Lucene search
K
AlmalinuxRecent

5313 matches found

AlmaLinux
AlmaLinux
•added 2026/05/19 12:0 a.m.•15 views

Moderate: crun security update

crun is a OCI runtime Security Fixes: crun: crun: Privilege escalation due to incorrect parsing of the --user option CVE-2026-30892 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in the...

7.8CVSS5.8AI score0.00159EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/05/19 12:0 a.m.•5 views

Moderate: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Denial of service due to use-after-free vulnerability...

9.8CVSS6.6AI score0.00599EPSS
Exploits7References18
AlmaLinux
AlmaLinux
•added 2026/05/18 12:0 a.m.•10 views

Moderate: libpng security update

The libpng packages contain a library of functions for creating and manipulating Portable Network Graphics PNG image format files. Security Fixes: libpng: libpng: Arbitrary code execution due to use-after-free vulnerability CVE-2026-33416 For more details about the security issues, including the...

7.5CVSS6.7AI score0.01052EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/05/18 12:0 a.m.•13 views

Important: ruby:3.3 security update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: erb: ERB: Arbitrary code execution via deserialization bypass CVE-2026-41316 For more details about the security issues, including...

8.1CVSS6.2AI score0.01131EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/05/18 12:0 a.m.•17 views

Critical: nginx security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fixes: nginx: NGINX: Arbitrary Code Execution Vulnerability CVE-2026-42945 For more details about the security issues, including the impact, a CVSS...

9.2CVSS6.1AI score0.61469EPSS
Exploits40References4
AlmaLinux
AlmaLinux
•added 2026/05/18 12:0 a.m.•12 views

Important: ruby security update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: erb: ERB: Arbitrary code execution via deserialization bypass CVE-2026-41316 For more details about the security issues, including...

8.1CVSS6.2AI score0.01131EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/05/18 12:0 a.m.•7 views

Critical: nginx:1.24 security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fixes: nginx: NGINX: Arbitrary Code Execution Vulnerability CVE-2026-42945 For more details about the security issues, including the impact, a CVSS...

9.2CVSS5.9AI score0.61469EPSS
Exploits40References4
AlmaLinux
AlmaLinux
•added 2026/05/16 12:0 a.m.•19 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net: skbuff: propagate shared-frag marker through frag-transfer helpers CVE-2026-46300 kernel: ptrace: require CAPSYSPTRACE when task has no mm CVE-2026-46333 For more details about the...

7.8CVSS5.8AI score0.03663EPSS
Exploits17References5
AlmaLinux
AlmaLinux
•added 2026/05/16 12:0 a.m.•13 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net: skbuff: propagate shared-frag marker through frag-transfer helpers CVE-2026-46300 kernel: ptrace: require CAPSYSPTRACE when task has no mm CVE-2026-46333 For more details about the...

7.8CVSS5.8AI score0.03663EPSS
Exploits17References5
AlmaLinux
AlmaLinux
•added 2026/05/14 12:0 a.m.•16 views

Important: gimp:2.8 security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:Memo...

7.8CVSS7.4AI score0.00755EPSS
Exploits1References10
AlmaLinux
AlmaLinux
•added 2026/05/14 12:0 a.m.•13 views

Important: rsync security update

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fixes:...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/05/13 12:0 a.m.•7 views

Important: jq security update

jq is a lightweight and flexible command-line JSON processor. jq is like sed for JSON data. You can use it to slice, filter, map, or transform structured data with the same ease that sed, awk, grep, or similar applications allow you to manipulate text. Security Fixes: jq: out-of-bounds read in...

8.2CVSS5.8AI score0.00559EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2026/05/13 12:0 a.m.•14 views

Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 golang:...

7.5CVSS7.4AI score0.00728EPSS
Exploits0References10
AlmaLinux
AlmaLinux
•added 2026/05/13 12:0 a.m.•16 views

Important: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

5.9CVSS5.8AI score0.00461EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/05/12 12:0 a.m.•18 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: "Dirty Frag" is a new universal Local Privilege Escalation LPE vulnerability in the Linux kernel CVE-2026-43284 For more details...

8.8CVSS5.9AI score0.93235EPSS
Exploits31References4
AlmaLinux
AlmaLinux
•added 2026/05/12 12:0 a.m.•21 views

Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:Memo...

