Lucene search
K

352 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/28 12:0 a.m.23 views

AlmaLinux 9 : tomcat (ALSA-2024:3307)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:3307 advisory. Apache Tomcat: HTTP/2 header handling DoS CVE-2024-24549 Apache Tomcat: WebSocket DoS with incomplete closing handshake CVE-2024-23672 Bug Fixes and...

7.5CVSS7.7AI score0.23072EPSS
Exploits1References3
Oracle linux
Oracle linux
added 2024/05/23 12:0 a.m.47 views

pcs security update

0.10.18-2.0.1 - Replace HAM-logo.png with a generic one 0.10.18-2 - Fixed CVE-2024-25126, CVE-2024-26141, CVE-2024-26146 in bundled dependency rack Resolves: RHEL-26445, RHEL-26447, RHEL-26449 0.10.18-1 - Rebased to the latest sources see CHANGELOG.md Resolves: RHEL-7741 0.10.17-6 - Rebased to th...

7.5CVSS6.9AI score0.35376EPSS
Exploits2
Oracle linux
Oracle linux
added 2024/05/23 12:0 a.m.355 views

perl-CPAN security update

2.18-399 - Fix tests to run in correct order 2.18-398 - Fix CVE-2023-31484 - Package tests 2.18-397 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 2.18-396 - Rebase patches to prevent from installing back-up files 2.18-395 - Rebuilt for...

8.1CVSS6.8AI score0.01548EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.44 views

RHEL 9 : tomcat (RHSA-2024:3307)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3307 advisory. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: Apache Tomcat: HTTP/2 heade...

7.5CVSS7.8AI score0.23072EPSS
Exploits1References6
OSV
OSV
added 2024/05/23 12:0 a.m.40 views

ALSA-2024:3307 Important: tomcat security and bug fix update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: Apache Tomcat: HTTP/2 header handling DoS CVE-2024-24549 Apache Tomcat: WebSocket DoS with incomplete closing handshake CVE-2024-23672 Bug Fixes and Enhancements: Rebase tomcat to...

7.5CVSS7.5AI score0.23072EPSS
Exploits1References6
Oracle linux
Oracle linux
added 2024/05/23 12:0 a.m.37 views

python3.11 security update

3.11.7-1.0.1 - Update rpm-macros description Orabug: 36024572 3.11.7-1 - Rebase to 3.11.7 Resolves: RHEL-21915 3.11.5-2 - Security fix for CVE-2023-27043 Resolves: RHEL-7842...

5.3CVSS6.8AI score0.02527EPSS
Exploits1
CVE
CVE
added 2024/05/21 3:3 p.m.97 views

CVE-2021-47380

The CVE-2021-47380 entry describes a NULL pointer dereference in the Linux kernel related to HID amd_sfh: the function devm_add_action_or_reset() could call amd_mp2_pci_remove() before data was initialized. The fix moves the data initialization prior to devm_add_action_or_reset() to prevent deref...

5.5CVSS6.7AI score0.00208EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/04/29 12:0 a.m.28 views

Fedora 40 : xen (2024-a46df5ba2f)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-a46df5ba2f advisory. x86: Native Branch History Injection XSA-456, CVE-2024-2201 update to xen 4.18.2, remove patches now included upstream x86 HVM hypercalls may trigge...

7.5CVSS7.3AI score0.17444EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2024/03/22 12:0 a.m.40 views

go-toolset:ol8 security update

delve 1.20.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.20.2-1 - Rebase to 1.20.2 - Resolves: rhbz2186495 golang 1.20.12-3 - Fix CVE-2024-1394 - Resolves: RHEL-27928 1.20.12-2 - Fix sources file - Related: RHEL-19231 go-toolset...

7.5CVSS7AI score0.01533EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/01/19 12:0 a.m.40 views

java-21-openjdk security update

1:21.0.2.0.13-1.0.1 - Add Oracle vendor bug URL 1:21.0.2.0.13-1 - Rebase to 21.0.2.0.13...

7.4CVSS7AI score0.00918EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/01/19 12:0 a.m.41 views

java-21-openjdk security update

1:21.0.2.0.13-1.0.1 - Add Oracle vendor bug URL 1:21.0.2.0.13-1 - Rebase to 21.0.2.0.13...

