198626 matches found
CVE-2026-47828
During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates to the new VM's DAV blobstore over HTTPS without verifying the server certificate, even though a CA certificate for that endpoint is available in the installation manifest. A network...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.17.55 security and extras update
Red Hat OpenShift Container Platform release 4.17.55 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.17. Red Hat Product Security has rated this update as having a security impact of...
CVE-2026-47828
During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates to the new VM's DAV blobstore over HTTPS without verifying the server certificate, even though a CA certificate for that endpoint is available in the installation manifest. A network...
CVE-2026-53136 vulnerabilities
Vulnerabilities for packages: linux-vmware, linux-gcp, linux-qemu-melange, linux-azure...
CVE-2026-39822 vulnerabilities
Vulnerabilities for packages: kine, prometheus-operator, mattermost, kots, fuse-overlayfs-snapshotter, cloud-provider-aws, prometheus, pinact, cilium-cli, pulumi-language-yaml, containerd, dapr, grafana, buildkitd, kubernetes-dashboard, pulumi, kyverno, docker-cli-buildx, traefik, apko, redka,...
Linux Distros Unpatched Vulnerability : CVE-2026-50811
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read vulnerability exists in FreeType 2.14.3 and versions before commit 5a280ecde6f324de0d226261036e736e0cb49a71 in src/truetype/ttgxvar.c, in...
Critical Photon OS Security Update - PHSA-2026-4.0-1054
Updates of 'linux' packages of Photon OS have been released...
CVE-2026-59890
setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. Prior to 83.0.0, FileList applied MANIFEST.in exclude, global-exclude, recursive-exclude, and prune directives by matching compiled glob patterns against on-disk file names without Unico...
Linux Distros Unpatched Vulnerability : CVE-2026-55238
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xrdp projects reports: xrdp v0.10.6.1 fixes 10 vulnerabilities and 1 regression introduced by a vulnerability fix in the previous release. CVE-2026-55238 Note...
Linux Distros Unpatched Vulnerability : CVE-2026-56000
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Local attackers with a X connection able to provide GLX commit to the X server xorg-server before 21.2.24 and xwayland before 24.1.13 could cause a Heap Use Aft...
Linux Distros Unpatched Vulnerability : CVE-2026-55639
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xrdp projects reports: xrdp v0.10.6.1 fixes 10 vulnerabilities and 1 regression introduced by a vulnerability fix in the previous release. CVE-2026-55639 Note...
Linux Distros Unpatched Vulnerability : CVE-2026-55193
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Update to 3.27.1 It fixes CVE-2026-55191, CVE-2026-55192, CVE-2026-55193, CVE-2026-55194, CVE-2026-55648 and CVE-2026-55827. CVE-2026-55193 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2026-42218
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xrdp projects reports: xrdp v0.10.6.1 fixes 10 vulnerabilities and 1 regression introduced by a vulnerability fix in the previous release. CVE-2026-42218 Note...
Linux Distros Unpatched Vulnerability : CVE-2026-55626
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xrdp projects reports: xrdp v0.10.6.1 fixes 10 vulnerabilities and 1 regression introduced by a vulnerability fix in the previous release. CVE-2026-55626 Note...
Critical Photon OS Security Update - PHSA-2026-5.0-0916
Updates of 'linux-esx', 'linux' packages of Photon OS have been released...
Linux Distros Unpatched Vulnerability : CVE-2026-54433
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Rouncube project reports: See links for more detail CVE-2026-54433 Note that Nessus relies on the presence of the package as reported by the vendor...
CVE-2026-50021
A flaw was found in pnpm, a package manager. An attacker who can modify the pnpm-lock.yaml file and control the package registry can exploit this vulnerability. By removing the integrity field from the lockfile and serving altered package content, the pnpm install --frozen-lockfile command can...
CVE-2026-50016
A flaw was found in pnpm, a package manager. This vulnerability allows a malicious registry package to include specially crafted dependency aliases that contain path traversal segments. During the installation process, pnpm incorrectly processes these aliases, which can lead to the replacement of...
RHSA-2026:35812 Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
Bulletin has no description...
RHSA-2026:35807 Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
Bulletin has no description...