183 matches found
SUSE-SU-2025:03540-1 Security update for docker-stable
This update for docker-stable fixes the following issues: - Include historical changelog data from before the docker-stable fork. The initial changelog entry did technically provide all the necessary information, but our CVE tracking tools do not understand how the package is forked and so it see...
EUVD-2021-1086
Malware in sbrugna...
EUVD-2023-1058
Malicious code in bioql PyPI...
[SECURITY] Fedora 42 Update: xwayland-satellite-0.7-1.fc42
xwayland-satellite grants rootless Xwayland integration to any Wayland compositor implementing xdgwmbase and viewporter. This is particularly useful for compositors that understandably do not want to go through implementing support for rootless Xwayland themselves...
[SECURITY] Fedora 41 Update: xwayland-satellite-0.7-1.fc41
xwayland-satellite grants rootless Xwayland integration to any Wayland compositor implementing xdgwmbase and viewporter. This is particularly useful for compositors that understandably do not want to go through implementing support for rootless Xwayland themselves...
Linux Distros Unpatched Vulnerability : CVE-2021-20199
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 including from remote hosts. This impacts containerized...
Docker Engine < 25.0.13 / 26.0 < 28.0.0 Network Isolation Failure
The version of the Docker Engine Moby installed on the remote host is prior to 23.0.15 or 28.0.0. When firewalld reloads, Docker fails to re-create iptables rules that isolate bridge networks, allowing any container to access all ports on any other container across different bridge networks on th...
DEBIAN-CVE-2025-54410
Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. A firewalld vulnerability affects Moby releases before 28.0.0. When firewalld reloads, Docker fails to re-create...
Security update for docker
This update for docker fixes the following issues: Update to Docker 28.2.2-ce bsc1243833, bsc1242114: CVE-2025-22872: golang.org/x/net/html: incorrectly interpreted tags can cause content to be placed wrong scope during DOM construction bsc1241830. Other bugfixes: Always clear SUSEConnect suse...
SUSE-SU-2025:02366-2 Security update for docker
This update for docker fixes the following issues: Update to Docker 28.2.2-ce bsc1243833, bsc1242114: - CVE-2025-22872: golang.org/x/net/html: incorrectly interpreted tags can cause content to be placed wrong scope during DOM construction bsc1241830. Other bugfixes: - Always clear SUSEConnect sus...
Moby firewalld reload removes bridge network isolation
Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby is commonly referred to as Docker, or Docker...
SUSE-SU-2025:20535-1 Security update for docker
This update for docker fixes the following issues: - Update to Go 1.24 for builds, to match upstream. - Update to Docker 28.3.2-ce. See upstream changelog online at - Update to Docker 28.3.1-ce. See upstream changelog online at - Update to Docker 28.3.0-ce. See upstream changelog online at...
Security update for docker
This update for docker fixes the following issues: Update to Go 1.24 for builds, to match upstream. Update to Docker 28.3.2-ce. See upstream changelog online at Update to Docker 28.3.1-ce. See upstream changelog online at Update to Docker 28.3.0-ce. See upstream changelog online at bsc1246556...
SUSE-SU-2025:20510-1 Security update for docker
This update for docker fixes the following issues: - Update to Go 1.24 for builds, to match upstream. - Update to Docker 28.3.2-ce. See upstream changelog online at - Update to Docker 28.3.1-ce. See upstream changelog online at - Update to Docker 28.3.0-ce. See upstream changelog online at...
Security update for docker
This update for docker fixes the following issues: Update to Go 1.24 for builds, to match upstream. Update to Docker 28.3.2-ce. See upstream changelog online at Update to Docker 28.3.1-ce. See upstream changelog online at Update to Docker 28.3.0-ce. See upstream changelog online at bsc1246556...
SUSE-SU-2025:02366-1 Security update for docker
This update for docker fixes the following issues: Update to Docker 28.2.2-ce bsc1243833, bsc1242114: - CVE-2025-22872: golang.org/x/net/html: incorrectly interpreted tags can cause content to be placed wrong scope during DOM construction bsc1241830. Other bugfixes: - Always clear SUSEConnect sus...
Security update for docker
This update for docker fixes the following issues: Update to Docker 28.2.2-ce bsc1243833, bsc1242114: CVE-2025-22872: golang.org/x/net/html: incorrectly interpreted tags can cause content to be placed wrong scope during DOM construction bsc1241830. Other bugfixes: Always clear SUSEConnect suse...
TencentOS Server 4: runc (TSSA-2024:0600)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0600 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
podman security update
5.4.0-9.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 5:5.4.0-9 - update to the latest content of...
Linux Distros Unpatched Vulnerability : CVE-2023-25809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes...