel lockdown

The Linux Kernel lockdown mode for kernel versions starting on 6.12 and above for Fedora Linux has the lockdown mode disabled without any warning. This may allow an attacker to gain access to sensitive information such kernel memory mappings, I/O ports, BPF and kprobes. Additionally unsigned...

Metasploit Wrap-Up 05/09/2025

New Toys and New Techniques This release features a new OPNSense login scanner, a module targeting the Sante PACS path traversal vulnerability, an additional method for stealing Network Access Account credentials via SMB to HTTP relay, and the Erlang/OTP SSH exploit everyone was excited about. Ne...

CVE-2025-37845

In the Linux kernel, the following vulnerability has been resolved: tracing: fprobe events: Fix possible UAF on modules Commit ac91052f0ae5 "tracing: tprobe-events: Fix leakage of module refcount" moved trymoduleget from findtracepointmodulecb to findtracepoint caller, but that introduced a...

Enabling Core Dump Collection with ABRT on RHEL/CentOS

This KB outlines the steps to enable core dump collection for Linux VDA modulesctxgfx etc using the ABRT Automatic Bug Reporting Tool framework on RHEL/CentOS systems...

20 module bug fix and enhancement update

An update is available for module.nodejs-nodemon, nodejs-packaging, module.nodejs-packaging, nodejs-nodemon. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list...

DL1 bug fix and enhancement update

An update is available for module.python-yubico, module.opendnssec, module.slapi-nis, module.softhsm, module.ipa, module.python-qrcode, custodia, module.custodia, module.pyusb, python-yubico, module.python-jwcrypto, module.python-kdcproxy, module.ipa-healthcheck, pyusb, slapi-nis, python-jwcrypto...

container-tools:rhel8 security update

An update is available for module.python-podman, cockpit-podman, module.containernetworking-plugins, module.skopeo, aardvark-dns, module.oci-seccomp-bpf-hook, module.conmon, module.cockpit-podman, oci-seccomp-bpf-hook, slirp4netns, libslirp, python-podman, criu, conmon, module.slirp4netns,...

perl:5.32 security update

An update is available for module.perl-Params-Check, module.perl-PerlIO-via-QuotedPrint, perl-Fedora-VSP, perl-Module-Build, perl-Math-BigRat, perl-Data-Section, module.perl-inc-latest, module.perl-Term-Cap, module.perl-Package-Generator, module.perl-autodie, perl-Sys-Syslog, perl-Params-Check,...

python36:3.6 bug fix and enhancement update

An update is available for module.python-sqlalchemy, module.python36, module.python-wheel, python-virtualenv, python-PyMySQL, python-wheel, python-distro, python-docutils, module.python-nose, python-docs, python36, module.scipy, scipy, module.python-docutils, python-pymongo, module.python-pygment...

new module: mariadb:10.11

An update is available for module.mariadb, module.galera, mariadb, Judy, module.Judy, galera. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed...

Security update for apparmor

This update for apparmor fixes the following issues: Add dacreadsearch capability for unixchkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. bsc1241678 Patch Instructions: To install this SUSE update use the SUSE...

com.chutneytesting:chutney-kotlin-dsl (>=0.1.18 <=1.0.1), com.codbex.aion:codbex-aion-platform (>=0.5.6 <=0.5.7) +157 more potentially affected by CVE-2025-27533 via org.apache.activemq:activemq-openwire-legacy (>=5.17.0 <=5.17.6)

org.apache.activemq:activemq-openwire-legacy MAVEN version =5.17.0, =0.1.18, =0.5.6, =0.5.6, =0.5.6, =0.3.0, =0.3.0, =0.5.3, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.4.0 and more Source cves: CVE-2025-27533 Source advisory:...

be.yildiz-games:module-messaging-activemq (=2.0.0), com.codbex.atlas:codbex-atlas-application (>=1.1.0 <=2.108.0) +103 more potentially affected by CVE-2025-27533 via org.apache.activemq:activemq-client (>=6.0.0 <=6.1.5)

org.apache.activemq:activemq-client MAVEN version =6.0.0, =1.1.0, =2.55.0, =1.0.5, =1.1.0, =1.1.0, =1.1.0, =0.2.0, =1.1.0, =7.0.0, =7.0.0, =7.0.0, =7.0.1 and more Source cves: CVE-2025-27533 Source advisory: OSV:GHSA-WHXR-3P84-RF3C...