Lucene search
K
AlmalinuxRecent

5313 matches found

AlmaLinux
AlmaLinux
•added 2026/01/22 12:0 a.m.•11 views

Moderate: glib2 security update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib: Integer overflow in in...

7.7CVSS5.5AI score0.00306EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/01/22 12:0 a.m.•9 views

Important: java-21-openjdk security update

The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fixes: JDK: Improve JMX connections CVE-2026-21925 JDK: Improve HttpServer Request handling CVE-2026-21933 JDK: Enhance Certificate Checking CVE-2026-21945 libpng:...

7.5CVSS5.8AI score0.00864EPSS
Exploits6References7
AlmaLinux
AlmaLinux
•added 2026/01/22 12:0 a.m.•16 views

Important: java-17-openjdk security update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: JDK: Improve JMX connections CVE-2026-21925 JDK: Improve HttpServer Request handling CVE-2026-21933 JDK: Enhance Certificate Checking CVE-2026-21945 libpn...

7.5CVSS5.8AI score0.00864EPSS
Exploits6References7
AlmaLinux
AlmaLinux
•added 2026/01/21 12:0 a.m.•5 views

Important: go-toolset:rhel8 security update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-61729 For more details about the security issues, including the...

7.5CVSS5.9AI score0.00459EPSS
Exploits2References4
AlmaLinux
AlmaLinux
•added 2026/01/21 12:0 a.m.•6 views

Important: golang security update

The golang packages provide the Go programming language compiler. Security Fixes: crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-61729 For more details about the security issues, including the impact, a CVSS score, acknowledgments, an...

7.5CVSS5.5AI score0.00459EPSS
Exploits2References4
AlmaLinux
AlmaLinux
•added 2026/01/21 12:0 a.m.•7 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: Spoofing issue in the Downloads Panel component CVE-2025-14327 firefox: Use-after-free in the JavaScript: GC component CVE-2026-0885 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.7,...

9.8CVSS5.6AI score0.0057EPSS
Exploits0References28
AlmaLinux
AlmaLinux
•added 2026/01/21 12:0 a.m.•6 views

Moderate: glib2 security update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib: Integer overflow in in...

7.7CVSS5.5AI score0.00306EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/01/21 12:0 a.m.•7 views

Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:...

7.8CVSS6.2AI score0.00544EPSS
Exploits1References10
AlmaLinux
AlmaLinux
•added 2026/01/21 12:0 a.m.•6 views

Moderate: pcs security update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: tornado: Tornado Quadratic DoS via Repeated Header Coalescing CVE-2025-67725 tornado: Tornado Quadratic DoS via Crafted Multipart Parameters CVE-2025-67726 For more details about...

7.5CVSS5.5AI score0.00396EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/01/19 12:0 a.m.•7 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: smb: client: Fix use-after-free in cifsfilldirent CVE-2025-38051 kernel: smb: client: let recvdone verify dataoffset, datalength a...

7.8CVSS6.9AI score0.00183EPSS
Exploits0References12
AlmaLinux
AlmaLinux
•added 2026/01/19 12:0 a.m.•7 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: drm/xe: Make dma-fences compliant with the safe access rules CVE-2025-38703 kernel: smb: client: let recvdone verify dataoffset, datalength and remainingdatalength CVE-2025-39933 kernel:...

7.8CVSS5.5AI score0.00335EPSS
Exploits0References12
AlmaLinux
AlmaLinux
•added 2026/01/19 12:0 a.m.•7 views

Important: gpsd-minimal security update

gpsd is a service daemon that mediates access to a GPS sensor connected to the host computer by serial or USB interface, making its data on the location/course/velocity of the sensor available to be queried on TCP port 2947 of the host computer. The AlmaLinux support for this package is limited...

9.8CVSS6.1AI score0.00674EPSS
Exploits3References6
AlmaLinux
AlmaLinux
•added 2026/01/19 12:0 a.m.•7 views

Moderate: transfig security update

The transfig utility creates a makefile which translates FIG created by xfig or PIC figures into a specified LaTeX graphics language for example, PostScriptTM. Transfig is used to create TeX documents which are portable i.e., they can be printed in a wide variety of environments. Install transfig...

7.8CVSS6AI score0.00249EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/01/19 12:0 a.m.•9 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: smb: client: Fix use-after-free in cifsfilldirent CVE-2025-38051 kernel: smb: client: let recvdone verify dataoffset, datalength and remainingdatalength CVE-2025-39933 kernel: drm/i915:...

7.8CVSS6.7AI score0.00183EPSS
Exploits0References12
AlmaLinux
AlmaLinux
•added 2026/01/19 12:0 a.m.•9 views

Important: jmc security update

JDK Mission Control is a powerful profiler for HotSpot JVMs and has an advanced set of tools that enables efficient and detailed analysis of the extensive data collected by JDK Flight Recorder. The tool chain enables developers and administrators to collect and analyze data from Java applications...

8.2CVSS5.5AI score0.00562EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/19 12:0 a.m.•7 views

Important: net-snmp security update

The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol SNMP, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command...

