Lucene search
K
AlmalinuxRecent

5313 matches found

AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•4 views

Important: .NET 8.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.125 and .NET Runtime...

7.5CVSS5.8AI score0.02818EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•7 views

Important: .NET 10.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 10.0.104 and .NET Runtime...

7.5CVSS6.9AI score0.02818EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•6 views

Important: libvpx security update

The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container file format. Security Fixes: libvpx: Heap buffer overflow in libvpx CVE-2026-2447 For more details about the security issues, including the...

8.8CVSS6AI score0.006EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•5 views

Moderate: compat-openssl11 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is provided for compatibility with previous releases. Security Fixes: openssl: OpenSSL: Arbitrary code execution due to...

7.4CVSS7.5AI score0.00444EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•12 views

Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6CVSS5.9AI score0.0056EPSS
Exploits0References10
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•6 views

Moderate: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6CVSS7.2AI score0.0056EPSS
Exploits0References10
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•7 views

Important: .NET 8.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.125 and .NET Runtime...

7.5CVSS5.8AI score0.02818EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•8 views

Important: .NET 9.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 9.0.115 and .NET Runtime...

7.5CVSS5.8AI score0.02818EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•7 views

Important: .NET 10.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 10.0.104 and .NET Runtime...

7.5CVSS5.8AI score0.02818EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•8 views

Moderate: vim security update

Vim Vi IMproved is an updated and improved version of the vi editor. Security Fixes: vim: Vim: Arbitrary code execution via 'helpfile' option processing CVE-2026-25749 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...

6.6CVSS6.2AI score0.00213EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/03/11 12:0 a.m.•7 views

Important: mingw-libpng security update

MinGW Windows Libpng library. Security Fixes: libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API CVE-2026-22801 libpng: libpng: Denial of service and information disclosure via heap buffer over-read in pngimagefinishread CVE-2026-22695...

8.3CVSS6AI score0.00955EPSS
Exploits2References8
AlmaLinux
AlmaLinux
•added 2026/03/10 12:0 a.m.•6 views

Important: opentelemetry-collector security update

Collector with the supported components for a AlmaLinux build of OpenTelemetry Security Fixes: golang: net/url: Memory exhaustion in query parameter parsing in net/url CVE-2025-61726 crypto/tls: Unexpected session resumption in crypto/tls CVE-2025-68121 For more details about the security issues,...

10CVSS5.8AI score0.01945EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2026/03/10 12:0 a.m.•9 views

Moderate: python3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6CVSS5.8AI score0.0056EPSS
Exploits0References9
AlmaLinux
AlmaLinux
•added 2026/03/10 12:0 a.m.•5 views

Moderate: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6CVSS5.8AI score0.0056EPSS
Exploits0References8
AlmaLinux
AlmaLinux
•added 2026/03/10 12:0 a.m.•11 views

Moderate: nginx:1.26 security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fixes: nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections CVE-2026-1642 For more details about the security issues,...

8.2CVSS5.8AI score0.00339EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/10 12:0 a.m.•10 views

Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6CVSS7.1AI score0.0056EPSS
Exploits0References8
AlmaLinux
AlmaLinux
•added 2026/03/10 12:0 a.m.•10 views

Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:...

8.8CVSS6.4AI score0.01157EPSS
Exploits0References12
AlmaLinux
AlmaLinux
•added 2026/03/10 12:0 a.m.•4 views

Moderate: gnutls security update

The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fixes: gnutls: Stack-based Buffer Overflow in gnutlspkcs11tokeninit Function CVE-2025-9820 gnutls: GnuTLS: Denial of Service vi...

5.3CVSS5.8AI score0.00638EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2026/03/10 12:0 a.m.•8 views

Important: python-pyasn1 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS7.3AI score0.00679EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•8 views

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: ipv6: BUG in pskbexpandhead as part of calipsoskbuffsetattr CVE-2025-71085 kernel: macvlan: fix possible UAF in macvlanforwardsour...

7.8CVSS6.1AI score0.00188EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•6 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel iouring: Local privilege escalation, information disclosure, or denial of service via use-after-free CVE-2025-38106 kernel: macvlan: fix possible UAF in macvlanforwardsource...

7.8CVSS6.9AI score0.00188EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•7 views

Important: postgresql:16 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator...

8.8CVSS6.2AI score0.01208EPSS
Exploits3References9
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•6 views

Important: postgresql:12 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator...

8.8CVSS6.2AI score0.01208EPSS
Exploits3References8
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•6 views

Important: postgresql:16 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator...

8.8CVSS6.2AI score0.01208EPSS
Exploits3References8
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•7 views

Important: postgresql:13 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator...

8.8CVSS6.2AI score0.01208EPSS
Exploits3References8
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•10 views

Important: libvpx security update

The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container file format. Security Fixes: libvpx: Heap buffer overflow in libvpx CVE-2026-2447 For more details about the security issues, including the...

8.8CVSS6AI score0.006EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•7 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ipv6: BUG in pskbexpandhead as part of calipsoskbuffsetattr CVE-2025-71085 kernel: macvlan: fix possible UAF in macvlanforwardsource CVE-2026-23001 For more details about the security...

7.8CVSS6AI score0.00188EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•8 views

Important: postgresql:15 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator...

8.8CVSS6.2AI score0.01208EPSS
Exploits3References8
AlmaLinux
AlmaLinux
•added 2026/03/09 12:0 a.m.•6 views

Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: net/url: Memory exhaustion in query parameter parsing in net/url CVE-2025-61726...

