Lucene search
K

10 matches found

SUSE Linux
SUSE Linux
added 2025/08/27 10:29 a.m.3 views

Security update for ffmpeg

This update for ffmpeg fixes the following issues: CVE-2025-7700: Fixed NULL Pointer Dereference in FFmpeg ALS Decoder libavcodec/alsdec.c bsc1246790. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.9CVSS7.3AI score0.00342EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/16 12:0 a.m.5 views

PT-2025-33646

Name of the Vulnerable Software and Affected Versions Gianism versions through 5.2.2 rust-keylime affected versions not specified Description An issue exists in Gianism related to improper neutralization of input during web page generation, leading to a Stored Cross-Site Scripting condition. A...

5.9CVSS7.5AI score0.00205EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/08/15 12:51 p.m.6 views

Security update for podman

This update for podman fixes the following issues: CVE-2025-6032: Fixed machine init command failing to verify TLS certificate bsc1245320 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...

9CVSS7.3AI score0.00397EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.6 views

PT-2025-33645 · Undefined · Undefined

🚨 URGENT: Kubernetes admins must patch CVE-2025-02383 SUSE-2025-02383-2 ✅ Affects: kube-apiserver v1.26.x ✅ Risk: Moderate-severity RBAC bypass. ✅ Fix: Apply SUSE patches NOW + validate with kube-bench. Read more: 👉 https://t.co/VRCE9nkHn3 https://t.co/ukAF3LWe56...

7.2AI score
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/08/11 1:15 p.m.2 views

Security update for libgcrypt

This update for libgcrypt fixes the following issues: CVE-2024-2236: timing-based side-channel flaw in RSA implementation can lead to decryption of RSA ciphertexts bsc1221107. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

5.9CVSS9.8AI score0.01114EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/02/28 3:41 a.m.2 views

SUSE CVE-2024-22201

Jetty is a Java based web server and servlet engine. An HTTP/2 SSL connection that is established and TCP congested will be leaked when it times out. An attacker can cause many connections to end up in this state, and the server may run out of file descriptors, eventually causing the server to st...

7.5CVSS8.3AI score0.01433EPSS
Exploits0References4
ALT Linux
ALT Linux
added 2022/12/27 12:0 a.m.54 views

Security fix for the ALT Linux 10 package libtiff version 4.4.0-alt2

4.4.0-alt2 built Dec. 27, 2022 Alexander Danilov in task 311968 Dec. 18, 2022 Vladimir D. Seleznev - Applied SUSE patches fixed tiff-CVE-2022-2056, CVE-2022-2057, CVE-2022-2058, CVE-2022-2519, CVE-2022-2520, CVE-2022-2521, CVE-2022-3597, CVE-2022-3598, CVE-2022-3599, CVE-2022-3626, CVE-2022-3627,...

4.3CVSS7.2AI score0.01385EPSS
Exploits13
NCSC
NCSC
added 2021/04/20 12:0 a.m.4 views

Vulnerabilities fixed in QEMU

Several vulnerabilities have been fixed in QEMU. A malicious person can exploit the vulnerabilities to cause a denial-of-service cause, both in the guest system and the host system. Also a malicious party could potentially access memory that is allocated to guest systems other than his own. -= SU...

7.5CVSS7.1AI score0.05447EPSS
Exploits5
ALT Linux
ALT Linux
added 2019/04/09 12:0 a.m.80 views

Security fix for the ALT Linux 10 package libtiff version 4.0.10.0.57.f9fc01c3-alt1

April 9, 2019 Vladimir D. Seleznev 4.0.10.0.57.f9fc01c3-alt1 - Updated to v4.0.10-57-gf9fc01c3 ALT 36575, 34677. - Applied SUSE patches: + tiff-4.0.3-seek.patch; + tiff-4.0.3-compress-warning.patch; + tiff-CVE-2018-12900.patch. - Built with support of: + libjbig; + libwebp; + libzstd. - Fixes: +...

9.3CVSS8.5AI score0.25183EPSS
Exploits5
securityvulns
securityvulns
added 2006/10/09 12:0 a.m.40 views

yet another OpenSSH timing leak?

Hello Bugtraq, Here we are again... During a recent penetration test i stumbled upon yet another OpenSSH timing leak, leading to remote disclosure of valid usernames. It's not as big as the one i found in the past CVE-2003-0190, but it can indeed be exploited over the Internet, nevertheless. This...

5CVSS6.2AI score0.76751EPSS
Exploits10
Rows per page
Query Builder