9.8CVSS6.2AI score0.4269EPSS
Exploits2References4
AlmaLinux
AlmaLinux
•added 2026/01/19 12:0 a.m.•10 views

Important: container-tools:rhel8 security update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSHAGENTSUCCESS CVE-2025-47913 For more details about the security...

7.5CVSS5.5AI score0.00591EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/01/15 12:0 a.m.•7 views

Moderate: libpq security update

The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql: libpq undersizes allocations, via integer wraparound CVE-2025-12818 For more details about the security issues, including the impact, a CVSS score,...

5.9CVSS5.5AI score0.00307EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/15 12:0 a.m.•8 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Spoofing issue in the Downloads Panel component CVE-2025-14327 firefox: Use-after-free in the JavaScript: GC component CVE-2026-0885 firefox: thunderbird: Memor...

9.8CVSS5.6AI score0.0057EPSS
Exploits0References28
AlmaLinux
AlmaLinux
•added 2026/01/15 12:0 a.m.•8 views

Important: gnupg2 security update

The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fixes: GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write CVE-2025-68973 For more details about...

7.8CVSS7.8AI score0.00129EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/01/15 12:0 a.m.•3 views

Important: net-snmp security update

The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol SNMP, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command...

9.8CVSS6.1AI score0.4269EPSS
Exploits2References4
AlmaLinux
AlmaLinux
•added 2026/01/15 12:0 a.m.•9 views

Important: gnupg2 security update

The GNU Privacy Guard GnuPG or GPG is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Security Fixes: GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write CVE-2025-68973 For more details about...

7.8CVSS7.8AI score0.00129EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/01/15 12:0 a.m.•6 views

Moderate: transfig security update

The transfig utility creates a makefile which translates FIG created by xfig or PIC figures into a specified LaTeX graphics language for example, PostScriptTM. Transfig is used to create TeX documents which are portable i.e., they can be printed in a wide variety of environments. Install transfig...

7.8CVSS5.5AI score0.00249EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/01/15 12:0 a.m.•3 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Spoofing issue in the Downloads Panel component CVE-2025-14327 firefox: Use-after-free in the JavaScript: GC component CVE-2026-0885 firefox: thunderbird: Memor...

9.8CVSS5.6AI score0.0057EPSS
Exploits0References28
AlmaLinux
AlmaLinux
•added 2026/01/14 12:0 a.m.•3 views

Moderate: vsftpd security update

The vsftpd packages include a Very Secure File Transfer Protocol FTP daemon, which is used to serve files over a network. Security Fixes: vsftpd: vsftpd: Denial of service via integer overflow in ls command parameter parsing CVE-2025-14242 For more details about the security issues, including the...

6.5CVSS5.6AI score0.00737EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/14 12:0 a.m.•5 views

Moderate: cups security update

The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: CUPS: Local denial-of-service via cupsd.conf update and related issues CVE-2025-61915 cups: Slow client communication leads to a possible DoS attack CVE-2025-584...

6.7CVSS5.4AI score0.00409EPSS
Exploits2References6
AlmaLinux
AlmaLinux
•added 2026/01/14 12:0 a.m.•5 views

Moderate: vsftpd security update

The vsftpd packages include a Very Secure File Transfer Protocol FTP daemon, which is used to serve files over a network. Security Fixes: vsftpd: vsftpd: Denial of service via integer overflow in ls command parameter parsing CVE-2025-14242 For more details about the security issues, including the...

6.5CVSS5.5AI score0.00737EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/13 12:0 a.m.•9 views

Moderate: postgresql:13 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: CREATE STATISTICS does not check for schema CREATE privilege CVE-2025-12817 postgresql: libpq undersizes allocations, via integer wraparound CVE-2025-12818 For more details about the security...

5.9CVSS5.5AI score0.00307EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/01/13 12:0 a.m.•8 views

Moderate: postgresql:16 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: CREATE STATISTICS does not check for schema CREATE privilege CVE-2025-12817 postgresql: libpq undersizes allocations, via integer wraparound CVE-2025-12818 For more details about the security...

5.9CVSS5.5AI score0.00307EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/01/13 12:0 a.m.•4 views

Moderate: postgresql:15 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: CREATE STATISTICS does not check for schema CREATE privilege CVE-2025-12817 postgresql: libpq undersizes allocations, via integer wraparound CVE-2025-12818 For more details about the security...

5.9CVSS5.5AI score0.00307EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/01/13 12:0 a.m.•7 views

Moderate: postgresql security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: CREATE STATISTICS does not check for schema CREATE privilege CVE-2025-12817 postgresql: libpq undersizes allocations, via integer wraparound CVE-2025-12818 For more details about the security...

5.9CVSS5.5AI score0.00307EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/01/13 12:0 a.m.•4 views

Moderate: postgresql:16 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: CREATE STATISTICS does not check for schema CREATE privilege CVE-2025-12817 postgresql: libpq undersizes allocations, via integer wraparound CVE-2025-12818 For more details about the security...

