MAL-2025-34351 Malicious code in systemd-watchdog-notify (npm)

The package systemd-watchdog-notify was found to contain malicious code...

SUSE-SU-2025:20554-1 Security update for systemd

This update for systemd fixes the following issues: - Remove the script used to help migrating the language and locale settings located in /etc/sysconfig/language on old systems to the systemd default locations bsc1247074 The script was introduced more than 7 years ago and all systems running TW...

Fedora: Security Advisory (FEDORA-2025-b4a1689983)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 42 : clash-meta (2025-b4a1689983)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-b4a1689983 advisory. upgrade to 1.19.12 Mitigating remote code execution vulnerabilities using systemd sandboxing features. Tenable has extracted the preceding description block...

[SECURITY] Fedora 42 Update: toolbox-0.2-1.fc42

Toolbx is a tool for Linux, which allows the use of interactive command line environments for software development and troubleshooting the host operating system, without having to install software on the host. It is built on top of Podman and other standard container technologies from OCI. Toolbx...

Linux Distros Unpatched Vulnerability : CVE-2025-4598

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the...

Linux Distros Unpatched Vulnerability : CVE-2023-52613

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drivers/thermal/loongson2thermal: Fix incorrect PTRERR judgment PTRERR returns -ENODEV when...

SUSE: Security Advisory (SUSE-SU-2025:02675-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15: libsystemd0 / libsystemd0-32bit / libudev1 / libudev1-32bit / etc (SUSE-SU-2025:02675-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02675-1 advisory. - CVE-2025-4598: Fixed race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump...

Security update for systemd

This update for systemd fixes the following issues: CVE-2025-4598: Fixed race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump bsc1243935. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods li...

SUSE-SU-2025:02675-1 Security update for systemd

This update for systemd fixes the following issues: - CVE-2025-4598: Fixed race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump bsc1243935...

OESA-2025-1946 systemd security update

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged...

Debian: Security Advisory (DLA-4259-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 4259-1] systemd security update

Debian LTS Advisory DLA-4259-1 [email protected] https://www.debian.org/lts/security/ Carlos Henrique Lima Melara July 30, 2025 https://wiki.debian.org/LTS Package : systemd Version : 247.3-7+deb11u7 CVE ID : CVE-2025-4598 Debian Bug : 1106785 The Qualys Threat Research Unit TRU...

DLA-4259-1 systemd - security update

Bulletin has no description...

Debian dla-4259 : libnss-myhostname - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4259 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4259-1 [email protected] https://www.debian.org/lts/security/...

uptux

uptux Specialized privilege escalation checks for Linux systems. Implemented so far: - Writable systemd paths, services, timers, and socket units - Disassembles systemd unit files looking for: - References to executables that are writable - References to broken symlinks pointing to writeable...

NewStart CGSL MAIN 7.02 : systemd Vulnerability (NS-SA-2025-0186)

The remote NewStart CGSL host, running version MAIN 7.02, has systemd packages installed that are affected by a vulnerability: - A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowi...

PAM Environment Variable Injection

PAM pamenv.so module allows environment variable injection via /.pamenvironment leading to privilege escalation through SystemD session manipulation. This scripts gauges exploitability...

gnome-remote-desktop: Uncontrolled Resource Consumption due to Malformed RDP PDUs

A flaw was found in gnome-remote-desktop. Once gnome-remote-desktop listens for RDP connections, an unauthenticated attacker can exhaust system resources and repeatedly crash the process. There may be a resource leak after many attacks, which will also result in gnome-remote-desktop no longer bei...