Lucene search
K
AlmalinuxRecent

5313 matches found

AlmaLinux
AlmaLinux
•added 2025/09/11 12:0 a.m.•4 views

Important: cups security update

The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups: Authentication Bypass in CUPS Authorization Handling CVE-2025-58060 For more details about the security issues, including the impact, a CVSS score,...

8CVSS6.9AI score0.00964EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2025/09/10 12:0 a.m.•6 views

Important: python3.12-cryptography security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS6.8AI score0.00831EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/09/08 12:0 a.m.•4 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: udmabuf: fix a buf size overflow issue during udmabuf creation CVE-2025-37803 kernel: idpf: convert control queue mutex to a spinlock CVE-2025-38392 For more details about the security...

7.8CVSS6.7AI score0.00177EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2025/09/08 12:0 a.m.•10 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: bpf: Don't use tnumrange on array range checking for poke descriptors CVE-2022-49985 kernel: posix-cpu-timers: fix race between...

7.4CVSS7.6AI score0.01345EPSS
Exploits8References6
AlmaLinux
AlmaLinux
•added 2025/09/08 12:0 a.m.•6 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: bpf: Don't use tnumrange on array range checking for poke descriptors CVE-2022-49985 kernel: posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel CVE-2025-38352 Fo...

7.4CVSS6.4AI score0.01345EPSS
Exploits8References6
AlmaLinux
AlmaLinux
•added 2025/09/03 12:0 a.m.•5 views

Moderate: httpd:2.4 security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible using TLS 1.3 session resumption...

9.1CVSS6.6AI score0.01149EPSS
Exploits1References10
AlmaLinux
AlmaLinux
•added 2025/09/03 12:0 a.m.•3 views

Important: postgresql:12 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL executes arbitrary code in restore operation CVE-2025-8715 postgresql: PostgreSQL code execution in restore operation CVE-2025-8714 For more details about the security issues,...

8.8CVSS7.9AI score0.00709EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2025/09/03 12:0 a.m.•7 views

Important: pam security update

Pluggable Authentication Modules PAM provide a system to set up authentication policies without the need to recompile programs to handle authentication. Security Fixes: linux-pam: Linux-pam directory Traversal CVE-2025-6020 linux-pam: Incomplete fix for CVE-2025-6020 CVE-2025-8941 For more detail...

7.8CVSS7.1AI score0.0039EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•7 views

Moderate: mod_http2 security update

The modh2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers. Security Fixes: httpd: modproxyhttp2: untrusted input from a client causes an assertion to fail in the Apache modproxyhttp2 module CVE-2025-49630 For more details about the security...

7.5CVSS6.9AI score0.01149EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•5 views

Moderate: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•8 views

Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•4 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: netsched: hfsc: Fix a potential UAF in hfscdequeue too CVE-2025-37823 kernel: i40e: fix MMIO write access to an invalid page in i40eclearhw CVE-2025-38200 kernel: RDMA/iwcm: Fix...

7.8CVSS6.6AI score0.0018EPSS
Exploits0References17
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•9 views

Moderate: httpd security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible using TLS 1.3 session resumption...

9.1CVSS6.9AI score0.0097EPSS
Exploits1References8
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•5 views

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction CVE-2025-38211 kernel: tipc: Fix use-after-free in...

7.8CVSS6.9AI score0.00169EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•4 views

Important: postgresql:13 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL executes arbitrary code in restore operation CVE-2025-8715 postgresql: PostgreSQL code execution in restore operation CVE-2025-8714 For more details about the security issues,...

8.8CVSS7.8AI score0.00709EPSS
Exploits1References7
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•6 views

Important: postgresql:15 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL executes arbitrary code in restore operation CVE-2025-8715 postgresql: PostgreSQL code execution in restore operation CVE-2025-8714 For more details about the security issues,...

8.8CVSS7.8AI score0.00709EPSS
Exploits1References7
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•3 views

Important: udisks2 security update

The Udisks project provides a daemon, tools, and libraries to access and manipulate disks, storage devices, and technologies. Security Fixes: udisks: Out-of-bounds read in UDisks Daemon CVE-2025-8067 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

8.5CVSS6.8AI score0.0065EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•4 views

Important: udisks2 security update

The Udisks project provides a daemon, tools, and libraries to access and manipulate disks, storage devices, and technologies. Security Fixes: udisks: Out-of-bounds read in UDisks Daemon CVE-2025-8067 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

8.5CVSS6.8AI score0.0065EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•10 views

Moderate: python3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•9 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction CVE-2025-38211 kernel: scsi: lpfc: Use memcpy for BIOS version CVE-2025-38332 kernel: tipc: Fix use-after-free in...

