Lucene search
+L

23 matches found

OSV
OSV
added 2022/11/08 6:27 a.m.28 views

RLSA-2022:7745 Moderate: freetype security update

FreeType is a free, high-quality, portable font engine that can open and manage font files. FreeType loads, hints, and renders individual glyphs efficiently. Security Fixes: FreeType: Buffer overflow in sfntinitface CVE-2022-27404 FreeType: Segmentation violation via FNTSizeRequest CVE-2022-27405...

7.6CVSS8.6AI score0.0339EPSS
Exploits2References4
OSV
OSV
added 2022/11/08 6:26 a.m.30 views

RLSA-2022:7715 Moderate: libxml2 security update

The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: Incorrect server side include parsing can lead to XSS CVE-2016-3709 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...

6.1CVSS7AI score0.00764EPSS
Exploits1References2
OSV
OSV
added 2022/11/08 6:26 a.m.37 views

RLSA-2022:7704 Moderate: webkit2gtk3 security and bug fix update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functio...

8.8CVSS9.1AI score0.03668EPSS
Exploits1References14
OSV
OSV
added 2022/11/08 6:26 a.m.23 views

RLSA-2022:7700 Moderate: gdisk security update

The gdisk packages provide the gdisk partitioning utility for GUID Partition Table GPT disks. The utility features a command-line interface similar to fdisk, direct manipulation of partition table structures, recovery tools to deal with corrupt partition tables, and the ability to convert Master...

6.8CVSS6.9AI score0.00436EPSS
Exploits0References4
OSV
OSV
added 2022/11/08 6:26 a.m.46 views

RLSA-2022:7692 Moderate: xmlrpc-c security update

XML-RPC is a remote procedure call RPC protocol that uses XML to encode its calls and HTTP as a transport mechanism. The xmlrpc-c packages provide a network protocol to allow a client program to make a simple RPC remote procedure call over the Internet. It converts an RPC into an XML document,...

9.8CVSS8.7AI score0.04829EPSS
Exploits1References8
Rockylinux
Rockylinux
added 2022/11/08 6:26 a.m.40 views

kernel security, bug fix, and enhancement update

An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

8.6CVSS7.9AI score0.12746EPSS
Exploits30
OSV
OSV
added 2022/11/08 6:25 a.m.33 views

RLSA-2022:7648 Moderate: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: net/http: improper sanitization of Transfer-Encoding header...

7.5CVSS7.6AI score0.01626EPSS
Exploits2References7
Rockylinux
Rockylinux
added 2022/11/08 6:25 a.m.41 views

openjpeg2 security update

An update is available for openjpeg2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list OpenJPEG is an open source library for reading and writing image files in...

5.5CVSS1.6AI score0.01078EPSS
Exploits0
OSV
OSV
added 2022/11/08 6:25 a.m.34 views

RLSA-2022:7643 Important: bind9.16 security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...

6.8CVSS6.6AI score0.0325EPSS
Exploits0References4
OSV
OSV
added 2022/11/08 6:25 a.m.26 views

RLSA-2022:7628 Moderate: php:7.4 security, bug fix, and enhancement update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 7.4.30, php-pear 1.10.13. BZ2055422 Security Fixes: php: Special character breaks path in xml parsing CVE-2021-21707 php: Use after free...

9.8CVSS8.6AI score0.73377EPSS
Exploits2References5
Rockylinux
Rockylinux
added 2022/11/08 6:24 a.m.25 views

haproxy bug fix and enhancement update

An update is available for haproxy. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8.7...

1.3AI score
Exploits0
OSV
OSV
added 2022/11/08 6:23 a.m.33 views

RLSA-2022:7585 Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: Denial of Service via crafted TIFF file CVE-2022-0561 libtiff: Null source pointer lead to Denial of Service via crafted TIFF file CVE-2022-0562 libtiff: reachable...

6.6CVSS7.3AI score0.01542EPSS
Exploits9References10
OSV
OSV
added 2022/11/08 6:23 a.m.21 views

RLSA-2022:7583 Moderate: xorg-x11-server and xorg-x11-server-Xwayland security and bug fix update

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Xwayland is an X server for running X clients under Wayland. Security Fixes: xorg-x11-server: X.Org Server ProcXkbSetGeometry...

7.8CVSS7.9AI score0.00573EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2022/11/08 6:23 a.m.56 views

python38:3.8 and python38-devel:3.8 security update

An update is available for python-more-itertools, pytest, python-psycopg2, python-lxml, python-PyMySQL, python3x-six, python-urllib3, PyYAML, python-attrs, python-jinja2, python-requests, python-atomicwrites, modwsgi, python3x-pip, python38, python-asn1crypto, python-chardet, python-markupsafe,...

8CVSS7.8AI score0.07269EPSS
Exploits1
OSV
OSV
added 2022/11/08 6:22 a.m.29 views

RLSA-2022:7548 Low: Image Builder security, bug fix, and enhancement update

Image Builder is a service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Security Fixes: golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service...

6.5CVSS7.4AI score0.0199EPSS
Exploits1References9
OSV
OSV
added 2022/11/08 6:22 a.m.28 views

RLSA-2022:7529 Moderate: container-tools:3.0 security update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 cri-o: memory exhaustion on the node when access to the kube api CVE-2022-1708 golang...

7.5CVSS8.9AI score0.05994EPSS
Exploits4References11
Rockylinux
Rockylinux
added 2022/11/08 6:21 a.m.16 views

qt5-qtmultimedia bug fix and enhancement update

An update is available for qt5-qtmultimedia. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

2AI score
Exploits0
Rockylinux
Rockylinux
added 2022/11/08 6:21 a.m.13 views

qt5-qtbase bug fix and enhancement update

An update is available for qt5-qtbase. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8...

2AI score
Exploits0
OSV
OSV
added 2022/11/08 6:20 a.m.37 views

RLSA-2022:7469 Moderate: container-tools:4.0 security and bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: cri-o: memory exhaustion on the node when access to the kube api CVE-2022-1708 golang: crash in a golang.org/x/crypto/ssh server CVE-2022-27191 runc: incorrect handlin...

7.5CVSS9.1AI score0.03931EPSS
Exploits1References5
OSV
OSV
added 2022/11/08 6:20 a.m.25 views

RLSA-2022:7458 Moderate: flatpak-builder security and bug fix update

Flatpak-builder is a tool for building flatpaks from sources. Security Fixes: flatpak: flatpak-builder --mirror-screenshots-url can access files outside the build directory CVE-2022-21682 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

7.7CVSS6.9AI score0.01666EPSS
Exploits0References3
Rows per page
Query Builder