Security update for rust-keylime

This update for rust-keylime fixes the following issues: Update to version 0.2.7+141: CVE-2025-58266: shlex: Fixed command injection bsc1247193 Update to version 0.2.7+117: CVE-2023-26964: rust-keylime: hyper,h2: stream stacking when H2 processing HTTP2 RSTSTREAM frames bsc1210344. CVE-2024-12224...

OESA-2025-2000 python-werkzeug security update

A comprehensive WSGI web application library Security Fixes: Werkzeug is a comprehensive WSGI web application library. If an upload of a file that starts with CR or LF and then is followed by megabytes of data without these characters: all of these bytes are appended chunk by chunk into internal...

SUSE CVE-2025-55193

Active Record connects classes to relational database tables. Prior to versions 7.1.5.2, 7.2.2.2, and 8.0.2.1, the ID passed to find or similar methods may be logged without escaping. If this is directly to the terminal it may include unescaped ANSI sequences. This issue has been patched in...

[SECURITY] [DLA 4273-1] postgresql-13 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4273-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb August 14, 2025 https://wiki.debian.org/LTS -...

ROOT-OS-UBUNTU-2204-CVE-2025-46835 CVE-2025-46835 in rootio-git - Patched by Root

Root has patched CVE-2025-46835 in the rootio-git package for Root:Ubuntu:22.04. Multiple fixed versions available...

Security update for python-urllib3

This update for python-urllib3 fixes the following issues: CVE-2025-50181: Pool managers now properly control redirects when retries is passed GHSA-pq67-6m6q-mj2v, bsc1244925 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

CVE-2025-55196

External Secrets Operator is a Kubernetes operator that integrates external secret management systems. From version 0.15.0 to before 0.19.2, a vulnerability was discovered where the List calls for Kubernetes Secret and SecretStore resources performed by the PushSecret controller did not apply a...

Security update for poppler

This update for poppler fixes the following issues: CVE-2025-50420: Fixed Denial of Service in pdfseparate utility bsc1247590 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comma...

Debian: Security Advisory (DSA-5973-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-54864

Hydra is a continuous integration service for Nix based projects. Prior to commit f7bda02, /api/push-github and /api/push-gitea are called by the corresponding forge without HTTP Basic authentication. Both forges do however feature HMAC signing with a secret key. Triggering an evaluation can be...

ROOT-OS-DEBIAN-12-CVE-2025-2173 CVE-2025-2173 in rootio-zvbi - Patched by Root

Root has patched CVE-2025-2173 in the rootio-zvbi package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2024-7531 CVE-2024-7531 in rootio-nss - Patched by Root

Root has patched CVE-2024-7531 in the rootio-nss package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2025-23048 CVE-2025-23048 in rootio-apache2 - Patched by Root

Root has patched CVE-2025-23048 in the rootio-apache2 package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2025-2174 CVE-2025-2174 in rootio-zvbi - Patched by Root

Root has patched CVE-2025-2174 in the rootio-zvbi package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-ALPINE-316-CVE-2022-30767 CVE-2022-30767 in rootio-u-boot - Patched by Root

Root has patched CVE-2022-30767 in the rootio-u-boot package for Root:Alpine:3.16. Multiple fixed versions available...

SUSE CVE-2025-8835

A vulnerability was found in JasPer up to 4.2.5. Affected by this vulnerability is the function jasimagechclrspc of the file src/libjasper/base/jasimage.c of the component Image Color Space Conversion Handler. The manipulation leads to null pointer dereference. It is possible to launch the attack...

CVE-2025-55158

Vim is an open source, command line text editor. In versions from 9.1.1231 to before 9.1.1406, when processing nested tuples during Vim9 script import operations, an error during evaluation can trigger a double-free in Vim’s internal typed value typvalT management. Specifically, the cleartv...

CVE-2025-55150

Stirling-PDF is a locally hosted web application that performs various operations on PDF files. Prior to version 1.1.0, when using the /api/v1/convert/html/pdf endpoint to convert HTML to PDF, the backend calls a third-party tool to process it and includes a sanitizer for security sanitization...

CLSA-2025-1754940505 git: Fix of CVE-2025-27613

CVE-2025-27613: fix issue where untrusted repositories could create and truncate files, with the fix implemented in versions 2.43.7 and later...

CLSA-2025-1754939966 Fix CVE(s): CVE-2025-48386

SECURITY UPDATE: security vulnerability in package - debian/patches/CVE-2025-48386.patch: fix buffer overflow in wcsncat caused by off-by-one error and length not accounted for in wcsncat calls - CVE-2025-48386...