Lucene search
K

76 matches found

RedHat Linux
RedHat Linux
added 2026/07/01 6:54 p.m.7 views

Important: Red Hat Security Advisory: gnutls security update

An update for gnutls is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.1CVSS6AI score0.01335EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/29 2:54 a.m.8 views

Important: Red Hat Security Advisory: gnutls and libtasn1 security update

An update for multiple packages is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

9.8CVSS7AI score0.01335EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2026/06/29 12:0 a.m.23 views

RHEL 9 : gnutls (RHSA-2026:32962)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:32962 advisory. The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such a...

9.8CVSS6.1AI score0.01335EPSS
Exploits1References26
Tenable Nessus
Tenable Nessus
added 2026/06/16 12:0 a.m.11 views

RHEL 10 : gnutls (RHSA-2026:26409)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:26409 advisory. The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such ...

9.8CVSS6AI score0.01335EPSS
Exploits2References28
OSV
OSV
added 2026/05/29 12:0 a.m.15 views

RLSA-2026:20611 Important: gnutls security update

Please update the gnutls packages to provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fixes: gnutls: Add more checks to DTLS reassembly CVE-2026-33846 gnutls: Fix qsort comparator in DTLS reassemb...

8.2CVSS5.8AI score0.01335EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.11 views

RockyLinux 8 : gnutls (RLSA-2026:20611)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:20611 advisory. gnutls: Add more checks to DTLS reassembly CVE-2026-33846 gnutls: Fix qsort comparator in DTLS reassembly CVE-2026-42009 gnutls: Fix crashing on an...

9.8CVSS5.8AI score0.01335EPSS
Exploits1References23
Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.17 views

TencentOS Server 3: rsync (TSSA-2026:0379)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0379 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.8CVSS5.9AI score0.00393EPSS
Exploits1References2
AlmaLinux
AlmaLinux
added 2026/05/26 12:0 a.m.25 views

Important: gnutls security update

Please update the gnutls packages to provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fixes: gnutls: Add more checks to DTLS reassembly CVE-2026-33846 gnutls: Fix qsort comparator in DTLS reassemb...

9.8CVSS5.8AI score0.01335EPSS
Exploits1References19
OSV
OSV
added 2026/05/19 1:33 a.m.8 views

CLSA-2026-1779154430 rsync: Fix of CVE-2026-41035

CVE-2026-41035: receiver use-after-free in receivexattr via untrusted xattr count passed to qsort...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References1
OSV
OSV
added 2026/05/19 12:11 a.m.8 views

CLSA-2026-1779131668 rsync: Fix of CVE-2026-41035

CVE-2026-41035: receiver use-after-free in receivexattr via untrusted xattr count passed to qsort...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References1
OSV
OSV
added 2026/04/25 5:50 a.m.6 views

OESA-2026-2088 musl security update

musl is an implementation of the C standard library built on top of the Linux system call API, including interfaces defined in the base language standard, POSIX, and widely agreed-upon extensions. It is lightweight, fast, simple, free, and strives to be correct in the sense of standards conforman...

8.1CVSS5.2AI score0.00227EPSS
Exploits1References3
OSV
OSV
added 2026/04/25 5:50 a.m.6 views

OESA-2026-2087 musl security update

musl is an implementation of the C standard library built on top of the Linux system call API, including interfaces defined in the base language standard, POSIX, and widely agreed-upon extensions. It is lightweight, fast, simple, free, and strives to be correct in the sense of standards conforman...

8.1CVSS5.2AI score0.00227EPSS
Exploits1References3
OSV
OSV
added 2026/04/17 1:0 p.m.14 views

OESA-2026-1928 musl security update

musl is an implementation of the C standard library built on top of the Linux system call API, including interfaces defined in the base language standard, POSIX, and widely agreed-upon extensions. It is lightweight, fast, simple, free, and strives to be correct in the sense of standards conforman...

8.1CVSS5.3AI score0.00227EPSS
Exploits1References3
OSV
OSV
added 2026/04/17 1:0 p.m.15 views

OESA-2026-1927 musl security update

musl is an implementation of the C standard library built on top of the Linux system call API, including interfaces defined in the base language standard, POSIX, and widely agreed-upon extensions. It is lightweight, fast, simple, free, and strives to be correct in the sense of standards conforman...

8.1CVSS5.3AI score0.00227EPSS
Exploits1References3
Microsoft CVE
Microsoft CVE
added 2026/04/17 8:2 a.m.9 views

In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X (aka --xattrs). On Linux, many (but not all) common configurations are vulnerable. Non-Linux platforms are more widely vulnerable.

...

7.8CVSS5.8AI score0.00393EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-40200

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in musl libc 0.7.10 through 1.2.6. Stack-based memory corruption can occur during qsort of very large arrays, due to incorrectly...

8.1CVSS6.1AI score0.00128EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/16 11:27 p.m.7 views

SUSE CVE-2026-41035

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.2CVSS5.7AI score0.00393EPSS
Exploits1References19
OSV
OSV
added 2026/04/16 7:16 a.m.10 views

ALPINE-CVE-2026-41035

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.8CVSS5.3AI score0.00393EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/16 6:53 a.m.5 views

CVE-2026-41035

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.4CVSS5.8AI score0.00393EPSS
Exploits1References3
CVE
CVE
added 2026/04/16 6:53 a.m.135 views

CVE-2026-41035

CVE-2026-41035 affects rsync versions 3.0.1 through 3.4.1. The vulnerability stems from receive_xattr using an untrusted length value during a qsort, causing a receiver use-after-free when the -X/--xattrs option is used. Impact is described as low for confidentiality/integrity/availability, with ...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References29Affected Software1
Rows per page
Query Builder