Photon OS 4.0: Dotnet PHSA-2026-4.0-1036

An update of the dotnet package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-1036. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2026-53655 vulnerabilities

Vulnerabilities for packages: saf, pulumi, renovate, code-server...

CVE-2026-53539 vulnerabilities

Vulnerabilities for packages: airflow-postgres-fips, airflow-core, litellm, tritonserver-backend-vllm-cuda-12.9, wazuh-manager-fips...

Important: .NET 8.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.128 and .NET Runtime...

DEBIAN-CVE-2026-52904

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix nvkmdevice leak on aperture removal failure When apertureremoveconflictingpcidevices fails during probe, the error path returns directly without unwinding the nvkmdevice that was just allocated by nvkmdevicepcine...

CVE-2026-45536 vulnerabilities

Vulnerabilities for packages: camunda, hono, zipkin, kayenta-fips, management-api-for-apache-cassandra-4.0, wavefront-proxy, strimzi-kafka-operator-fips, apache-activemq-artemis, flyway-fips, cassandra-reaper, management-api-for-apache-cassandra-4.1, apache-hop-fips, camunda-zeebe,...

amazon-ssm-agent-3.3.4624.0-2.1 on GA media (moderate)

amazon-ssm-agent-3.3.4624.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10966-1 Rating: moderate Cross-References: CVE-2026-39827 CVE-2026-39828 CVE-2026-39834 CVE-2026-46598 CVSS scores: CVE-2026-39827 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2026-39827 SUSE : 7.1...

chromedriver-149.0.7827.53-2.1 on GA media (moderate)

chromedriver-149.0.7827.53-2.1 on GA media Announcement ID: openSUSE-SU-2026:10958-1 Rating: moderate Cross-References: CVE-2026-10881 CVE-2026-10882 CVE-2026-10883 CVE-2026-10884 CVE-2026-10885 CVE-2026-10886 CVE-2026-10887 CVE-2026-10888 CVE-2026-10889 CVE-2026-10890 CVE-2026-10891 CVE-2026-108...

Amazon Linux 2023 : python3.12, python3.12-devel, python3.12-idle (ALAS2023-2026-1821)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1821 advisory. The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.aud...

RHEL 9 : mysql (RHSA-2026:23332)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:23332 advisory. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and...

CVE-2026-9929 vulnerabilities

Vulnerabilities for packages: chromium...

Fedora 43 : jpegxl (2026-3e75b379d4)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3e75b379d4 advisory. Update to version 0.11.2. Resolves CVE-2025-12474 and CVE-2026-1837. Release notes: https://github.com/libjxl/libjxl/releases/tag/v0.11.2 Tenable ha...

CVE-2026-42876 vulnerabilities

Vulnerabilities for packages: external-secrets-operator...

DEBIAN-CVE-2026-46255

In the Linux kernel, the following vulnerability has been resolved: dmaengine: fsl-edma: don't explicitly disable clocks in .remove The clocks in fsledmaengine::muxclk are allocated and enabled with devmclkgetenabled, which automatically cleans these resources up, but these clocks are also manual...

PT-2026-45932

BREAKING: Samsung discloses critical CVE-2026-23786 and CVE-2024-53922 in semiconductor products, enabling potential unauthorized access with patches pending. https://t.co/As20ekaylO...

openSUSE 16 Security Update : trivy (openSUSE-SU-2026:20833-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20833-1 advisory. Changes in trivy: - update x/crypto to 0.52.0 bsc1266075, CVE-2026-39827, CVE-2026-39834,CVE-2026-39828,CVE-2026-39829,CVE-2026-39831,...

CVE-2026-48800

creationtimestamp| type| source ---|---|--- 2026-05-28 12:51:30+00:00| seen| https://www.acn.gov.it/portale/w/notepad-poc-pubblici-per-le-cve-2026-48800-cve-2026-48778-e-cve-2026-48770 2026-05-29 13:15:04+00:00| seen| https://t.me/bdufstecru/3207 2026-05-29 22:04:27+00:00| seen|...

DEBIAN-CVE-2026-46187

In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: fix kthread lifetime race between self-exit and external-stop RSI driver use both self-exitkthreadcompleteandexit and external-stop kthreadstop when killing a kthread. Generally, kthreadstop is called first, and in thi...

DEBIAN-CVE-2026-46146

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Avoid potential endless loop in convertchmapv3 The convertchmapv3 has a loop with its increment size of csdesc-wLength, but we forgot to validate csdesc-wLength itself, which may lead to potential endless loop by...

Important: Red Hat Security Advisory: container-tools:rhel8 security update

An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security h...