Lucene search
K
AlmalinuxRecent

5313 matches found

AlmaLinux
AlmaLinux
•added 2026/04/02 12:0 a.m.•6 views

Important: libpng15 security update

The libpng15 package provides libpng 1.5, an older version of the libpng. library for manipulating PNG Portable Network Graphics image format files. This version should be used only if you are unable to use the current version of libpng. Security Fixes: libpng: LIBPNG has a heap buffer overflow i...

8.3CVSS6.1AI score0.00955EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/04/02 12:0 a.m.•7 views

Important: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized...

8.2CVSS6.7AI score0.0218EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/04/02 12:0 a.m.•8 views

Moderate: rsync security update

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fixes:...

4.3CVSS5.9AI score0.00283EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/04/02 12:0 a.m.•7 views

Important: libpng12 security update

The libpng12 package provides libpng 1.2, which is the previous version of the libpng library for manipulating PNG Portable Network Graphics image format files. This version should be used in case that it is not possible to use the current version of libpng. Security Fixes: libpng: LIBPNG has a...

8.3CVSS6.1AI score0.00955EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/04/02 12:0 a.m.•10 views

Important: python3 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.1CVSS5.9AI score0.00308EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/04/02 12:0 a.m.•22 views

Moderate: mariadb:10.11 security update

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Security Fixes: mysql: High Privilege Denial of Service Vulnerability in MySQL Server CVE-2025-21490 mariadb: MariaDB Server Crash Due to Empty Backtrace Log CVE-2023-52969 mariadb: MariaDB Server...

6.8CVSS5.9AI score0.01236EPSS
Exploits0References16
AlmaLinux
AlmaLinux
•added 2026/04/02 12:0 a.m.•4 views

Important: perl-YAML-Syck security update

This module provides a Perl interface to the libsyck data serialization library. It exports the Dump and Load functions for converting Perl data structures to YAML strings, and the other way around. Security Fixes: perl-YAML-Syck: YAML::Syck versions through 1.36 for Perl has several potential...

9.1CVSS6.2AI score0.00429EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/04/01 12:0 a.m.•6 views

Important: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

7.5CVSS7.2AI score0.00728EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/04/01 12:0 a.m.•9 views

Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 For...

7.5CVSS7.2AI score0.00728EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/04/01 12:0 a.m.•8 views

Moderate: rsync security update

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fixes:...

4.3CVSS5.9AI score0.00283EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/04/01 12:0 a.m.•5 views

Important: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP heap-use-after-free CVE-2026-22856 freerdp: FreeRDP...

9.8CVSS6.5AI score0.00656EPSS
Exploits5References28
AlmaLinux
AlmaLinux
•added 2026/04/01 12:0 a.m.•20 views

Moderate: mysql:8.4 security update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. Security Fixes: mysql: Optimizer unspecified vulnerability CPU Jan 2026 CVE-2026-21941 mysql: Optimizer unspecified vulnerability CPU Jan 2026...

6.5CVSS5.9AI score0.00337EPSS
Exploits0References14
AlmaLinux
AlmaLinux
•added 2026/03/31 12:0 a.m.•7 views

Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, and HTTP data objects. Security Fixes: squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling CVE-2026-33526 Squid: Squid: Denial of Service via crafted ICP traffic CVE-2026-32748 For...

9.2CVSS5.9AI score0.08942EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/31 12:0 a.m.•6 views

Moderate: libxslt security update

libxslt is a library for transforming XML files into other textual formats including HTML, plain text, and other XML representations of the underlying data using the standard XSLT stylesheet transformation mechanism. Security Fixes: libxslt: Processing web content may disclose sensitive informati...

6.5CVSS6.8AI score0.01092EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/31 12:0 a.m.•12 views

Important: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.1CVSS5.9AI score0.00308EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/31 12:0 a.m.•6 views

Important: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.1CVSS5.9AI score0.00308EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/31 12:0 a.m.•6 views

Important: gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free security update

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fixes: GStreamer: GStreamer: Arbitrary code execution via ASF file processing CVE-2026-2920 GStreamer:...

