Lucene search
K
CloudlinuxRecent

524 matches found

CloudLinux
CloudLinux
•added 2025/08/28 7:38 p.m.•7 views

wget: Fix of CVE-2024-38428

CVE-2024-38428: fix mishandle semicolons in userinfo subcomponent of URI to prevent insecure behavior...

9.1CVSS7.1AI score0.00672EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/08/20 4:26 p.m.•7 views

kernel: Fix of CVE-2023-52572

cifs: Fix UAF in cifsdemultiplexthread CVE-2023-52572...

7.8CVSS7.2AI score0.00231EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/08/18 10:43 a.m.•12 views

tomcat6: Fix of CVE-2025-24813

CVE-2025-24813: enhance lifecycle of temporary files used by partial PUT...

10CVSS9.2AI score0.99945EPSS
Exploits47
CloudLinux
CloudLinux
•added 2025/08/15 3:29 p.m.•6 views

dmidecode: Fix of CVE-2023-30630

CVE-2023-30630: prevent --dump-bin from overwriting local files to address privilege escalation vulnerability...

7.1CVSS6.3AI score0.00523EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/08/14 3:22 p.m.•9 views

git: Fix of CVE-2025-46835

CVE-2025-46835: fix vulnerability where Git GUI can create and overwrite arbitrary writable files...

8.5CVSS7.5AI score0.00296EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/08/13 8:37 a.m.•6 views

subversion: Fix of CVE-2024-46901

CVE-2024-46901: fix moddavsvn denial-of-service via control characters in paths...

4.3CVSS7.3AI score0.01943EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/08/13 8:35 a.m.•8 views

java-1.8.0-openjdk: Fix of 4 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u462-b08. That fixes following CVEs: - CVE-2025-30749: better Glyph drawing - CVE-2025-30754: enhance TLS protocol support - CVE-2025-30761: improve scripting supports - CVE-2025-50106: glyph out-of-memory access and crash...

8.1CVSS6.9AI score0.01058EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/08/08 7:17 p.m.•8 views

Update of nss

update to CKBI 2.74 from NSS 3.110 - updated certificates: - Certificate "certSIGN ROOT CA" - Certificate "ACCVRAIZ1" - Certificate "Entrust Root Certification Authority - G4" - Certificate "Security Communication ECC RootCA1" - Certificate "BJCA Global Root CA1" - Certificate "BJCA Global Root...

7.3AI score
Exploits0
CloudLinux
CloudLinux
•added 2025/08/05 8:9 a.m.•9 views

git: Fix of CVE-2025-27613

CVE-2025-27613: fix vulnerability where Gitk can write and truncate arbitrary writable files...

3.6CVSS7.5AI score0.00287EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/08/04 9:21 p.m.•8 views

sqlite: Fix of CVE-2025-6965

CVE-2025-6965: fix a potential memory corruption if the number of aggregate terms in a query exceeds the maximum number of columns...

7.7CVSS7.5AI score0.73495EPSS
Exploits3
CloudLinux
CloudLinux
•added 2025/07/29 9:15 a.m.•11 views

php: Fix of CVE-2025-1220

CVE-2025-1220: fix null byte termination in hostnames...

5.3CVSS6.3AI score0.00514EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/07/24 5:24 p.m.•9 views

libxml2: Fix of 2 CVEs

CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...

9.1CVSS7AI score0.01437EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/07/22 6:40 p.m.•7 views

perl: Fix of CVE-2018-18311

CVE-2018-18311: fix buffer overflow...

9.8CVSS9.3AI score0.11676EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/07/17 10:42 a.m.•9 views

git: Fix of CVE-2025-48384

CVE-2025-48384: config: quote values containing CR character...

8CVSS7.7AI score0.02775EPSS
Exploits9
CloudLinux
CloudLinux
•added 2025/07/09 7:57 p.m.•6 views

Update of tzdata

Fix incorrect tzdb.dat by harding links...

7.3AI score
Exploits0
CloudLinux
CloudLinux
•added 2025/07/04 7:0 a.m.•10 views

rsync: Fix of CVE-2024-12087

CVE-2024-12087: fix path traversal vulnerability by adding a proper symlink verification and deduplication checks on a per-file-list basis...