7.8CVSS6.5AI score0.00169EPSS
Exploits0References10
AlmaLinux
AlmaLinux
•added 2025/09/02 12:0 a.m.•4 views

Moderate: resource-agents security update

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability HA environment. Security Fixes: requests: Requests vulnerable to .netrc credentials leak via malicious...

5.3CVSS6.9AI score0.00846EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2025/08/28 12:0 a.m.•8 views

Important: postgresql security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL executes arbitrary code in restore operation CVE-2025-8715 postgresql: PostgreSQL code execution in restore operation CVE-2025-8714 For more details about the security issues,...

8.8CVSS7.9AI score0.00709EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2025/08/28 12:0 a.m.•4 views

Important: postgresql:16 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL executes arbitrary code in restore operation CVE-2025-8715 postgresql: PostgreSQL code execution in restore operation CVE-2025-8714 For more details about the security issues,...

8.8CVSS7.9AI score0.00709EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2025/08/28 12:0 a.m.•4 views

Important: postgresql:15 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL executes arbitrary code in restore operation CVE-2025-8715 postgresql: PostgreSQL code execution in restore operation CVE-2025-8714 For more details about the security issues,...

8.8CVSS7.9AI score0.00709EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2025/08/28 12:0 a.m.•3 views

Moderate: python39:3.9 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

8.8CVSS7.7AI score0.01479EPSS
Exploits4References6
AlmaLinux
AlmaLinux
•added 2025/08/28 12:0 a.m.•4 views

Important: postgresql:16 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL executes arbitrary code in restore operation CVE-2025-8715 postgresql: PostgreSQL code execution in restore operation CVE-2025-8714 For more details about the security issues,...

8.8CVSS7.9AI score0.00709EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2025/08/28 12:0 a.m.•3 views

Moderate: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/08/27 12:0 a.m.•3 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Denial-of-service due to out-of-memory in the Graphics: WebRender component CVE-2025-9182 thunderbird: firefox: Sandbox escape due to invalid pointer in the Audio/Video: GMP component CVE-2025-917...

9.8CVSS7.1AI score0.0053EPSS
Exploits0References12
AlmaLinux
AlmaLinux
•added 2025/08/27 12:0 a.m.•5 views

Moderate: fence-agents security update

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Security Fixes: requests: Requests vulnerable to .netrc credentials leak via malicious...

5.3CVSS6.3AI score0.00846EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2025/08/26 12:0 a.m.•3 views

Moderate: python3 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/08/26 12:0 a.m.•4 views

Important: pam security update

Pluggable Authentication Modules PAM provide a system to set up authentication policies without the need to recompile programs to handle authentication. Security Fixes: linux-pam: Linux-pam directory Traversal CVE-2025-6020 For more details about the security issues, including the impact, a CVSS...

7.8CVSS8AI score0.0039EPSS
Exploits0References5
AlmaLinux
AlmaLinux
•added 2025/08/26 12:0 a.m.•4 views

Moderate: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS6.6AI score0.00611EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/08/26 12:0 a.m.•5 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Denial-of-service due to out-of-memory in the Graphics: WebRender component CVE-2025-9182 thunderbird: firefox: Sandbox escape due to invalid pointer in the Audio/Video: GMP component CVE-2025-917...

9.8CVSS7.3AI score0.0053EPSS
Exploits0References12
AlmaLinux
AlmaLinux
•added 2025/08/26 12:0 a.m.•6 views

Important: aide security update

Advanced Intrusion Detection Environment AIDE is a utility that creates a database of files on the system, and then uses that database to ensure file integrity and detect system intrusions. Security Fixes: aide: improper output neutralization enables bypassing CVE-2025-54389 For more details abou...