8.8CVSS7.7AI score0.00867EPSS
Exploits0References16
AlmaLinux
AlmaLinux
•added 2026/03/31 12:0 a.m.•8 views

Important: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.1CVSS5.9AI score0.00308EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/31 12:0 a.m.•6 views

Important: python3.11 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.1CVSS5.9AI score0.00308EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/30 12:0 a.m.•5 views

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem CVE-2025-38180 kernel: macvlan: fix error recovery in...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References8
AlmaLinux
AlmaLinux
•added 2026/03/30 12:0 a.m.•6 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-4701 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and...

10CVSS7.2AI score0.00773EPSS
Exploits0References80
AlmaLinux
AlmaLinux
•added 2026/03/30 12:0 a.m.•17 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem CVE-2025-38180 kernel: drm/sched: Fix potential double free in drmschedjobaddresvdependencies CVE-2025-40096 kernel: Linux...

8.8CVSS7.1AI score0.0024EPSS
Exploits0References18
AlmaLinux
AlmaLinux
•added 2026/03/30 12:0 a.m.•9 views

Important: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Arbitrary code execution via heap out-of-bounds write ...

8.8CVSS6.5AI score0.00591EPSS
Exploits2References6
AlmaLinux
AlmaLinux
•added 2026/03/30 12:0 a.m.•8 views

Important: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Arbitrary code execution via heap out-of-bounds write ...

8.8CVSS6.5AI score0.00591EPSS
Exploits2References6
AlmaLinux
AlmaLinux
•added 2026/03/30 12:0 a.m.•8 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem CVE-2025-38180 kernel: macvlan: fix error recovery in macvlancommonnewlink CVE-2026-23209 kernel: net/sched: clsu32: use...

7.8CVSS6.6AI score0.0017EPSS
Exploits0References8
AlmaLinux
AlmaLinux
•added 2026/03/26 12:0 a.m.•4 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-4701 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.34, Firefox ESR...

10CVSS7.2AI score0.00773EPSS
Exploits0References76
AlmaLinux
AlmaLinux
•added 2026/03/26 12:0 a.m.•11 views

Important: golang security update

The golang packages provide the Go programming language compiler. Security Fixes: cmd/go: cmd/go: Arbitrary file write via malicious pkg-config directive CVE-2025-61731 net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 For more details about the security issues, including...

8.6CVSS7.1AI score0.00728EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/26 12:0 a.m.•8 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-4701 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.34, Firefox ESR...

10CVSS7.2AI score0.00773EPSS
Exploits0References76
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•6 views

Moderate: vim security update

Vim Vi IMproved is an updated and improved version of the vi editor. Security Fixes: vim: Vim: Arbitrary code execution via 'helpfile' option processing CVE-2026-25749 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...

6.6CVSS6.3AI score0.00213EPSS
Exploits1References4
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•4 views

Moderate: opencryptoki security update

The opencryptoki packages contain version 2.11 of the PKCS11 API, implemented for IBM Cryptocards, such as IBM 4764 and 4765 crypto cards. These packages includes support for the IBM 4758 Cryptographic CoProcessor with the PKCS11 firmware loaded, the IBM eServer Cryptographic Accelerator FC 4960 ...

6.8CVSS5.8AI score0.00162EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•4 views

Moderate: mysql:8.4 security update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. Security Fixes: mysql: Optimizer unspecified vulnerability CPU Jan 2026 CVE-2026-21941 mysql: Optimizer unspecified vulnerability CPU Jan 2026...

6.5CVSS7.2AI score0.00337EPSS
Exploits0References14
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•6 views

Moderate: nginx security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fixes: nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections CVE-2026-1642 For more details about the security issues,...

8.2CVSS6AI score0.00339EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•7 views

Moderate: mysql:8.0 security update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. Security Fixes: mysql: Optimizer unspecified vulnerability CPU Jan 2026 CVE-2026-21941 mysql: Optimizer unspecified vulnerability CPU Jan 2026...

