Lucene search
K
RedhatRecent

115831 matches found

RedHat Linux
RedHat Linux
•added 2026/05/19 1:16 p.m.•8 views

libssh: Use of uninitialized variable in privatekey_from_file()

A vulnerability was found in libssh, where an uninitialized variable exists under certain conditions in the privatekeyfromfile function. This flaw can be triggered if the file specified by the filename doesn't exist and may lead to possible signing failures or heap corruption...

3.6CVSS6.6AI score0.00181EPSS
Exploits0References7
RedHat Linux
RedHat Linux
•added 2026/05/19 1:16 p.m.•11 views

Moderate: Red Hat Security Advisory: libssh security update

An update for libssh is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.2CVSS6.3AI score0.00582EPSS
Exploits0References13
RedHat Linux
RedHat Linux
•added 2026/05/19 1:9 p.m.•11 views

cpython: wsgiref.headers.Headers allows header newline injection in Python

Missing newline filtering has been discovered in Python. User-controlled header names and values containing newlines can allow injecting HTTP headers...

5.9CVSS7AI score0.00463EPSS
Exploits0References7
RedHat Linux
RedHat Linux
•added 2026/05/19 1:9 p.m.•18 views

Moderate: Red Hat Security Advisory: python3.9 security update

An update for python3.9 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

5.9CVSS7.1AI score0.00463EPSS
Exploits0References3
RedHat Linux
RedHat Linux
•added 2026/05/19 1:8 p.m.•23 views

Important: Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.10.3

Assisted installer RHEL 9 components for the multicluster engine for Kubernetes 2.10.3 General Availability release, with updates to container images. Assisted Installer RHEL 9 integrates components for the general multicluster engine for Kubernetes 2.10.3 release that simplify the process of...

9.1CVSS6.6AI score0.01557EPSS
Exploits2References5
RedHat Linux
RedHat Linux
•added 2026/05/19 12:52 p.m.•18 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.21.16 bug fix and security update

Red Hat OpenShift Container Platform release 4.21.16 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.21. Red Hat Product Security has rated this update as having a...

10CVSS7AI score0.01815EPSS
Exploits11References11
RedHat Linux
RedHat Linux
•added 2026/05/19 12:37 p.m.•16 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.21.16 security and extras update

Red Hat OpenShift Container Platform release 4.21.16 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.21. Red Hat Product Security has rated this update as having a security impact of...

9.1CVSS6.8AI score0.01557EPSS
Exploits1References3
RedHat Linux
RedHat Linux
•added 2026/05/19 10:11 a.m.•20 views

edk2: EDK2: Improper Input Validation allows arbitrary command execution

A flaw was found in EDK2 EFI Development Kit 2. This vulnerability allows an attacker to cause arbitrary command execution and impact Confidentiality, Integrity, and Availability via improper input validation by local access...

8.4CVSS6AI score0.00669EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 10:11 a.m.•12 views

Important: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.4CVSS6AI score0.00669EPSS
Exploits0References9
RedHat Linux
RedHat Linux
•added 2026/05/19 9:36 a.m.•8 views

glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

A flaw was found in glibc. When the wordexp function is called with the flags WRDEREUSE and WRDEAPPEND, it may return uninitialized memory. If the caller inspects the wewordv array or calls the wordfree function to free the allocated memory, the process will abort, resulting in a denial of servic...

7.5CVSS7AI score0.00286EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:36 a.m.•10 views

Moderate: Red Hat Security Advisory: glibc security update

An update for glibc is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS7AI score0.00286EPSS
Exploits0References16
RedHat Linux
RedHat Linux
•added 2026/05/19 9:35 a.m.•12 views

luksmeta: Data corruption when handling LUKS1 partitions with luksmeta

A data corruption vulnerability has been identified in the luksmeta utility when used with the LUKS1 disk encryption format. An attacker with the necessary permissions can exploit this flaw by writing a large amount of metadata to an encrypted device. The utility fails to correctly validate the...

4.4CVSS5.7AI score0.00093EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:35 a.m.•12 views

Moderate: Red Hat Security Advisory: luksmeta security update

An update for luksmeta is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

4.4CVSS5.8AI score0.00093EPSS
Exploits0References3
RedHat Linux
RedHat Linux
•added 2026/05/19 9:31 a.m.•13 views

glib: Integer overflow in in g_escape_uri_string()

A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the gescapeuristring function. If the string to escape contains a very large number of unacceptable characters which would need escaping, the calculation of the length of the escaped string...