6.2CVSS6.5AI score0.0021EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2025/08/26 12:0 a.m.•5 views

Moderate: python-cryptography security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.5CVSS6.4AI score0.00985EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2025/08/25 12:0 a.m.•5 views

Important: aide security update

Advanced Intrusion Detection Environment AIDE is a utility that creates a database of files on the system, and then uses that database to ensure file integrity and detect system intrusions. Security Fixes: aide: improper output neutralization enables bypassing CVE-2025-54389 For more details abou...

6.2CVSS7.2AI score0.0021EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2025/08/25 12:0 a.m.•10 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: udp: Fix memory accounting leak. CVE-2025-22058 kernel: netsched: ets: Fix double list add in class with netem as child qdisc CVE-2025-37914 kernel: ice: fix eswitch code memory leak in...

7.8CVSS8.7AI score0.00176EPSS
Exploits0References8
AlmaLinux
AlmaLinux
•added 2025/08/25 12:0 a.m.•4 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Denial-of-service due to out-of-memory in the Graphics: WebRender component CVE-2025-9182 thunderbird: firefox: Sandbox escape due to invalid point...

9.8CVSS7.1AI score0.0053EPSS
Exploits0References12
AlmaLinux
AlmaLinux
•added 2025/08/25 12:0 a.m.•9 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: udp: Fix memory accounting leak. CVE-2025-22058 kernel: i40e: fix MMIO write access to an invalid page in i40eclearhw CVE-2025-38200 For more details about the security issues, including...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2025/08/25 12:0 a.m.•6 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Denial-of-service due to out-of-memory in the Graphics: WebRender component CVE-2025-9182 thunderbird: firefox: Sandbox escape due to invalid point...

9.8CVSS7.9AI score0.0053EPSS
Exploits0References12
AlmaLinux
AlmaLinux
•added 2025/08/25 12:0 a.m.•5 views

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: udp: Fix memory accounting leak. CVE-2025-22058 For more details about the security issues, including the impact, a CVSS score,...

5.5CVSS7.3AI score0.00176EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/08/20 12:0 a.m.•4 views

Important: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

7.8CVSS6.8AI score0.00326EPSS
Exploits2References4
AlmaLinux
AlmaLinux
•added 2025/08/20 12:0 a.m.•6 views

Important: pki-deps:10.6 security update

The Public Key Infrastructure PKI Core contains fundamental packages required by AlmaLinux Certificate System. Security Fixes: com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError CVE-2025-52999 For more details about the security issues, including the impact, a CVSS...

8.7CVSS7.2AI score0.00634EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2025/08/20 12:0 a.m.•6 views

Important: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

7.8CVSS6.8AI score0.00326EPSS
Exploits2References4
AlmaLinux
AlmaLinux
•added 2025/08/20 12:0 a.m.•14 views

Important: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125 apache-commons-fileupload: Apache...

7.5CVSS7.4AI score0.63258EPSS
Exploits1References16
AlmaLinux
AlmaLinux
•added 2025/08/20 12:0 a.m.•6 views

Important: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125 apache-commons-fileupload: Apache...

7.5CVSS7.4AI score0.63258EPSS
Exploits1References16
AlmaLinux
AlmaLinux
•added 2025/08/19 12:0 a.m.•8 views

Important: mingw-sqlite security update

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

7.7CVSS7.4AI score0.73495EPSS
Exploits3References4
AlmaLinux
AlmaLinux
•added 2025/08/19 12:0 a.m.•6 views

Moderate: xterm security update

The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly. Security Fixes: xterm: Buffer overflow in setsixel in graphicssixel.c CVE-2022-24130 For more details about the...

5.5CVSS6AI score0.01694EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2025/08/18 12:0 a.m.•15 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: bpf, testrun: Fix use-after-free issue in ethskbpkttype CVE-2025-21867 microcodectl: From CVEorg collector CVE-2024-28956 kernel: mm/hugetlb: unshare page tables during VMA split, not...

7.8CVSS7.4AI score0.00371EPSS
Exploits0References20
AlmaLinux
AlmaLinux
•added 2025/08/18 12:0 a.m.•6 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: drm/vkms: Fix use after free and double free on init error CVE-2025-22097 kernel: netsched: ets: Fix double list add in class with netem as child qdisc CVE-2025-37914 kernel: Bluetooth:...

7.8CVSS8.7AI score0.00173EPSS
Exploits0References10
Total number of security vulnerabilities5313