Lucene search
K

15 matches found

OSV
OSV
added 2020/07/21 3:1 p.m.35 views

RLSA-2020:3053 Moderate: container-tools:rhel8 security, bug fix, and enhancement update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: QEMU: slirp: use-after-free in ipreass function in ipinput.c CVE-2020-1983 For more details about the security issues, including the impact, a CVSS score,...

7CVSS7.2AI score0.02293EPSS
Exploits1References21
OSV
OSV
added 2020/04/28 9:23 a.m.27 views

RLSA-2020:1852 Moderate: patch security and bug fix update

The patch program applies diff files to originals. The diff command is used to compare an original to a changed file. Diff lists the changes made to the file. A person who has the original file can then use the patch command with the diff file to add the changes to their original file patching th...

5.9CVSS6.1AI score0.03927EPSS
Exploits0References2
OSV
OSV
added 2020/04/28 9:7 a.m.31 views

RLSA-2020:1708 Moderate: liblouis security and bug fix update

Liblouis is an open source braille translator and back-translator named in honor of Louis Braille. It features support for computer and literary braille, supports contracted and uncontracted translation for many languages and has support for hyphenation. New languages can easily be added through...

7.8CVSS9.1AI score0.02576EPSS
Exploits1References5
OSV
OSV
added 2020/04/28 9:5 a.m.22 views

RLSA-2020:1686 Low: libmspack security and bug fix update

The libmspack packages contain a library providing compression and extraction of the Cabinet CAB file format used by Microsoft. Security Fixes: libmspack: buffer overflow in function chmdreadheaders CVE-2019-1010305 For more details about the security issues, including the impact, a CVSS score,...

2.5CVSS6.2AI score0.01464EPSS
Exploits1References3
OSV
OSV
added 2020/04/28 9:2 a.m.26 views

RLSA-2020:1665 Moderate: qt5 security, bug fix, and enhancement update

Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. The following packages have been upgraded to a later upstream version: qt5 5.12.5, qt5-qt3d 5.12.5, qt5-qtbase 5.12.5, qt5-qtcanvas3d 5.12.5,...

6.2CVSS7AI score0.02178EPSS
Exploits1References35
OSV
OSV
added 2020/04/28 9:1 a.m.19 views

RLSA-2020:1653 Moderate: zziplib security update

The zziplib is a lightweight library to easily extract data from zip files. Security Fixes: zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

5.5CVSS5.5AI score0.01538EPSS
Exploits1References2
OSV
OSV
added 2020/04/28 9:0 a.m.27 views

RLSA-2020:1644 Moderate: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update

The Public Key Infrastructure PKI Core contains fundamental packages required by Rocky Enterprise Software Foundation Certificate System. Security Fixes: jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig CVE-2019-14540 jackson-databind: Serialization gadgets in...

8.1CVSS9.1AI score0.26587EPSS
Exploits6References21
Rockylinux
Rockylinux
added 2020/04/28 8:59 a.m.12 views

DL1 bug fix and enhancement update

An update is available for python-jwcrypto, custodia, python-qrcode, python-yubico, python-kdcproxy, pyusb. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For...

2.5AI score
Exploits0
OSV
OSV
added 2020/04/28 8:58 a.m.18 views

RLSA-2020:1631 Low: GStreamer, libmad, and SDL security, bug fix, and enhancement update

The GStreamer library provides a streaming media framework based on graphs of media data filters. The libmad package is an MPEG audio decoder capable of 24-bit output. Simple DirectMedia Layer SDL is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer...

3.3CVSS9.4AI score0.02475EPSS
Exploits0References7
OSV
OSV
added 2020/04/28 8:57 a.m.44 views

RLSA-2020:1624 Moderate: php:7.2 security, bug fix, and enhancement update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 7.2.24. BZ1726981 Security Fixes: php: Invalid memory access in function xmlrpcdecode CVE-2019-9020 php: File rename across filesystems...

7.5CVSS8.9AI score0.10059EPSS
Exploits14References18
Rockylinux
Rockylinux
added 2020/04/28 8:57 a.m.56 views

php:7.2 security, bug fix, and enhancement update

An update is available for php-pear, php, php-pecl-apcu, libzip, php-pecl-zip. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PHP is an HTML-embedded scripting...

9.8CVSS8.9AI score0.10059EPSS
Exploits14
OSV
OSV
added 2020/04/28 8:56 a.m.28 views

RLSA-2020:1616 Low: irssi security update

Irssi is a modular IRC client with Perl scripting. Security Fixes: irssi: use after free when sending SASL login to server CVE-2019-13045 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed i...

3.7CVSS7.8AI score0.03333EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2020/04/28 8:56 a.m.24 views

irssi security update

An update is available for irssi. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Irssi is a modular IRC client with Perl scripting. Security Fixes: irssi: use...

8.1CVSS1.7AI score0.03333EPSS
Exploits0
OSV
OSV
added 2020/04/28 8:55 a.m.29 views

RLSA-2020:1605 Moderate: python27:2.7 security, bug fix, and enhancement update

Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for...

7.5CVSS7.3AI score0.07443EPSS
Exploits5References9
OSV
OSV
added 2020/04/28 8:53 a.m.32 views

RLSA-2020:1581 Low: wavpack security update

WavPack is a completely open audio compression format providing lossless, high-quality lossy, and a unique hybrid compression mode. Security Fixes: wawpack: Infinite loop in WavpackPackInit function lead to DoS CVE-2018-19840 wawpack: Out-of-bounds read in WavpackVerifySingleBlock function leads ...

4.3CVSS6.2AI score0.03044EPSS
Exploits5References7
Rows per page
Query Builder