907639 matches found
DSA-576-1 squid - multiple
Bulletin has no description...
DSA-519 cvs - several vulnerabilities
Bulletin has no description...
DSA-506 neon - buffer overflow
Bulletin has no description...
DSA-440 linux-kernel-2.4.17-powerpc-apus - several vulnerabilities
Bulletin has no description...
DSA-212 mysql - multiple problems
Bulletin has no description...
RLSA-2026:21556 Important: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: proc: use the same treatment to check proclseek as ones for procreaditer et.al CVE-2025-38653 kernel: ima: don't clear IMADIGSIG flag when setting or removing non-IMA xattr CVE-2025-68183...
GHSA-7F6V-3GX7-27Q8 oRPC has Stored XSS in OpenAPI Reference Plugin via unescaped JSON.stringify
A Stored Cross-Site Scripting XSS vulnerability exists in the OpenAPI documentation generation of orpc. If an attacker can control any field within the OpenAPI specification such as info.description, they can break out of the JSON context and execute arbitrary JavaScript when a user views the...
DEBIAN-CVE-2025-32807
A path traversal vulnerability in FusionDirectory before 1.5 allows remote attackers to read arbitrary files on the host that end with .png and .svg or .xpm for some configurations via the icon parameter of a GET request to geticon.php...
RLSA-2025:1671 Important: mysql security update
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. Security Fixes: openssl: SSLselectnextproto buffer overread CVE-2024-5535 krb5: GSS message token handling CVE-2024-37371 curl: libcurl: ASN.1 date pars...
PUB-A-364794723
In ProtocolUnsolOnSSAdapter::GetServiceClass of protocolcalladapter.cpp, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is not needed for exploitation...
SUSE-SU-2025:0557-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request bsc1235705. - CVE-2024-46858: mptcp: pm: Fix uaf in timerdeletesync bsc1231088. -...
ALSA-2024:9185 Moderate: iperf3 security update
Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss. Security Fixes: iperf3: possible denial of service CVE-2023-7250,ESNET-SECADV-2023-0002 iperf3: vulnerable to marvin attack if th...
RLSA-2024:8856 Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/bluetooth: race condition in conninfomin,maxageset CVE-2024-24857 kernel: dmaengine: fix NULL pointer in channel unregistration function CVE-2023-52492 kernel: netfilter:...
RLSA-2024:8180 Important: webkit2gtk3 security update
WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: webkit2gtk: Use after free may lead to Remote Code Execution CVE-2024-40776 webkitgtk: webkit2gtk: Processing maliciously crafted web content may lead to an unexpected process crash...
RHSA-2020:4670 Red Hat Security Advisory: idm:DL1 and idm:client security, bug fix, and enhancement update
Bulletin has no description...
SUSE-SU-2024:3591-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47387: cpufreq: schedutil: Destroy mutex before kobjectput frees the memory bsc1225316. - CVE-2022-48788: nvme-rdma: fix possible use-after-free in...
SUSE-SU-2024:3561-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2023-52610: net/sched: actct: fix skb leak and crash on ooo frags bsc1221610. - CVE-2023-52752: smb: client: fix use-after-free bug in cifsdebugdataprocshow...
RHSA-2024:2693 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP4 security update
Bulletin has no description...
RHSA-2024:5066 Red Hat Security Advisory: kernel security update
Bulletin has no description...
RHSA-2022:1276 Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.0.9 security update
Bulletin has no description...
RHSA-2024:0776 Red Hat Security Advisory: jenkins and jenkins-2-plugins security update
Bulletin has no description...
RHSA-2021:4614 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP10 security update
Bulletin has no description...
RHSA-2013:1455 Red Hat Security Advisory: Red Hat Network Satellite server IBM Java Runtime security update
Bulletin has no description...
RHSA-2024:5239 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP5 security update
Bulletin has no description...
RHSA-2024:5138 Red Hat Security Advisory: httpd security update
Bulletin has no description...
ALSA-2024:7000 Important: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: CVE-2023-6040 CVE-2024-26595 CVE-2024-26600 CVE-2021-46984 CVE-2023-52478 CVE-2023-52476 CVE-2023-52522 CVE-2021-47101 CVE-2021-47097 CVE-2023-52605 CVE-2024-26638 CVE-2024-26645 CVE-2024-26665...
RHSA-2017:3454 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.0 security update
Bulletin has no description...
RHSA-2017:2636 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.17 update on RHEL 7
Bulletin has no description...
RHSA-2024:3588 Red Hat Security Advisory: glibc security update
Bulletin has no description...
RHSA-2021:4702 Red Hat Security Advisory: Satellite 6.10 Release
Bulletin has no description...
RHSA-2004:687 Red Hat Security Advisory: php security update
Bulletin has no description...
RHSA-2024:0889 Red Hat Security Advisory: oniguruma security update
Bulletin has no description...
RHSA-2021:4356 Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Bulletin has no description...
RHSA-2021:0637 Red Hat Security Advisory: OpenShift Container Platform 3.11.394 bug fix and security update
Bulletin has no description...
RHSA-2020:0855 Red Hat Security Advisory: tomcat security update
Bulletin has no description...
RHSA-2008:0630 Red Hat Security Advisory: Red Hat Network Satellite Server security update
Bulletin has no description...
RHSA-2024:2619 Red Hat Security Advisory: rh-mysql80-mysql security update
Bulletin has no description...
RHSA-2022:7647 Red Hat Security Advisory: httpd:2.4 security update
Bulletin has no description...
RHSA-2022:0821 Red Hat Security Advisory: kernel-rt security and bug fix update
Bulletin has no description...
RHSA-2024:4943 Red Hat Security Advisory: httpd security update
Bulletin has no description...
RHSA-2024:4827 Red Hat Security Advisory: httpd:2.4 security update
Bulletin has no description...
RHSA-2024:2004 Red Hat Security Advisory: kernel security and bug fix update
Bulletin has no description...
RHSA-2023:4531 Red Hat Security Advisory: kpatch-patch security update
Bulletin has no description...
RHSA-2020:0813 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2 security update
Bulletin has no description...
CVE-2024-7260
An open redirect vulnerability was found in Keycloak. A specially crafted URL can be constructed where the referrer and referreruri parameters are made to trick a user to visit a malicious webpage. A trusted URL can trick users and automation into believing that the URL is safe, when, in fact, it...
CGA-25C7-M3FG-77X6
Bulletin has no description...
GO-2024-3092 Mattermost allows unsolicited invites to expose access to local channels in github.com/mattermost/mattermost-server
Mattermost allows unsolicited invites to expose access to local channels in github.com/mattermost/mattermost-server...
GO-2024-3088 memos CORS Misconfiguration in server.go (GHSL-2024-034) in github.com/usememos/memos
memos CORS Misconfiguration in server.go GHSL-2024-034 in github.com/usememos/memos...
GO-2024-3078 LF Edge eKuiper has a SQL Injection in sqlKvStore in github.com/lf-edge/ekuiper
LF Edge eKuiper has a SQL Injection in sqlKvStore in github.com/lf-edge/ekuiper...
GO-2022-1171 Alist vulnerable to Path Traversal in github.com/alist-org/alist
Alist vulnerable to Path Traversal in github.com/alist-org/alist...