487 matches found
Important: Red Hat Security Advisory: multicluster engine for Kubernetes v2.6.12 security update
The multicluster engine for Kubernetes 2.6 General Availability release images, which add new features and enhancements, bug fixes, and updated container images. The multicluster engine for Kubernetes v2.6 images The multicluster engine for Kubernetes provides the foundational components that are...
scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.
...
Important: Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.6.12
Assisted installer RHEL 9 components for the multicluster engine for Kubernetes 2.6.12 General Availability release, with updates to container images. Assisted Installer RHEL 9 integrates components for the general multicluster engine for Kubernetes 2.6.12 release that simplify the process of...
Important: Red Hat Security Advisory: Assisted Installer RHEL 8 components for Multicluster Engine for Kubernetes 2.6.12
Assisted installer RHEL 8 components for the multicluster engine for Kubernetes 2.6.12 General Availability release, with updates to container images. Assisted Installer RHEL 8 integrates components for the general multicluster engine for Kubernetes 2.6.12 release that simplify the process of...
MINI-X3FC-VXV5-6XRP
Bulletin has no description...
Important: Red Hat Security Advisory: Assisted Installer RHEL 8 components for Multicluster Engine for Kubernetes 2.6.12
Assisted installer RHEL 8 components for the multicluster engine for Kubernetes 2.6.12 General Availability release, with updates to container images. Assisted Installer RHEL 8 integrates components for the general multicluster engine for Kubernetes 2.6.12 release that simplify the process of...
GHSA-3J69-69WJ-XQX2 vulnerabilities
Vulnerabilities for packages: openstack-horizon-2025.1, openstack-placement-2025.2-fips, openstack-placement-2026.1-fips, openstack-placement-2025.1, openstack-glance-2026.1, openstack-placement-2025.2, openstack-horizon-2026.1, openstack-keystone-2026.1, openstack-glance-2025.1-fips,...
CVE-2026-54911 vulnerabilities
Vulnerabilities for packages: openstack-horizon-2025.1, openstack-placement-2025.2-fips, openstack-placement-2026.1-fips, openstack-placement-2025.1, openstack-glance-2026.1, openstack-placement-2025.2, openstack-horizon-2026.1, openstack-keystone-2026.1, openstack-glance-2025.1-fips,...
GHSA-6V7P-G79W-8964 vulnerabilities
Vulnerabilities for packages: openstack-horizon-2025.1, openstack-placement-2025.2-fips, superset, openstack-tempest-2026.1, openstack-placement-2026.1-fips, jupyter-all-spark-notebook, dask-kubernetes-fips, kubeflow-katib, openstack-placement-2025.1, openstack-glance-2026.1, authentik,...
[SECURITY] Fedora 44 Update: ongres-stringprep-2.4-1.fc44
The stringprep protocol does not stand on its own; it has to be used by other protocols at precisely-defined places in those other protocols...
CVE-2026-46448
A flaw was found in OpenStack Nova. The server creation application programming interface API fails to remove specific hint data, leading to instances being created without proper Placement allocation. This can result in a denial of service, as resources may not be correctly assigned or managed f...
Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : Nova vulnerability (USN-8434-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8434-1 advisory. It was discovered that Nova did not strip internal nova-prefixed scheduler hints supplied by users on instance creation. An attack...
EUVD-2026-37218
In OpenStack Nova before 33.0.2, the server create API does not strip certain hint data. The resulting instance has no Placement allocation...
GHSA-MFG3-P6M3-GJGR OpenStack Nova: Nova scheduler hint injection bypasses Placement resource claims and scheduling constraints
Affects - Nova: =18.0.0 =32.0.0 =33.0.0 33.0.2 Description Erichen from the Institute of Computing Technology, Chinese Academy of Sciences reported that Nova's server create API does not strip internal scheduler hints. An authenticated user can bypass Placement resource claims and scheduling...
OpenStack Nova: Nova scheduler hint injection bypasses Placement resource claims and scheduling constraints
Affects - Nova: =18.0.0 =32.0.0 =33.0.0 33.0.2 Description Erichen from the Institute of Computing Technology, Chinese Academy of Sciences reported that Nova's server create API does not strip internal scheduler hints. An authenticated user can bypass Placement resource claims and scheduling...
GHSA-XGMM-8J9V-C9WX vulnerabilities
Vulnerabilities for packages: ggshield, openstack-horizon-2025.1, airflow-core, openstack-placement-2025.2-fips, superset, openstack-placement-2026.1-fips, openstack-placement-2025.1, openstack-glance-2026.1, datadog-agent, datadog-agent-fips, openstack-placement-2025.2, openstack-horizon-2026.1,...
CVE-2026-48523 vulnerabilities
Vulnerabilities for packages: ggshield, openstack-horizon-2025.1, airflow-core, openstack-placement-2025.2-fips, superset, openstack-placement-2026.1-fips, openstack-placement-2025.1, openstack-glance-2026.1, datadog-agent, datadog-agent-fips, openstack-placement-2025.2, openstack-horizon-2026.1,...
CVE-2026-48524 vulnerabilities
Vulnerabilities for packages: ggshield, openstack-horizon-2025.1, airflow-core, openstack-placement-2025.2-fips, superset, openstack-placement-2026.1-fips, openstack-placement-2025.1, openstack-glance-2026.1, datadog-agent, datadog-agent-fips, openstack-placement-2025.2, openstack-horizon-2026.1,...
CVE-2026-48525 vulnerabilities
Vulnerabilities for packages: ggshield, openstack-horizon-2025.1, airflow-core, openstack-placement-2025.2-fips, superset, openstack-placement-2026.1-fips, openstack-placement-2025.1, openstack-glance-2026.1, datadog-agent, datadog-agent-fips, openstack-placement-2025.2, openstack-horizon-2026.1,...
GHSA-FHV5-28VV-H8M8 vulnerabilities
Vulnerabilities for packages: ggshield, openstack-horizon-2025.1, airflow-core, openstack-placement-2025.2-fips, superset, openstack-placement-2026.1-fips, openstack-placement-2025.1, openstack-glance-2026.1, datadog-agent, datadog-agent-fips, openstack-placement-2025.2, openstack-horizon-2026.1,...