7.7CVSS6.9AI score0.00306EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:31 a.m.•11 views

Moderate: Red Hat Security Advisory: mingw-glib2 security update

An update for mingw-glib2 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

7.7CVSS6.8AI score0.00306EPSS
Exploits1References3
RedHat Linux
RedHat Linux
•added 2026/05/19 9:29 a.m.•8 views

podman: Podman kube play command may overwrite host files

There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the targ...

8.1CVSS7.2AI score0.01008EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:29 a.m.•10 views

Important: Red Hat Security Advisory: podman security update

An update for podman is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.1CVSS7.2AI score0.01008EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:22 a.m.•11 views

org.apache.tomcat/tomcat-juli: tomcat: Apache Tomcat: console manipulation

An improper input neutralization flaw has been discovered in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Windows operating system, and the console supported ANSI escape sequences, it was possible for an attacker to use a...

9.6CVSS7.3AI score0.09917EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:22 a.m.•13 views

org.apache.tomcat/tomcat-catalina: tomcat: Apache Tomcat: session fixation via rewrite valve

A session fixation vulnerability has been identified in Apache Tomcat, affecting its rewrite functionality. If the rewrite valve is enabled for a web application, an attacker can craft a specific URL. If a victim clicks on this malicious URL, their subsequent interaction with the resource will...

6.5CVSS6.5AI score0.00775EPSS
Exploits0References8
RedHat Linux
RedHat Linux
•added 2026/05/19 9:22 a.m.•12 views

tomcat: Apache Tomcat: Security constraint bypass for CGI scripts

A flaw was found in the CGI servlet component of Apache Tomcat. This vulnerability allows a security constraint bypass via improper handling of case sensitivity in the pathInfo component of a URI mapped to the CGI servlet...

7.3CVSS7.3AI score0.02736EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:22 a.m.•17 views

Important: Red Hat Security Advisory: tomcat security update

An update for tomcat is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.6CVSS7AI score0.09917EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:20 a.m.•11 views

firefox: thunderbird: Select list elements could be shown over another site

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could cause a select dropdown to be shown over another tab; this could have led to user confusion and possible spoofing attacks...

4.3CVSS6.7AI score0.00469EPSS
Exploits0References9
RedHat Linux
RedHat Linux
•added 2026/05/19 9:20 a.m.•15 views

Important: Red Hat Security Advisory: qemu-kvm security update

An update for qemu-kvm is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.8CVSS6.7AI score0.00762EPSS
Exploits0References33
RedHat Linux
RedHat Linux
•added 2026/05/19 9:20 a.m.•9 views

firefox: thunderbird: Unhandled Exception in Add-on Signature Verification

The Mozilla Foundation's Security Advisory: The application can fail to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw is triggered by an invalid or unsupported extension manifest and could cause runtime errors that disrupt the...

5.4CVSS6.8AI score0.00347EPSS
Exploits0References9
RedHat Linux
RedHat Linux
•added 2026/05/19 9:20 a.m.•12 views

firefox: thunderbird: URL Bar Spoofing via Manipulated Punycode and Whitespace Characters

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: A crafted URL containing Arabic script and whitespace characters could have hidden the true origin of the page, resulting in a potential spoofing attack...

5.4CVSS6.7AI score0.00441EPSS
Exploits0References9
RedHat Linux
RedHat Linux
•added 2026/05/19 9:20 a.m.•10 views

firefox: thunderbird: Improper Keypress Handling in Executable File Confirmation Dialog

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: When handling keypress events, an attacker may have been able to trick a user into bypassing the "Open Executable File?" confirmation dialog. This could have led to malicious code execution...

8.8CVSS6.8AI score0.00762EPSS
Exploits0References9
RedHat Linux
RedHat Linux
•added 2026/05/19 9:20 a.m.•8 views

firefox: thunderbird: CSP Bypass and XSS Exposure via Web Compatibility Shims

The Mozilla Foundation's Security Advisory: Enhanced Tracking Protection's Strict mode may inadvertently allow a CSP frame-src bypass and DOM-based cross-site scripting XSS through the Google SafeFrame shim in the Web Compatibility extension. This issue could expose users to malicious frames...

6.1CVSS6.8AI score0.00495EPSS
Exploits0References10
RedHat Linux
RedHat Linux
•added 2026/05/19 9:20 a.m.•10 views

firefox: thunderbird: Memory safety bugs fixed in Firefox 133, Thunderbird 133, Firefox ESR 128.5, and Thunderbird 128.5

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs are present in Firefox 132, Firefox ESR 128.4, and Thunderbird 128.4. Some of these bugs showed evidence of memory corruption, and we presume that with enough effort, some of...