7.8CVSS6.2AI score0.00755EPSS
Exploits1References14
AlmaLinux
AlmaLinux
•added 2026/05/12 12:0 a.m.•14 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: "Dirty Frag" is a new universal Local Privilege Escalation LPE vulnerability in the Linux kernel CVE-2026-43284 For more details about the security issues, including the impact, a CVSS...

8.8CVSS6.1AI score0.93235EPSS
Exploits31References4
AlmaLinux
AlmaLinux
•added 2026/05/12 12:0 a.m.•8 views

Important: jq security update

jq is a lightweight and flexible command-line JSON processor. jq is like sed for JSON data. You can use it to slice, filter, map, or transform structured data with the same ease that sed, awk, grep, or similar applications allow you to manipulate text. Security Fixes: jq: out-of-bounds read in...

8.2CVSS5.8AI score0.00559EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2026/05/12 12:0 a.m.•8 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: "Dirty Frag" is a new universal Local Privilege Escalation LPE vulnerability in the Linux kernel CVE-2026-43284 For more details about the security issues, including the impact, a CVSS...

8.8CVSS6.1AI score0.93235EPSS
Exploits31References4
AlmaLinux
AlmaLinux
•added 2026/05/12 12:0 a.m.•10 views

Moderate: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Denial of service due to use-after-free vulnerability...

9.8CVSS5.8AI score0.00599EPSS
Exploits7References18
AlmaLinux
AlmaLinux
•added 2026/05/11 12:0 a.m.•14 views

Moderate: glib2 security update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib: GLib: Buffer underflow...

9.8CVSS6.6AI score0.00754EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/05/11 12:0 a.m.•11 views

Important: openexr security update

OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR. Security Fixes:...

8.8CVSS6.1AI score0.00482EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/05/11 12:0 a.m.•9 views

Important: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVE-2026-4775 For more details about the security issues,...

7.8CVSS6.2AI score0.00553EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/05/11 12:0 a.m.•14 views

Moderate: glib2 security update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib: GLib: Buffer underflow...

9.8CVSS6.6AI score0.00754EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/05/11 12:0 a.m.•16 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS CVE-2026-6772 firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-6754 firefox: thunderbird: Spoofing...

9.8CVSS5.8AI score0.04938EPSS
Exploits1References52
AlmaLinux
AlmaLinux
•added 2026/05/11 12:0 a.m.•12 views

Moderate: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Denial of service due to use-after-free vulnerability...

9.8CVSS5.8AI score0.00599EPSS
Exploits7References18
AlmaLinux
AlmaLinux
•added 2026/05/08 12:0 a.m.•13 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: xfrm: esp: avoid in-place decrypt on shared skb frags CVE-2026-43284 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

8.8CVSS5.8AI score0.93235EPSS
Exploits31References3
AlmaLinux
AlmaLinux
•added 2026/05/08 12:0 a.m.•12 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: xfrm: esp: avoid in-place decrypt on shared skb frags CVE-2026-43284 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

8.8CVSS6.1AI score0.93235EPSS
Exploits31References3
AlmaLinux
AlmaLinux
•added 2026/05/08 12:0 a.m.•17 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: xfrm: esp: avoid in-place decrypt on shared skb frags CVE-2026-43284 For more details about the security issues, including the...

8.8CVSS6AI score0.93235EPSS
Exploits31References3
AlmaLinux
AlmaLinux
•added 2026/05/07 12:0 a.m.•12 views

Moderate: freeipmi security update

The freeipmi packages contain an Intelligent Platform Management Interface IPMI remote console and system management software based on the IPMI specification. Security Fixes: freeipmi: buffer overflows on response messages via ipmi-oem CVE-2026-33554 For more details about the security issues,...

7.5CVSS6AI score0.00403EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/05/07 12:0 a.m.•9 views

Moderate: libpng security update

The libpng packages contain a library of functions for creating and manipulating Portable Network Graphics PNG image format files. Security Fixes: libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion CVE-2026-33636 For more details...

7.6CVSS5.8AI score0.00585EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/05/07 12:0 a.m.•11 views

Important: mingw-libtiff security update

The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...

7.8CVSS6.2AI score0.00553EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/05/06 12:0 a.m.•17 views

Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root CVE-2026-32282...

7.5CVSS7.4AI score0.00621EPSS
Exploits0References8
AlmaLinux
AlmaLinux
•added 2026/05/06 12:0 a.m.•9 views

Moderate: libsoup security update

The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment CVE-2026-5119 For more details about the security issues, including the impact, a CVSS score,...

