USN-8179-4 linux-gcp-6.8 vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

Ubuntu: Security Advisory (USN-7833-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EUVD-2025-8916

Malicious code in bioql PyPI...

EUVD-2024-52592

Malicious code in bioql PyPI...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-28956: x86/ibt: Keep IBT disabled during alternative patching bsc1242006. CVE-2024-35840: mptcp: use OPTIONMPTCPMPJSYNACK in subflowfinishconnect bsc1224597...

Ubuntu: Security Advisory (USN-7517-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as...

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2025-1140)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : bonding: change ipseclock from spin lock to mutexCVE-2024-46678 ice: protect XDP configuration with a mutexCVE-2024-46765 sched/smt: Fix unbalance...

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-41014: xfs: add bounds checking to xlogrecoverprocessdata bsc1228408. CVE-2024-41013: xfs: do not walk off the end of a directory data block bsc1228405...

CVE-2025-24117

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iPadOS 17.7.4, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3. An app may be able to fingerprint the user...

Security update for the Linux Kernel RT (Live Patch 11 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505001338 fixes several issues. The following security issues were fixed: CVE-2021-47517: Fix panic when interrupt coaleceing is set via ethtool bsc1225429. CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. CVE-2024-43861: Fix memor...

DEBIAN-CVE-2023-39434

A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. Processing web content may lead to arbitrary code execution...

CVE-2022-22615

A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An application may be able to execute arbitrary code with kernel privileges...

Apple 多款产品缓冲区错误漏洞

Apple iOS and others are products of Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple tvOS is a smart TV operating system.Apple watchOS is a smart watch operating system. A buffer error vulnerability exists in several Apple products, which can be exploited by...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0893-1 Rating: important References: 1173029 1173063 1173107 1173187 1173188 1173251 1173254 1173292 Cross-References: CVE-2020-6505 CVE-2020-6506 CVE-2020-6507 CVE-2020-6509 Affected Products: openSUSE Leap...

Product update: Virtuozzo Infrastructure Platform 3.0 Update 5 Hotfix 2 (3.0.5-69)

This update enables upgrade to Virtuozzo Infrastructure Platform 3.5 and provides important system fixes. Vulnerability id: TTASK-31595, VSTOR-30463, VSTOR-30887 Several stability and performance improvements...

Product update: Virtuozzo Infrastructure Platform 3.0 Update 5 (3.0.5-62)

This update enables upgrade to Virtuozzo Infrastructure Platform 3.5 and provides important system fixes. Vulnerability id: VSTOR-28132, VSTOR-29361 Several stability and performance improvements...

Product update: Virtuozzo Infrastructure Platform 2.5 Update 8 (2.5.0-1680)

This update enables upgrade to the new major version 3.0 and provides important system fixes. Vulnerability id: VSTOR-23308 Journald could get stuck, waiting endlessly for "--verify" to complete and stalling services in an unresponsive state. Vulnerability id: VSTOR-23898 Under certain...

Oracle Linux 7 : kernel (ELSA-2017-2473-1)

Description of changes: 3.10.0-693.1.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel olkmodsigningkey.x509alexey.petrenko at oracle.com - Update x509.genkey bug 24817676 3.10.0-693.1.1 - fs dentry name snapshots Miklos Szeredi...

openSUSE Security Update : Chromium (openSUSE-2016-2250)

Chromium was updated to 53.0.2785.89 to fix a number of security issues. The following vulnerabilities were fixed: boo996648 - CVE-2016-5147: Universal XSS in Blink. - CVE-2016-5148: Universal XSS in Blink. - CVE-2016-5149: Script injection in extensions. - CVE-2016-5150: Use after free in Blink....