6.5CVSS7.2AI score0.00337EPSS
Exploits0References14
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•5 views

Moderate: 389-ds:1.4 security update

389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP server and command-line utilities for server administration. Security Fixes: 389-ds-base: 389-ds-base: Remote Code Execution and Denial of Service via heap...

7.2CVSS6.1AI score0.01038EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•11 views

Moderate: nginx:1.24 security update

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security Fixes: nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections CVE-2026-1642 For more details about the security issues,...

8.2CVSS6AI score0.00339EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•11 views

Moderate: gnutls security update

The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fixes: gnutls: Stack-based Buffer Overflow in gnutlspkcs11tokeninit Function CVE-2025-9820 gnutls: GnuTLS: Denial of Service vi...

5.3CVSS5.8AI score0.00638EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•9 views

Moderate: virt:rhel and virt-devel:rhel security update

Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the...

7.5CVSS7.1AI score0.00783EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•10 views

Moderate: opencryptoki security update

The opencryptoki packages contain version 2.11 of the PKCS11 API, implemented for IBM Cryptocards, such as IBM 4764 and 4765 crypto cards. These packages includes support for the IBM 4758 Cryptographic CoProcessor with the PKCS11 firmware loaded, the IBM eServer Cryptographic Accelerator FC 4960 ...

6.8CVSS5.8AI score0.00162EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/24 12:0 a.m.•6 views

Moderate: python3 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

6.3CVSS6.8AI score0.01499EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/19 12:0 a.m.•19 views

Important: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

7.5CVSS5.8AI score0.00693EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/19 12:0 a.m.•8 views

Important: gimp:2.8 security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:...

8.8CVSS5.8AI score0.01157EPSS
Exploits0References10
AlmaLinux
AlmaLinux
•added 2026/03/18 12:0 a.m.•7 views

Important: capstone security update

Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the security community. Security Fixes: capstone: Capstone: Memory corruption via unchecked vsnprintf return CVE-2025-68114 capstone: Capstone: Heap buffer overflow via...

9.8CVSS6.2AI score0.00191EPSS
Exploits1References6
AlmaLinux
AlmaLinux
•added 2026/03/17 12:0 a.m.•4 views

Moderate: mysql security update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. Security Fixes: mysql: Optimizer unspecified vulnerability CPU Jan 2026 CVE-2026-21941 mysql: Optimizer unspecified vulnerability CPU Jan 2026...

6.5CVSS5.9AI score0.00337EPSS
Exploits0References14
AlmaLinux
AlmaLinux
•added 2026/03/17 12:0 a.m.•9 views

Moderate: grub2 security update

The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. Security Fixes: grub2: Missing...

7.8CVSS5.8AI score0.0019EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/17 12:0 a.m.•19 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C regs save CVE-2025-39818 kernel: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats...

7.8CVSS5.8AI score0.00173EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/17 12:0 a.m.•7 views

Important: libpng security update

The libpng packages contain a library of functions for creating and manipulating Portable Network Graphics PNG image format files. Security Fixes: libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API CVE-2026-22801 libpng: libpng: Denial of...

8.3CVSS6.3AI score0.00955EPSS
Exploits2References8
AlmaLinux
AlmaLinux
•added 2026/03/17 12:0 a.m.•12 views

Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

7.5CVSS5.9AI score0.00564EPSS
Exploits0References6
AlmaLinux
AlmaLinux
•added 2026/03/17 12:0 a.m.•11 views

Important: container-tools:rhel8 security update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip CVE-2025-61728 golang: net/url: Memory exhaustion in query parameter parsing ...

10CVSS7.2AI score0.01945EPSS
Exploits2References8
AlmaLinux
AlmaLinux
•added 2026/03/16 12:0 a.m.•7 views

Moderate: grub2 security update

The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. Security Fixes: grub2: Missing...

7.8CVSS5.8AI score0.0019EPSS
Exploits0References4
AlmaLinux
AlmaLinux
•added 2026/03/12 12:0 a.m.•7 views

Important: .NET 9.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 9.0.115 and .NET Runtime...

7.5CVSS6.9AI score0.02818EPSS
Exploits0References6
Total number of security vulnerabilities5313