8.2CVSS5.8AI score0.00254EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/05/06 12:0 a.m.•10 views

Important: fence-agents security update

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Security Fixes: pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion...

7.5CVSS5.8AI score0.0058EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/05/06 12:0 a.m.•11 views

Moderate: libsoup security update

The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment CVE-2026-5119 For more details about the security issues, including the impact, a CVSS score,...

8.2CVSS5.8AI score0.00254EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/05/06 12:0 a.m.•8 views

Important: resource-agents security update

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability HA environment. Security Fixes: pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion...

7.5CVSS7.1AI score0.0058EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/05/05 12:0 a.m.•15 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: nvme: avoid double free special payload CVE-2024-41073 kernel: net: qlogic/qede: fix potential out-of-bounds read in qedetpacont a...

9.8CVSS6.1AI score0.96267EPSS
Exploits228References13
AlmaLinux
AlmaLinux
•added 2026/05/05 12:0 a.m.•9 views

Important: dovecot security update

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fixes: doveco...

7.5CVSS5.9AI score0.0079EPSS
Exploits2References8
AlmaLinux
AlmaLinux
•added 2026/05/05 12:0 a.m.•13 views

Moderate: corosync security update

The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Corosync: Denial of Service and information disclosure via crafted UDP packet CVE-2026-35091 corosync: Corosync: Denial of Service via integer overflow in join message...

8.2CVSS5.9AI score0.00994EPSS
Exploits2References6
AlmaLinux
AlmaLinux
•added 2026/05/05 12:0 a.m.•9 views

Moderate: systemd security update

The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes...

5.5CVSS6.2AI score0.00121EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/05/05 12:0 a.m.•11 views

Moderate: corosync security update

The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Corosync: Denial of Service and information disclosure via crafted UDP packet CVE-2026-35091 corosync: Corosync: Denial of Service via integer overflow in join message...

8.2CVSS5.9AI score0.00994EPSS
Exploits2References6
AlmaLinux
AlmaLinux
•added 2026/05/05 12:0 a.m.•10 views

Important: dovecot security update

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fixes: doveco...

7.5CVSS5.9AI score0.0079EPSS
Exploits2References8
AlmaLinux
AlmaLinux
•added 2026/05/05 12:0 a.m.•33 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nvme: avoid double free special payload CVE-2024-41073 kernel: net: qlogic/qede: fix potential out-of-bounds read in qedetpacont and qedetpaend CVE-2025-40252 kernel: crypto: asymmetricke...

9.8CVSS6.1AI score0.96267EPSS
Exploits228References13
AlmaLinux
AlmaLinux
•added 2026/05/05 12:0 a.m.•13 views

Important: image-builder security update

A local binary for building customized OS artifacts such as VM images and OSTree commits. Uses osbuild under the hood. Security Fixes: net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS5.8AI score0.00728EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/05/05 12:0 a.m.•10 views

Moderate: python-tornado security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

8.7CVSS5.8AI score0.00375EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/05/04 12:0 a.m.•28 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Denial of Service in libceph OSD client due to unreset sparse-read state CVE-2026-23136 kernel: Linux kernel: Use-after-free in traffic control actct may lead to denial of...

9.8CVSS5.9AI score0.96267EPSS
Exploits228References10
AlmaLinux
AlmaLinux
•added 2026/05/04 12:0 a.m.•15 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS CVE-2026-6772 firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-6754 firefox: thunderbird: Spoofing...

9.8CVSS6AI score0.04938EPSS
Exploits1References52
AlmaLinux
AlmaLinux
•added 2026/05/04 12:0 a.m.•8 views

Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

9.8CVSS5.8AI score0.0038EPSS
Exploits0References10
AlmaLinux
AlmaLinux
•added 2026/05/04 12:0 a.m.•10 views

Important: LibRaw security update

LibRaw is a library for reading RAW files obtained from digital photo cameras CRW/CR2, NEF, RAF, DNG, and others. Security Fixes: LibRaw: LibRaw: Memory Corruption via Malicious File Processing CVE-2026-24660 LibRaw: LibRaw: Arbitrary code execution via heap-based buffer overflow in lossless JPEG...

9.8CVSS6.3AI score0.00746EPSS
Exploits3References8
Total number of security vulnerabilities5313