5.9CVSS5.5AI score0.00307EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/01/13 12:0 a.m.•10 views

Moderate: postgresql:15 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: CREATE STATISTICS does not check for schema CREATE privilege CVE-2025-12817 postgresql: libpq undersizes allocations, via integer wraparound CVE-2025-12818 For more details about the security...

5.9CVSS5.5AI score0.00307EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/01/12 12:0 a.m.•8 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing...

7.3AI score0.00213EPSS
Exploits0References8
AlmaLinux
AlmaLinux
•added 2026/01/12 12:0 a.m.•6 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: HID: multitouch: fix slab out-of-bounds access in mtreportfixup CVE-2025-39806 kernel: audit: fix out-of-bounds read in auditcomparednamepath CVE-2025-39840 kernel: mm/memory-failure: fix...

7.1CVSS7.1AI score0.00184EPSS
Exploits0References10
AlmaLinux
AlmaLinux
•added 2026/01/12 12:0 a.m.•4 views

Moderate: libpq security update

The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql: libpq undersizes allocations, via integer wraparound CVE-2025-12818 For more details about the security issues, including the impact, a CVSS score,...

5.9CVSS5.4AI score0.00307EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/12 12:0 a.m.•9 views

Important: podman security update

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to...

7.5CVSS6.6AI score0.00591EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/01/12 12:0 a.m.•5 views

Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS6.6AI score0.00591EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/01/12 12:0 a.m.•4 views

Important: libsoup security update

The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: libsoup: Duplicate Host Header Handling Causes Host-Parsing Discrepancy First- vs Last-Value Wins CVE-2025-14523 For more details about the security issues, including the impact, a CVSS score,...

8.2CVSS5.5AI score0.00496EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/12 12:0 a.m.•5 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing CVE-2025-40240 kernel: libceph: fix potential use-after-free...

7.1AI score0.00213EPSS
Exploits0References8
AlmaLinux
AlmaLinux
•added 2026/01/12 12:0 a.m.•2 views

Important: libsoup security update

The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: libsoup: Duplicate Host Header Handling Causes Host-Parsing Discrepancy First- vs Last-Value Wins CVE-2025-14523 For more details about the security issues, including the impact, a CVSS score,...

8.2CVSS5.5AI score0.00496EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/08 12:0 a.m.•5 views

Moderate: cups security update

The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: CUPS: Local denial-of-service via cupsd.conf update and related issues CVE-2025-61915 cups: Slow client communication leads to a possible DoS attack CVE-2025-584...

6.7CVSS5.4AI score0.00409EPSS
Exploits2References6
AlmaLinux
AlmaLinux
•added 2026/01/08 12:0 a.m.•5 views

Moderate: openssl security update

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, as well as a full-strength general-purpose cryptography library. Security Fixes: openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap CVE-2025-9230 For more details about the securi...

7.5CVSS5.5AI score0.01744EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/07 12:0 a.m.•18 views

Important: mariadb:10.11 security update

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Security Fixes: mysql: High Privilege Denial of Service Vulnerability in MySQL Server CVE-2025-21490 mariadb: MariaDB Server Crash Due to Empty Backtrace Log CVE-2023-52969 mariadb: MariaDB Server...

7CVSS8.4AI score0.01236EPSS
Exploits0References16
AlmaLinux
AlmaLinux
•added 2026/01/07 12:0 a.m.•11 views

Important: libpng security update

The libpng packages contain a library of functions for creating and manipulating Portable Network Graphics PNG image format files. Security Fixes: libpng: LIBPNG buffer overflow CVE-2025-64720 libpng: LIBPNG heap buffer overflow CVE-2025-65018 libpng: LIBPNG out-of-bounds read in...

7.1CVSS7.4AI score0.00299EPSS
Exploits6References8
AlmaLinux
AlmaLinux
•added 2026/01/07 12:0 a.m.•10 views

Important: libpng security update

The libpng packages contain a library of functions for creating and manipulating Portable Network Graphics PNG image format files. Security Fixes: libpng: LIBPNG buffer overflow CVE-2025-64720 libpng: LIBPNG heap buffer overflow CVE-2025-65018 libpng: LIBPNG out-of-bounds read in...

7.1CVSS5.9AI score0.00299EPSS
Exploits6References8
AlmaLinux
AlmaLinux
•added 2026/01/07 12:0 a.m.•6 views

Important: mariadb:10.11 security update

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Security Fixes: mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation CVE-2025-13699 For more details about the security issues, including the impact...

7CVSS8.6AI score0.00414EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/07 12:0 a.m.•4 views

Important: mariadb:10.3 security update

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Security Fixes: mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation CVE-2025-13699 For more details about the security issues, including the impact...

7CVSS8.6AI score0.00414EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/07 12:0 a.m.•6 views

Important: mariadb:10.5 security update

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Security Fixes: mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation CVE-2025-13699 For more details about the security issues, including the impact...

7CVSS8.6AI score0.00414EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/01/06 12:0 a.m.•6 views

Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6.3CVSS8AI score0.00708EPSS
Exploits0References6
Total number of security vulnerabilities5313