7.5CVSS7.6AI score0.02224EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/07/04 6:58 a.m.•13 views

java-1.8.0-openjdk: Fix of 2 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u452-b09. That fixes following CVE: CVE-2025-21587, CVE-2025-30698...

7.4CVSS6.8AI score0.0073EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/06/28 6:23 p.m.•8 views

rsync: Fix of CVE-2024-12088

CVE-2024-12088: fix improper verification of symbolic link destinations to prevent path traversal vulnerability...

7.5CVSS7.6AI score0.04575EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/06/26 9:29 a.m.•8 views

Update of tzdata

Upgrade to tzdata-2025b - New zone for Aysén Region in Chile which moves from -04/-03 to -03. - Paraguay adopted permanent -03 starting spring 2024. - Improve pre-1991 data for the Philippines. - Etc/Unknown is now reserved. - Improve historical data for Mexico, Mongolia, and Portugal. - System V...

7.5AI score
Exploits0
CloudLinux
CloudLinux
•added 2025/06/17 3:56 p.m.•8 views

kernel: Fix of 4 CVEs

media: pvrusb2: fix array-index-out-of-bounds in pvr2i2ccoreinit CVE-2022-49478 - x86/kvm: Disable kvmclock on all CPUs on shutdown CVE-2021-47110 - cifs: fix potential double free during failed mount CVE-2022-49541 - drm/amd/pm: fix double free in siparsepowertable CVE-2022-49530...

7.8CVSS7.5AI score0.00291EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/06/03 10:37 a.m.•6 views

sssd: Fix of CVE-2023-3758

CVE-2023-3758: fix race condition in adgpo...

7.1CVSS7AI score0.01033EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/05/27 5:25 p.m.•18 views

kernel: Fix of 12 CVEs

ext4: fix OOB read when checking dotdot dir CVE-2025-37785 - iscsiibft: Fix UBSAN shift-out-of-bounds warning in ibftattrshownic CVE-2025-21993 - media: uvcvideo: Fix double free in error path CVE-2024-57980 - jffs2: Prevent rtime decompress memory corruption CVE-2024-57850 - wifi: iwlegacy:...

7.8CVSS7.5AI score0.00268EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/05/20 10:55 a.m.•9 views

Update of microcode_ctl

Update Intel CPU microcode to 20250211: - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c0003e0; - Addition of cpuid:806F8/0x87 SPR-SP E5/S3 microcode in microcode.dat at revision 0x2b000620; - Addition of cpuid:90672/0x07 ADL-HX/S 8+8 C0 microcode in...

7.4AI score
Exploits0
CloudLinux
CloudLinux
•added 2025/05/12 1:49 p.m.•8 views

libxml2: Fix of CVE-2025-32415

CVE-2025-32415: fix heap buffer overflow in xmlSchemaIDCFillNodeTables...

7.5CVSS7.9AI score0.00559EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/03/17 5:33 p.m.•14 views

binutils: Fix of CVE-2025-0840

CVE-2025-0840: fix stack-buffer-overflow at objdump disassemblebytes...

7.5CVSS7.3AI score0.00732EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/03/10 7:55 p.m.•8 views

libxml2: Fix of CVE-2025-27113

CVE-2025-27113: fix compilation of explicit child axis...

7.5CVSS7.3AI score0.01009EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/03/01 10:12 a.m.•10 views

bind: Fix of CVE-2024-11187

CVE-2024-11187: Limit the additional processing for large RDATA sets...

7.5CVSS7.4AI score0.15344EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/02/27 11:42 a.m.•20 views

kernel: Fix of 3 CVEs

NFSv4.0: Fix a use-after-free problem in the asynchronous open CVE-2024-53173 - ALSA: usb-audio: Fix out of bounds reads when finding clock sources CVE-2024-53150 - misc/libmasm/module: Fix two use after free in ibmasminitone CVE-2021-47334...

7.8CVSS7.2AI score0.01325EPSS
Exploits0
CloudLinux
CloudLinux
•added 2025/02/11 4:41 p.m.•33 views

kernel: Fix of 13 CVEs

media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - btrfs: fix information leak in btrfsioctllogicaltoino CVE-2024-35849 - net: afcan: do not leave a dangling sk pointer in cancreate CVE-2024-56603 - netfilter: xtables: fix LED ID check in ledtgcheck...

