Lucene search
K
AlmalinuxRecent

5315 matches found

AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.40 views

Moderate: python3.11-cryptography security update

The python-cryptography packages contain a Python Cryptographic Authority's PyCA's cryptography library, which provides cryptographic primitives and recipes to Python developers. Security Fixes: python-cryptography: NULL-dereference when loading PKCS7 certificates CVE-2023-49083 For more details...

7.5CVSS6.5AI score0.00985EPSS
Exploits1References4
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.31 views

Moderate: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

7.5CVSS7.2AI score0.0125EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.33 views

Moderate: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: grafana: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 grafana: vulnerable to authorization bypass CVE-2024-1313 For more...

7.5CVSS7.3AI score0.01533EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.23 views

Moderate: tcpdump security update

The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces. Security Fixes: tcpslice: use-after-free in extractslice CVE-2021-41043 For more details about th...

5.5CVSS6.7AI score0.0087EPSS
Exploits1References4
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.37 views

Moderate: xorg-x11-server-Xwayland security update

Xwayland is an X server for running X clients under Wayland. Security Fixes: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty CVE-2023-5367 xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions CVE-2023-6377 xorg-x11-server: out-of-bounds...

9.8CVSS9.5AI score0.02106EPSS
Exploits0References20
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.32 views

Moderate: libvirt security update

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fixes: libvirt: NULL pointer dereference in...

5.5CVSS6.7AI score0.0025EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.39 views

Moderate: podman security and bug fix update

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: podman: golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in...

8.6CVSS8.8AI score0.01262EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.29 views

Important: grafana-pcp security update

grafana-pcp is an open source Grafana plugin for PCP. Security Fixes: grafana-pcp: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

7.5CVSS7.7AI score0.01533EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.44 views

Moderate: runc security update

The runC tool is a lightweight, portable implementation of the Open Container Format OCF that provides container runtime. Security Fixes: golang: io/fs: stack exhaustion in Glob CVE-2022-30630 golang: compress/gzip: stack exhaustion in Reader.Read CVE-2022-30631 golang: path/filepath: stack...

7.5CVSS7.8AI score0.01618EPSS
Exploits0References10
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.52 views

Moderate: mod_http2 security update

The modhttp2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers. Security Fixes: httpd: modhttp2: DoS in HTTP/2 with initial window size 0 CVE-2023-43622 modhttp2: reset requests exhaust memory incomplete fix of CVE-2023-44487 CVE-2023-45802 For mo...

7.5CVSS8.7AI score0.99999EPSS
Exploits20References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.32 views

Moderate: mingw components security update

MinGW Minimalist GNU for Windows is a free and open source software development environment to create Microsoft Windows applications. Security Fixes: binutils: Heap-buffer-overflow binutils-gdb/bfd/libbfd.c in bfdgetl64 CVE-2023-1579 For more details about the security issues, including the impac...

7.8CVSS6.5AI score0.00486EPSS
Exploits1References4
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.32 views

Moderate: wpa_supplicant security update

The wpasupplicant packages contain an 802.1X Supplicant with support for WEP, WPA, WPA2 IEEE 802.11i / RSN, and various EAP authentication methods. They implement key negotiation with a WPA Authenticator for client stations and controls the roaming and IEEE 802.11 authentication and association o...

6.5CVSS7.3AI score0.01177EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.40 views

Low: mingw-glib2 security update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib: GVariant offset table...

7.5CVSS7.5AI score0.0078EPSS
Exploits0References10
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.57 views

Important: edk2 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: edk2: Buffer overflow when handling Server ID option from a DHCPv6 proxy Advertise message CVE-2023-45235 EDK2: heap buffer...

8.8CVSS7.7AI score0.05533EPSS
Exploits1References18
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.46 views

Moderate: traceroute security update

The traceroute utility displays the route used by IP packets on their way to a specified network or Internet host. Security Fixes: traceroute: improper command line parsing CVE-2023-46316 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

5.5CVSS7AI score0.00367EPSS
Exploits2References4
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.34 views

Moderate: pcs security update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rubygem-rack: Denial of Service Vulnerability in Rack Content-Type Parsing CVE-2024-25126 rubygem-rack: Possible DoS Vulnerability with Range Header in Rack CVE-2024-26141...

7.5CVSS6.6AI score0.35376EPSS
Exploits2References8
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.40 views

Moderate: gnutls security update

The gnutls package provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fixes: gnutls: vulnerable to Minerva side-channel information leak CVE-2024-28834 gnutls: potential crash during chain...

