547 matches found
[SECURITY] Fedora 43 Update: pdns-recursor-5.2.11-1.fc43
PowerDNS Recursor is a non authoritative/recursing DNS server. Use this package if you need a dns cache for your network...
[SECURITY] [DSA 6368-1] pdns security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6368-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 25, 2026 https://www.debian.org/security/faq -...
GHSA-H524-452V-82P9 vulnerabilities
Vulnerabilities for packages: descheduler, zarf, redka, redpanda, flux-kustomize-controller, envoy-gateway, kubernetes, policy-controller, hubble, opentofu, crossplane-provider-azure-authorization, hubble-ui, rancher, cloudnative-pg, kapp-controller, container-object-storage-interface, karpenter,...
GHSA-H3GM-Q7M7-MP28 vulnerabilities
Vulnerabilities for packages: descheduler, hcloud, steampipe, zarf, redka, redpanda, temporal-ui-server, opa, flux-kustomize-controller, envoy-gateway, kubernetes, policy-controller, rekor, hubble, istio, opentofu, q, docker-machine-driver-linode, nri-apache,...
GHSA-4279-Q6MJ-392R vulnerabilities
Vulnerabilities for packages: descheduler, hcloud, steampipe, zarf, redka, redpanda, temporal-ui-server, opa, flux-kustomize-controller, envoy-gateway, kubernetes, policy-controller, rekor, hubble, istio, opentofu, q, docker-machine-driver-linode, nri-apache,...
CVE-2026-27145 vulnerabilities
Vulnerabilities for packages: descheduler, hcloud, steampipe, zarf, redka, redpanda, temporal-ui-server, opa, flux-kustomize-controller, envoy-gateway, kubernetes, policy-controller, rekor, hubble, istio, opentofu, q, docker-machine-driver-linode, nri-apache,...
GHSA-H524-452V-82P9 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-guardduty-fips, kubedock-fips, dask-gateway, crossplane-provider-aws-osis, nri-kubernetes, mattermost, crossplane-provider-aws-s3, backup-restore-operator-fips, crossplane-provider-azure-relay, request-1279-14, crossplane-provider-aws-vpc-fips...
CVE-2026-42504 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-guardduty-fips, kubedock-fips, dask-gateway, crossplane-provider-aws-osis, nri-kubernetes, mattermost, crossplane-provider-aws-s3, backup-restore-operator-fips, crossplane-provider-azure-relay, request-1279-14, crossplane-provider-aws-vpc-fips...
GHSA-H3GM-Q7M7-MP28 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-guardduty-fips, kubedock-fips, prometheus-redis-exporter-fips, atlantis-fips, docker-machine-driver-linode, dask-gateway, crossplane-provider-aws-osis, nri-kubernetes, mattermost, crossplane-provider-aws-s3, backup-restore-operator-fips,...
GHSA-4279-Q6MJ-392R vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-guardduty-fips, kubedock-fips, prometheus-redis-exporter-fips, atlantis-fips, docker-machine-driver-linode, dask-gateway, crossplane-provider-aws-osis, nri-kubernetes, mattermost, crossplane-provider-aws-s3, backup-restore-operator-fips,...
CVE-2026-42507 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-guardduty-fips, kubedock-fips, prometheus-redis-exporter-fips, atlantis-fips, docker-machine-driver-linode, dask-gateway, crossplane-provider-aws-osis, nri-kubernetes, mattermost, crossplane-provider-aws-s3, backup-restore-operator-fips,...
CVE-2026-27145 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-guardduty-fips, kubedock-fips, prometheus-redis-exporter-fips, atlantis-fips, docker-machine-driver-linode, dask-gateway, crossplane-provider-aws-osis, nri-kubernetes, mattermost, crossplane-provider-aws-s3, backup-restore-operator-fips,...
CVE-2026-42002
A flaw was found in pdns-recursor. Concurrency and locking defects in the Generic Security Service Algorithm for Secret Key Transaction Signatures GSS-TSIG could allow a remote attacker to cause a denial of service...
Linux Distros Unpatched Vulnerability : CVE-2026-42396
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient Validation of Member Zone Data May Cause Catalog Zone Transfer to Fail CVE-2026-42396 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2026-42002
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Concurrency and locking defects in GSS-TSIG CVE-2026-42002 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900...
Linux Distros Unpatched Vulnerability : CVE-2026-42001
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient Validation of Autoprimary SOA Queries CVE-2026-42001 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVE...
Debian dsa-6284 : pdns-backend-bind - security update
The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6284 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6284-1 [email protected] https://www.debian.org/securit...
Linux Distros Unpatched Vulnerability : CVE-2026-41999
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect Behaviour of Views with TCP PROXY Requests CVE-2026-41999 Note that Nessus relies on the presence of the package as reported by the vendor...
Linux Distros Unpatched Vulnerability : CVE-2026-42000
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient Validation of Names During AXFR CVE-2026-42000 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 8090...
CLEANSTART-2026-EI06494 Security fixes for CVE-2025-4673, CVE-2025-47907, CVE-2026-24051, CVE-2026-27143, CVE-2026-27144, CVE-2026-29181, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33186, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-39883, CVE-2026-42499, CVE-2026-42501, ghsa-6vp2-p543-phr9, ghsa-9h8m-3fm2-qjrq, ghsa-cxp5-9wg8-vx66, ghsa-hcp3-c754-cr77, ghsa-hfvc-g4fc-pqhx, ghsa-mh2q-q3fh-2475, ghsa-p77j-4mvh-x3m3, ghsa-vugc-356p-c3xw applied in versions: 3.2.3-r0, 3.2.3-r1, 3.2.3-r2
Multiple security vulnerabilities affect the cert-manager-webhook-pdns-fips package. These issues are resolved in later releases. See references for individual vulnerability details...