7.8CVSS8.5AI score0.03301EPSS
Exploits1
CloudLinux
CloudLinux
•added 2025/01/17 10:46 p.m.•14 views

squid34: Fix of CVE-2024-25617

CVE-2024-25617: Improve handling of expanding HTTP header values to prevent DoS...

7.5CVSS8.7AI score0.88864EPSS
Exploits0
CloudLinux
CloudLinux
•added 2024/12/25 10:29 a.m.•12 views

ntp: Fix of CVE-2020-13817

CVE-2020-13817: randomize transmit timestamp in client requests...

7.4CVSS7.3AI score0.04071EPSS
Exploits0
CloudLinux
CloudLinux
•added 2024/12/12 9:45 p.m.•25 views

php: Fix of CVE-2024-11234

CVE-2024-11234: fix stream HTTP fulluri CRLF injection...

7.2CVSS7.7AI score0.01132EPSS
Exploits1
CloudLinux
CloudLinux
•added 2024/12/05 6:6 p.m.•22 views

php: Fix of CVE-2024-11233

CVE-2024-11233: fix single byte overread with convert.quoted-printable-decode filter...

8.2CVSS7AI score0.01618EPSS
Exploits1
CloudLinux
CloudLinux
•added 2024/12/02 5:1 p.m.•18 views

kernel: Fix of 6 CVEs

hwmon: ibmpex Fix possible UAF when ibmpexregisterbmc fails CVE-2022-49029 - ppp: fix pppasyncencode illegal access CVE-2024-50035 - ext4: no need to continue when the number of entries is 1 CVE-2024-49967 - net/packet: fix slab-out-of-bounds access in packetrecvmsg CVE-2022-20368 - packet: in...

7.8CVSS7.2AI score0.00813EPSS
Exploits2
CloudLinux
CloudLinux
•added 2024/11/27 10:12 a.m.•18 views

squid: Fix of CVE-2024-45802

CVE-2024-45802: disable ESI...

7.5CVSS6.6AI score0.45289EPSS
Exploits0
CloudLinux
CloudLinux
•added 2024/11/27 10:10 a.m.•18 views

squid34: Fix of CVE-2024-45802

CVE-2024-45802: disable ESI...

7.5CVSS6.6AI score0.45289EPSS
Exploits0
CloudLinux
CloudLinux
•added 2024/11/18 7:7 p.m.•18 views

ImageMagick: Fix of 3 CVEs

CVE-2020-27751: fix shift exponent that is too large for 64-bit type at magick/quantum-export.c - CVE-2020-27757: fix outside the range of representable values of type 'unsigned long long' bug at magick/quantum-private.h - CVE-2020-27768: fix outside the range of representable values of type...

4.3CVSS7AI score0.01362EPSS
Exploits2
CloudLinux
CloudLinux
•added 2024/11/06 4:26 p.m.•11 views

Update of nss

update to CKBI 2.69 from NSS 3.103 - updated certificates: - Certificate "OISTE WISeKey Global Root GC CA" - Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068" - removed certificates: - Certificate "Security Communication Root CA" - Certificate "Camerfirma Chambers of...

7.3AI score
Exploits0
CloudLinux
CloudLinux
•added 2024/11/06 4:23 p.m.•11 views

Update of ca-certificates

update to CKBI 2.69 from NSS 3.103 - updated certificates: - Certificate "GLOBALTRUST 2020" - Certificate "OISTE WISeKey Global Root GC CA" - removed certificates: - Certificate "Security Communication Root CA" - Certificate "Camerfirma Chambers of Commerce Root" - Certificate "Chambers of...

7.3AI score
Exploits0
CloudLinux
CloudLinux
•added 2024/10/28 6:19 p.m.•24 views

php: Fix of CVE-2024-8925

CVE-2024-8925: Fix data integrity violation while parsing multipart/form-data boundaries larger than the read buffer...

5.3CVSS7AI score0.00947EPSS
Exploits1
CloudLinux
CloudLinux
•added 2024/10/22 8:21 p.m.•21 views

php: Fix of CVE-2024-8927

CVE-2024-8927: Fix bypass of cgi.forceredirect configuration...