10CVSS5.8AI score0.01945EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2026/03/05 12:0 a.m.•7 views

Moderate: nfs-utils security update

The nfs-utils packages provide a daemon for the kernel Network File System NFS server and related tools, which provides better performance than the traditional Linux NFS server used by most users. These packages also contain the mount.nfs, umount.nfs, and showmount programs. Security Fixes:...

6.5CVSS5.8AI score0.00462EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/05 12:0 a.m.•15 views

Moderate: delve security update

Delve is a debugger for the Go programming language. The goal of the project is to provide a simple, full featured debugging tool for Go. Delve should be easy to invoke and easy to use. Chances are if you're using a debugger, things aren't going your way. With that in mind, Delve should stay out ...

10CVSS5.8AI score0.00765EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/03/05 12:0 a.m.•13 views

Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted...

10CVSS5.8AI score0.01945EPSS
Exploits3References8
AlmaLinux
AlmaLinux
•added 2026/03/05 12:0 a.m.•8 views

Important: postgresql:15 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator...

8.8CVSS6.2AI score0.01208EPSS
Exploits3References8
AlmaLinux
AlmaLinux
•added 2026/03/05 12:0 a.m.•10 views

Important: osbuild-composer security update

A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients. Security Fixes: golang:...

10CVSS5.8AI score0.01945EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2026/03/05 12:0 a.m.•10 views

Important: image-builder security update

A local binary for building customized OS artifacts such as VM images and OSTree commits. Uses osbuild under the hood. Security Fixes: crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-61729 golang: net/url: Memory exhaustion in query...

10CVSS5.8AI score0.01945EPSS
Exploits3References8
AlmaLinux
AlmaLinux
•added 2026/03/05 12:0 a.m.•7 views

Moderate: nfs-utils security update

The nfs-utils packages provide a daemon for the kernel Network File System NFS server and related tools, which provides better performance than the traditional Linux NFS server used by most users. These packages also contain the mount.nfs, umount.nfs, and showmount programs. Security Fixes:...

6.5CVSS5.8AI score0.00462EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/04 12:0 a.m.•6 views

Important: postgresql security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator...

8.8CVSS6.2AI score0.01208EPSS
Exploits3References8
AlmaLinux
AlmaLinux
•added 2026/03/04 12:0 a.m.•9 views

Important: osbuild-composer security update

A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients. Security Fixes: crypto/x50...

10CVSS5.8AI score0.01945EPSS
Exploits4References10
AlmaLinux
AlmaLinux
•added 2026/03/03 12:0 a.m.•10 views

Moderate: nginx:1.24 security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fixes: nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections CVE-2026-1642 For more details about the security issues,...

8.2CVSS5.9AI score0.00339EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/03 12:0 a.m.•15 views

Important: go-rpm-macros security update

This package provides build-stage rpm automation to simplify the creation of Go language golang packages. It does not need to be included in the default build root: go-srpm-macros will pull it in for Go packages only. Security Fixes: golang: net/url: Memory exhaustion in query parameter parsing i...

7.5CVSS5.9AI score0.01945EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/02 12:0 a.m.•7 views

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration CVE-2026-23097 For more details about the security...

5.5CVSS6AI score0.00114EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/02 12:0 a.m.•7 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: libvpx: Heap buffer overflow in libvpx CVE-2026-2447 firefox: Invalid pointer in the JavaScript Engine component CVE-2026-2785 firefox: Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR...

10CVSS6.1AI score0.00604EPSS
Exploits0References78
AlmaLinux
AlmaLinux
•added 2026/03/02 12:0 a.m.•9 views

Important: valkey security update

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.5CVSS6AI score0.00586EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/02 12:0 a.m.•14 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: smc: Use skdstget and dstdevrcu in smcclcprfxmatch CVE-2025-40168 kernel: ipv6: BUG in pskbexpandhead as part of calipsoskbuffsetattr CVE-2025-71085 kernel: Linux kernel: Denial of Servic...

5.5CVSS6AI score0.00154EPSS
Exploits0References8
AlmaLinux
AlmaLinux
•added 2026/03/02 12:0 a.m.•7 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: libvpx: Heap buffer overflow in libvpx CVE-2026-2447 firefox: Invalid pointer in the JavaScript Engine component CVE-2026-2785 firefox: Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR...

10CVSS6.1AI score0.00604EPSS
Exploits0References78
AlmaLinux
AlmaLinux
•added 2026/03/02 12:0 a.m.•8 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration CVE-2026-23097 For more details about the security issues, including the impact, a CVSS score, acknowledgments...

5.5CVSS6AI score0.00114EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/02/26 12:0 a.m.•7 views

Important: libpng security update

The libpng packages contain a library of functions for creating and manipulating Portable Network Graphics PNG image format files. Security Fixes: libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API CVE-2026-22801 libpng: libpng: Denial of...

8.3CVSS6.2AI score0.00955EPSS
Exploits2References8
AlmaLinux
AlmaLinux
•added 2026/02/26 12:0 a.m.•8 views

Important: mingw-fontconfig security update

MinGW Windows Fontconfig library. Security Fixes: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing CVE-2025-59375 For more details about the security issues, including the impact, a CVSS score, acknowledgments...

7.5CVSS6AI score0.01279EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/02/26 12:0 a.m.•15 views

Important: container-tools:rhel8 security update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang: html/template: errors returned from MarshalJSON methods may break template escaping CVE-2024-24785 crypto/x509: golang: Denial of Service due to excessive...

7.5CVSS5.9AI score0.00795EPSS
Exploits3References8
AlmaLinux
AlmaLinux
•added 2026/02/25 12:0 a.m.•18 views

Important: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

10CVSS6.7AI score0.01945EPSS
Exploits3References8
Total number of security vulnerabilities5313