CVE-2025-64506 affecting package libpng for versions less than 1.6.51-1

CVE-2025-64506 affecting package libpng for versions less than 1.6.51-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-40109 affecting package kernel for versions less than 6.6.112.1-2

CVE-2025-40109 affecting package kernel for versions less than 6.6.112.1-2. An upgraded version of the package is available that resolves this issue...

CVE-2024-3727 affecting package podman for versions less than 5.6.1-2

CVE-2024-3727 affecting package podman for versions less than 5.6.1-2. An upgraded version of the package is available that resolves this issue...

EUVD-2025-26470

Malicious code in bioql PyPI...

CVE-2025-38617 affecting package kernel for versions less than 6.6.104.2-1

CVE-2025-38617 affecting package kernel for versions less than 6.6.104.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-38471 affecting package kernel for versions less than 6.6.104.2-1

CVE-2025-38471 affecting package kernel for versions less than 6.6.104.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-38485 affecting package kernel for versions less than 6.6.104.2-1

CVE-2025-38485 affecting package kernel for versions less than 6.6.104.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-39801 affecting package kernel for versions less than 6.6.104.2-1

CVE-2025-39801 affecting package kernel for versions less than 6.6.104.2-1. An upgraded version of the package is available that resolves this issue...

Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults

Summary A use-after-free UAF vulnerability in Envoy's DNS cache causes abnormal process termination. Envoy may reallocate memory when processing a pending DNS resolution, causing list iterator to reference freed memory. Details The vulnerability exists in Envoy's Dynamic Forward Proxy...

log4shell-detector

This is a Gradle wrapper script for a Java project. Here's a breakdown of the key points: Purpose: The script is used to start a Gradle build process. License: The script is licensed under the Apache License, Version 2.0. Functionality: The script sets up the environment for the Gradle build...

SUSE CVE-2025-54588

Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. Versions 1.34.0 through 1.34.4 and 1.35.0 contain a use-after-free UAF vulnerability in the DNS cache, causing abnormal process termination. The vulnerability is in Envoy's Dynamic...

CVE-2025-50082 affecting package mysql for versions less than 8.0.43-1

CVE-2025-50082 affecting package mysql for versions less than 8.0.43-1. An upgraded version of the package is available that resolves this issue...

BIT-ENVOY-2025-54588 Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults

Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. Versions 1.34.0 through 1.34.4 and 1.35.0 contain a use-after-free UAF vulnerability in the DNS cache, causing abnormal process termination. The vulnerability is in Envoy's Dynamic...

CVE-2025-54588

Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. Versions 1.34.0 through 1.34.4 and 1.35.0 contain a use-after-free UAF vulnerability in the DNS cache, causing abnormal process termination. The vulnerability is in Envoy's Dynamic...

CVE-2025-54588 Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults

Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. Versions 1.34.0 through 1.34.4 and 1.35.0 contain a use-after-free UAF vulnerability in the DNS cache, causing abnormal process termination. The vulnerability is in Envoy's Dynamic...

CVE-2025-54588 Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults

Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. Versions 1.34.0 through 1.34.4 and 1.35.0 contain a use-after-free UAF vulnerability in the DNS cache, causing abnormal process termination. The vulnerability is in Envoy's Dynamic...

CVE-2025-8714 affecting package postgresql for versions less than 14.19-1

CVE-2025-8714 affecting package postgresql for versions less than 14.19-1. An upgraded version of the package is available that resolves this issue...

2025-08 Cumulative Update for Windows 10 Version 21H2 for x86-based Systems (KB5063709)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

CVE-2025-38354 affecting package kernel for versions less than 6.6.96.1-1

CVE-2025-38354 affecting package kernel for versions less than 6.6.96.1-1. An upgraded version of the package is available that resolves this issue...

java-17-openjdk security update

1:17.0.16.0.8-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.16.0.8-2 - Update to jdk-17.0.16+8 - Add to .gitignore openjdk-17.0.16+8.tar.xz - Set updatever to 16 - Set buildver to 8 - Update sources to openjdk-17.0.16+8.tar.xz - Resolves: RHEL-101793 - Resolves: RHEL-102273 - Require...