17013 matches found
Updated opencontainers-runc packages fix security vulnerabilities
The way masked paths are implemented in runc can be exploited to cause the host system to crash or halt CVE-2025-31133 and a flaw in /dev/console bind-mounts can lead to container escape CVE-2025-52565. Also, arbitrary write gadgets and procfs write redirects could be used to engineer container...
EUVD-2025-38442
In the Linux kernel, the following vulnerability has been resolved: serial: qcom-geni: Fix blocked task Revert commit 1afa70632c39 "serial: qcom-geni: Enable PM runtime for serial driver" and its dependent commit 86fa39dd6fb7 "serial: qcom-geni: Enable Serial on SA8255p Qualcomm platforms" becaus...
CVE-2025-40108
In the Linux kernel, the following vulnerability has been resolved: serial: qcom-geni: Fix blocked task Revert commit 1afa70632c39 "serial: qcom-geni: Enable PM runtime for serial driver" and its dependent commit 86fa39dd6fb7 "serial: qcom-geni: Enable Serial on SA8255p Qualcomm platforms" becaus...
UBUNTU-CVE-2025-40108
In the Linux kernel, the following vulnerability has been resolved: serial: qcom-geni: Fix blocked task Revert commit 1afa70632c39 "serial: qcom-geni: Enable PM runtime for serial driver" and its dependent commit 86fa39dd6fb7 "serial: qcom-geni: Enable Serial on SA8255p Qualcomm platforms" becaus...
CVE-2025-40108 serial: qcom-geni: Fix blocked task
In the Linux kernel, the following vulnerability has been resolved: serial: qcom-geni: Fix blocked task Revert commit 1afa70632c39 "serial: qcom-geni: Enable PM runtime for serial driver" and its dependent commit 86fa39dd6fb7 "serial: qcom-geni: Enable Serial on SA8255p Qualcomm platforms" becaus...
[SECURITY] Fedora 41 Update: dotnet9.0-9.0.111-1.fc41
.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...
[SECURITY] Fedora 42 Update: dotnet9.0-9.0.111-1.fc42
.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...
Malicious code in runtime-only-exploit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df98ccafcf2baedfdf4ff5c214099c3631b49363ec3a1641cef6c4e2054f8aae The package runtime-only-exploit was found to contain malicious code...
EUVD-2025-38401
Malicious code in runtime-only-exploit npm...
MAL-2025-49429 Malicious code in runtime-only-exploit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df98ccafcf2baedfdf4ff5c214099c3631b49363ec3a1641cef6c4e2054f8aae The package runtime-only-exploit was found to contain malicious code...
Fedora 41 : dotnet9.0 (2025-ece4f3816e)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-ece4f3816e advisory. This is the October 2025 release of .NET 9, updating the SDK to version 9.0.111 and runtime to version to 9.0.10. Release Notes: - SDK:...
Fedora 42 : dotnet9.0 (2025-e9c0b9e1b4)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-e9c0b9e1b4 advisory. This is the October 2025 release of .NET 9, updating the SDK to version 9.0.111 and runtime to version to 9.0.10. Release Notes: - SDK:...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a PM runtime enablement that causes tasks to block, potentially leading to a system hang...
PT-2025-45574
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc1-00004-g53e760d89498 Description The Linux kernel contained an issue within the serial component, specifically related to Qualcomm Geni drivers. A regression was introduced by commits 1afa70632c39 and...
containerd affected by a local privilege escalation via wide permissions on CRI directory
...
SUSE CVE-2025-64329
containerd is an open-source container runtime. Versions 1.7.28 and below, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4, and 2.2.0-beta.0 through 2.2.0-rc.1 contain a bug in the CRI Attach implementation where a user can exhaust memory on the host due to goroutine leaks. This issue is...
GHSA-QW9X-CQR3-WC7R vulnerabilities
Vulnerabilities for packages: rancher-agent, azure-container-networking, node-feature-discovery-fips, eks-distro-fips, grafana-alloy, podman, kubernetes-fips, falco-no-driver, rancher, kubernetes, sriov-network-device-plugin, rke2-runtime, buildah, cluster-autoscaler-fips,...
CVE-2025-52565 vulnerabilities
Vulnerabilities for packages: rancher-agent, azure-container-networking, node-feature-discovery-fips, eks-distro-fips, grafana-alloy, podman, kubernetes-fips, falco-no-driver, rancher, kubernetes, sriov-network-device-plugin, rke2-runtime, buildah, cluster-autoscaler-fips,...
CVE-2025-31133 vulnerabilities
Vulnerabilities for packages: rancher-agent, azure-container-networking, node-feature-discovery-fips, eks-distro-fips, grafana-alloy, podman, kubernetes-fips, falco-no-driver, rancher, kubernetes, sriov-network-device-plugin, rke2-runtime, buildah, cluster-autoscaler-fips,...
GHSA-9493-H29P-RFM2 vulnerabilities
Vulnerabilities for packages: rancher-agent, azure-container-networking, node-feature-discovery-fips, eks-distro-fips, grafana-alloy, podman, kubernetes-fips, falco-no-driver, rancher, kubernetes, sriov-network-device-plugin, rke2-runtime, buildah, cluster-autoscaler-fips,...