5.3CVSS5.2AI score0.00718EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.69 views

Moderate: libnbd security update

Network Block Device NBD is a protocol for accessing Block Devices hard disks and disk-like devices over a Network. The libnbd is a userspace client library for writing NBD clients. Security Fixes: libnbd: Malicious NBD server may crash libnbd CVE-2023-5871 libnbd: Crash or misbehaviour when NBD...

6.5CVSS6.6AI score0.00922EPSS
Exploits1References6
AlmaLinux
AlmaLinux
added 2024/04/29 12:0 a.m.43 views

Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS...

7.5CVSS7.6AI score0.91969EPSS
Exploits1References4
AlmaLinux
AlmaLinux
added 2024/04/29 12:0 a.m.48 views

Important: container-tools:rhel8 security and bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: containerinitt does not possess ptrace process context almalinux-8.9.0.z JIRA:AlmaLinux-28923 Security Fixes: podman: full container escape at build time CVE-2024-1753...

8.6CVSS7.4AI score0.0049EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/29 12:0 a.m.38 views

Important: container-tools:4.0 security update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: buildah: full container escape at build time CVE-2024-1753 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

8.6CVSS7.2AI score0.0049EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/25 12:0 a.m.26 views

Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

8.6CVSS8.7AI score0.0049EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/24 12:0 a.m.21 views

Moderate: libreswan security and bug fix update

Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network VPN...

6.5CVSS6.7AI score0.00944EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/24 12:0 a.m.26 views

Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

7.8CVSS7AI score0.01843EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2024/04/23 12:0 a.m.36 views

Important: golang security update

The golang packages provide the Go programming language compiler. Security Fixes: golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS CVE-2023-45288...

7.5CVSS8.3AI score0.91969EPSS
Exploits1References4
AlmaLinux
AlmaLinux
added 2024/04/23 12:0 a.m.17 views

Moderate: libreswan security update

Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network VPN...

6.5CVSS6.7AI score0.00944EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/23 12:0 a.m.28 views

Important: go-toolset:rhel8 security update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS CVE-2023-45288 For more details about the security issues, including the impact, a CVSS score...

7.5CVSS8.3AI score0.91969EPSS
Exploits1References4
AlmaLinux
AlmaLinux
added 2024/04/22 12:0 a.m.42 views

Low: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.10.0. Security Fixes: Mozilla: Denial of Service using HTTP/2 CONTINUATION frames CVE-2024-3302 For more details about the security issues, including the impact, a CVSS score,...

8.8CVSS6.6AI score0.00847EPSS
Exploits2References18
AlmaLinux
AlmaLinux
added 2024/04/22 12:0 a.m.38 views

Low: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.10.0. Security Fixes: Mozilla: Denial of Service using HTTP/2 CONTINUATION frames CVE-2024-3302 For more details about the security issues, including the impact, a CVSS score,...

8.8CVSS6.6AI score0.00847EPSS
Exploits2References18
AlmaLinux
AlmaLinux
added 2024/04/22 12:0 a.m.36 views

Moderate: java-11-openjdk security update

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixes: OpenJDK: long Exception message leading to crash 8319851 CVE-2024-21011 OpenJDK: integer overflow in C1 compiler address generation 8322122 CVE-2024-21068...

3.7CVSS7.5AI score0.01361EPSS
Exploits0References12
AlmaLinux
AlmaLinux
added 2024/04/18 12:0 a.m.31 views

Moderate: gnutls security update

The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fixes: gnutls: vulnerable to Minerva side-channel information leak CVE-2024-28834 gnutls: potential crash during chain...

5.3CVSS6.8AI score0.00718EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2024/04/18 12:0 a.m.57 views

Important: shim security update

The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments. Security Fixes: shim: RCE in http boot support may lead to Secure Boot bypass CVE-2023-40547 shim: Interger overflow leads to heap buffer overflow in...

8.3CVSS8.8AI score0.04852EPSS
Exploits0References14
AlmaLinux
AlmaLinux
added 2024/04/18 12:0 a.m.43 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.10.0 ESR. Security Fixes: GetBoundName in the JIT returned the wrong object CVE-2024-3852 Out-of-bounds-read after mis-optimized switch...

8.8CVSS6.9AI score0.00847EPSS
Exploits2References16
AlmaLinux
AlmaLinux
added 2024/04/18 12:0 a.m.33 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.10.0 ESR. Security Fixes: GetBoundName in the JIT returned the wrong object CVE-2024-3852 Out-of-bounds-read after mis-optimized switch...