7.5CVSS7.4AI score0.01077EPSS
Exploits1
CloudLinux
CloudLinux
•added 2024/10/10 5:49 p.m.•24 views

microcode_ctl: Fix of CVE-2023-31315

Update Intel CPU microcode to 20240813: - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c000390; - Addition of cpuid:806F8/0x87 SPR-SP E5/S3 microcode in microcode.dat at revision 0x2b0005c0; - Addition of cpuid:90672/0x07 ADL-HX/S 8+8 C0 microcode in...

7.5CVSS7AI score0.00622EPSS
Exploits0
CloudLinux
CloudLinux
•added 2024/10/07 10:36 a.m.•47 views

kernel: Fix of 13 CVEs

btrfs: fix use-after-free after failure to create a snapshot CVE-2022-48733 - hwmon: nct6775-core Fix underflows seen when writing limit attributes CVE-2024-46757 - wifi: mac80211: Avoid address calculations via out of bounds array indexing CVE-2024-41071 - netfilter: conntrack: dccp: copy entire...

8.4CVSS7.5AI score0.00976EPSS
Exploits1
CloudLinux
CloudLinux
•added 2024/10/04 7:53 p.m.•22 views

python: Fix of 2 CVEs

CVE-2024-7592: fix algorithm with quadratic complexity to avoid using excess CPU resources while parsing the cookie value - CVE-2024-6232: fix regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing and was vulnerable to ReDoS via specifically-crafted tar...

7.5CVSS7.1AI score0.02303EPSS
Exploits3
CloudLinux
CloudLinux
•added 2024/09/18 10:24 a.m.•32 views

kernel: Fix of 8 CVEs

blktrace: fix dereference after null check CVE-2019-19768 - blktrace: Protect q-blktrace with RCU CVE-2019-19768 - blktrace: fix unlocked access to init/start-stop/teardown - blktrace: Fix potential deadlock between delete & sysfs ops - net: fix out-of-bounds access in opsinit CVE-2024-36883 -...

7.8CVSS7.9AI score0.0415EPSS
Exploits4
CloudLinux
CloudLinux
•added 2024/09/11 1:7 p.m.•24 views

java-1.8.0-openjdk: Fix of 6 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u422-b05. That fixes following CVEs: - CVE-2024-21131: UTF8 size overflow - CVE-2024-21138: Infinite loop vunlerability in SymbolTable - CVE-2024-21140: Int overflow/underflow in Range Check Elimination RCE - CVE-2024-21144: Invalid header...

7.4CVSS7.3AI score0.01257EPSS
Exploits0
CloudLinux
CloudLinux
•added 2024/09/10 6:46 p.m.•29 views

expat: Fix of 2 CVEs

CVE-2024-45491: Detect integer overflow in dtdCopy on 32-bit platforms - CVE-2024-45492: Detect integer overflow in nextScaffoldPart on 32-bit platforms...

9.8CVSS9.8AI score0.01393EPSS
Exploits0
CloudLinux
CloudLinux
•added 2024/09/06 8:50 p.m.•24 views

git: Fix of CVE-2024-32004

CVE-2024-32004: integrating ownership checking to detect dubious local repositories during cloning...

8.1CVSS7.3AI score0.01271EPSS
Exploits0
CloudLinux
CloudLinux
•added 2024/09/03 5:50 p.m.•29 views

clamav: Fix of 2 CVEs

Update to 0.103.11 - CVE-2023-20032: fix missing buffer size check that may result in a heap buffer overflow write - Don't apply clamav-check.patch and CVE-2022-20698.patch as they have already been applied in new 0.103.11 version - Don't apply clamav-clamonacc-service.patch since el6 doesn't...

9.8CVSS8AI score0.29314EPSS
Exploits1
CloudLinux
CloudLinux
•added 2024/08/27 3:58 p.m.•55 views

kernel: Fix of 11 CVEs

drm/vmwgfx: Fix invalid reads in fence signaled events CVE-2024-36960 - afunix: Fix garbage collector racing against connect CVE-2024-26923 - ipv6: remove maxsize check inline with ipv4 CVE-2023-52340 - aoe: fix the potential use-after-free problem in aoecmdcfgpkts CVE-2023-6270 - smb: client:...

7.8CVSS8AI score0.03292EPSS
Exploits2
Total number of security vulnerabilities524