7.4CVSS6.6AI score0.00918EPSS
Exploits0
Oracle linux
Oracle linux
added 2023/11/17 12:0 a.m.43 views

python3.11 security update

3.11.5-1 - Rebase to 3.11.5 - Security fixes for CVE-2023-40217 and CVE-2023-41105 Resolves: RHEL-3047, RHEL-3267 3.11.4-4 - Add the importallmodulespy311.py file for the python3.11-rpm-macros subpackage Resolves: rhbz2207631 3.11.4-3 - Fix symlink handling in the fix for CVE-2023-24329 Resolves:...

9.8CVSS6.7AI score0.27095EPSS
Exploits6
Oracle linux
Oracle linux
added 2023/11/12 12:0 a.m.37 views

libvirt security, bug fix, and enhancement update

9.5.0-7.0.1 - The path to the guest agent socket file can become too long and cause problems.rhbz2233744 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 9.5.0-7 - util: use 'stubDriverType' instead of just 'stubDriver' rhbz2074209 - util: add stub driver name to virPCIDevice object...

6.5CVSS7.5AI score0.00621EPSS
Exploits0
Oracle linux
Oracle linux
added 2023/11/12 12:0 a.m.38 views

pcs

0.11.6-3 - Refreshing any page in pcs-web-ui no longer causes it to display a blank page - Resolves: rhbz2222788 0.11.6-2 - Added BuildRequires: debugedit - for generating MiniDebugInfo - triggered by removing find-debuginfo.sh from rpm - Make use of filters when extracting tarballs to enhance...

7.5CVSS7.3AI score0.24928EPSS
Exploits1
Oracle linux
Oracle linux
added 2023/11/11 12:0 a.m.64 views

httpd and mod_http2 security, bug fix, and enhancement update

httpd 2.4.57-5.0.1 - Replace index.html with Oracle's index page oracleindex.html. 2.4.57-5 - Fix issue found by covscan - Related: 2222001 2.4.57-4 - Resolves: 2217726 - Make PROPFIND tolerant of deletion race 2.4.57-3 - Resolves: 2222001 - modstatus lists BusyWorkers IdleWorkers keys twice...

9.8CVSS7.6AI score0.8377EPSS
Exploits5
Oracle linux
Oracle linux
added 2023/11/11 12:0 a.m.39 views

libqb security update

2.0.6-4 - bump rpm version for rhel-exception build Resolves: rhbz2230712 2.0.6-3 - blackbox: fix buffer overflow with long log lines Resolves: rhbz2236171 2.0.6-1 - ipc: Retry receiving credentials if the the message is short Resolves: rhbz2149647 2.0.6-1 - Rebase to 2.0.6 Resolves: rhbz2072903...

9.8CVSS7.4AI score0.00984EPSS
Exploits0
Code423n4
Code423n4
added 2023/11/09 12:0 a.m.6 views

Upgraded Q -> 2 from #571 [1699543659773]

Judge has assessed an item in Issue 571 as 2 risk. The relevant finding follows: L-01 Internal accounting won’t work for rebase & elastic tokens --- The text was updated successfully, but these errors were encountered: All reactions...

7.2AI score
Exploits0
Code423n4
Code423n4
added 2023/10/26 12:0 a.m.17 views

Incompatibility with Rebase tokens

Lines of code Vulnerability details Impact Borrowers can choose whatever token they want to be the underlying token for a market. The problem comes when those tokens are Rebasing tokens such as Ampleforth. The balances of those tokens are changed rebased by a certain algorithm depending on the...

7.1AI score
Exploits0
Oracle linux
Oracle linux
added 2023/10/20 12:0 a.m.51 views

18 security update

nodejs 1:18.18.2-2 - Rebase to version 18.18.2 Resolves: CVE-2023-44487 CVE-2023-45143 CVE-2023-38552 CVE-2023-39333 nodejs-nodemon 3.0.1-1 - Rebase to 3.0.1 - Resolves: CVE-2022-25883 nodejs-packaging 2021.06-4 - NPM bundler: also find namespaced bundled dependencies 2021.06-3 - Rebuilt for...

5CVSS8.3AI score0.99999EPSS
Exploits20
Oracle linux
Oracle linux
added 2023/10/18 12:0 a.m.38 views

galera and mariadb security update

galera 26.4.14-1.0.1 - Rebase to 26.4.14 26.4.13-1.0.1 - Rebase to 26.4.13 26.4.12-1.0.1 - Rebase to 26.4.12 mariadb 3:10.5.22-1 - Rebase to 10.5.22 3:10.5.21-1 - Rebase to version 10.5.21 3:10.5.20-2 - Use fortifylevel to disable fortification in debug builds 3:10.5.20-1 - Rebase to version...

7.5CVSS7.7AI score0.02082EPSS
Exploits5
Rows per page
Query Builder