8.8CVSS6.9AI score0.00847EPSS
Exploits2References16
AlmaLinux
AlmaLinux
added 2024/04/18 12:0 a.m.40 views

Moderate: java-21-openjdk security update

The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fixes: OpenJDK: long Exception message leading to crash 8319851 CVE-2024-21011 OpenJDK: integer overflow in C1 compiler address generation 8322122 CVE-2024-21068...

3.7CVSS7.5AI score0.01361EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2024/04/18 12:0 a.m.77 views

Important: mod_http2 security update

The modh2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers. Security Fixes: httpd: CONTINUATION frames DoS CVE-2024-27316 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

7.5CVSS7.3AI score0.91327EPSS
Exploits2References4
AlmaLinux
AlmaLinux
added 2024/04/18 12:0 a.m.74 views

Important: shim bug fix update

The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments. Security Fixes: shim: RCE in http boot support may lead to Secure Boot bypass CVE-2023-40547 shim: Interger overflow leads to heap buffer overflow in...

8.3CVSS8.8AI score0.04852EPSS
Exploits0References14
AlmaLinux
AlmaLinux
added 2024/04/18 12:0 a.m.47 views

Moderate: java-1.8.0-openjdk security update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: long Exception message leading to crash 8319851 CVE-2024-21011 OpenJDK: integer overflow in C1 compiler address generation 8322122 CVE-2024-2106...

3.7CVSS7.5AI score0.01361EPSS
Exploits0References10
AlmaLinux
AlmaLinux
added 2024/04/18 12:0 a.m.55 views

Moderate: java-17-openjdk security update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: OpenJDK: long Exception message leading to crash 8319851 CVE-2024-21011 OpenJDK: integer overflow in C1 compiler address generation 8322122 CVE-2024-21068...

3.7CVSS7.5AI score0.01361EPSS
Exploits0References10
AlmaLinux
AlmaLinux
added 2024/04/12 12:0 a.m.65 views

Important: bind and dhcp security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. The Dynamic Hos...

7.5CVSS7.2AI score0.99995EPSS
Exploits1References8
AlmaLinux
AlmaLinux
added 2024/04/11 12:0 a.m.77 views

Important: bind security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...

7.5CVSS7.2AI score0.99995EPSS
Exploits1References14
AlmaLinux
AlmaLinux
added 2024/04/11 12:0 a.m.70 views

Important: bind9.16 security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...

7.5CVSS7.2AI score0.99995EPSS
Exploits1References14
AlmaLinux
AlmaLinux
added 2024/04/11 12:0 a.m.40 views

Moderate: gnutls security update

The gnutls package provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. This package update fixes a timing side-channel in deterministic ECDSA. Security Fixes: gnutls: vulnerable to Minerva side-channel...

5.3CVSS6.8AI score0.00718EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/11 12:0 a.m.21 views

Important: unbound security update

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. The default combination ...

8CVSS7AI score0.00318EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/11 12:0 a.m.186 views

Important: httpd:2.4/mod_http2 security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modhttp2: CONTINUATION frames DoS CVE-2024-27316 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

7.5CVSS7.2AI score0.91327EPSS
Exploits2References4
AlmaLinux
AlmaLinux
added 2024/04/10 12:0 a.m.15 views

Important: unbound security update

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. The default combination ...

8CVSS7.1AI score0.00318EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/09 12:0 a.m.29 views

Moderate: rear security update

Relax-and-Recover is a recovery and system migration utility. The utility produces a bootable image and restores from backup using this image. It allows to restore to different hardware and can therefore be also used as a migration utility. Security Fixes: rear: creates a world-readable initrd...

5.5CVSS7.2AI score0.00291EPSS
Exploits1References4
AlmaLinux
AlmaLinux
added 2024/04/08 12:0 a.m.55 views

Important: nodejs:20 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: nodejs: vulnerable to timing variant of the Bleichenbacher attack against PKCS1 v1.5 padding Marvin CVE-2023-46809 nodejs: reading unprocessed HTT...

9.8CVSS8.2AI score0.03168EPSS
Exploits0References16
AlmaLinux
AlmaLinux
added 2024/04/08 12:0 a.m.27 views

Important: varnish security update

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. Security Fixes: varnish: HTTP/2 Broken Window Attack may result in denial of service...

7.5CVSS7.2AI score0.03663EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/04/08 12:0 a.m.37 views

Important: varnish security update

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. Security Fixes: varnish: HTTP/2 Broken Window Attack may result in denial of service...

7.5CVSS7.2AI score0.03663EPSS
Exploits0References4
Total number of security vulnerabilities5315