8.8CVSS7.3AI score0.00681EPSS
Exploits0References9
RedHat Linux
RedHat Linux
•added 2026/05/19 9:19 a.m.•13 views

libvirt: Denial of service in XML parsing

A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was performed before the ACL checks. A malicious user with limited permissions could exploit this flaw by submitting a specially crafted XML file, causing libvirt to allocate too...

5.5CVSS6.6AI score0.00204EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/05/19 9:19 a.m.•16 views

Moderate: Red Hat Security Advisory: libvirt security update

An update for libvirt is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

5.5CVSS6.6AI score0.00204EPSS
Exploits0References34
RedHat Linux
RedHat Linux
•added 2026/05/19 9:16 a.m.•10 views

node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

A flaw was found in node-tar, a Node.js module for handling TAR archives. This vulnerability allows a remote attacker to bypass path traversal protections by crafting a malicious TAR archive. The security check for hardlink entries uses different path resolution logic than the actual hardlink...

8.2CVSS6.7AI score0.00541EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:16 a.m.•12 views

node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

A flaw was found in node-tar, a library for Node.js. This race condition vulnerability occurs due to incomplete handling of Unicode path collisions within the path-reservations system on case-insensitive filesystems, such as macOS APFS. A remote attacker can exploit this by providing a specially...

8.8CVSS6.2AI score0.00233EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:16 a.m.•11 views

node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

A flaw was found in the node-tar library. This vulnerability allows an attacker to craft malicious archives that, when extracted, can bypass intended security restrictions. This leads to arbitrary file overwrite and symlink poisoning, potentially allowing unauthorized modification of files on the...

8.2CVSS6.6AI score0.00334EPSS
Exploits2References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:16 a.m.•15 views

lodash: prototype pollution in _.unset and _.omit functions

A flaw was found in Lodash. A prototype pollution vulnerability in the .unset and .omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service...

8.2CVSS6.6AI score0.01535EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:16 a.m.•16 views

Important: Red Hat Security Advisory: linux-sgx security update

An update for linux-sgx is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

8.8CVSS6.6AI score0.01535EPSS
Exploits5References10
RedHat Linux
RedHat Linux
•added 2026/05/19 9:16 a.m.•11 views

qs: qs: Denial of Service via improper input validation in array parsing

A flaw was found in qs, a module used for parsing query strings. A remote attacker can exploit an improper input validation vulnerability by sending specially crafted HTTP requests that use bracket notation e.g., a=value. This bypasses the arrayLimit option, which is designed to limit the size of...

6.3CVSS6.8AI score0.0041EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:14 a.m.•14 views

unbound: DNSBomb vulnerability

A DNSBomb flaw was found in the unbound package. The DNSBomb attack works by sending low-rate spoofed queries for a malicious zone to Unbound. By controlling the delay of the malicious authoritative answers, Unbound slowly accumulates pending answers for the spoofed addresses. When the...

7.5CVSS6.9AI score0.01729EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:14 a.m.•26 views

Moderate: Red Hat Security Advisory: unbound security update

An update for unbound is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS7AI score0.01729EPSS
Exploits0References7
RedHat Linux
RedHat Linux
•added 2026/05/19 9:14 a.m.•11 views

unbound: Unbound domain hijacking via promiscuous records

A domain hijacking flaw has been discovered in NLNet Lab's Unbound project. Promiscuous NS RRSets that complement positive DNS replies in the authority section can be used to trick resolvers to update their delegation information for the zone. Usually these RRSets are used to update the resolver'...

7.1CVSS7.3AI score0.00311EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:12 a.m.•11 views

openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

A flaw was found in the OpenSSL CMS implementation RFC 3211 KEK Unwrap. This vulnerability allows memory corruption, an application level denial of service, or potential execution of attacker-supplied code via crafted CMS messages using password-based encryption PWRI...

7.5CVSS6.8AI score0.01744EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/05/19 9:12 a.m.•15 views

Moderate: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.6AI score0.01744EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:10 a.m.•11 views

libssh: libssh: Denial of Service via improper configuration file handling

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service DoS by causing the system t...

3.3CVSS6.5AI score0.00158EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/05/19 9:10 a.m.•12 views

libssh: libssh: Denial of Service via inefficient regular expression processing

A flaw was found in libssh. A remote attacker, by controlling client configuration files or knownhosts files, could craft specific hostnames that when processed by the matchpattern function can lead to inefficient regular expression backtracking. This can cause timeouts and resource exhaustion,...

5.5CVSS6.4AI score0.00223EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:10 a.m.•11 views

libssh: libssh: Denial of Service via zero-length input in ssh_get_hexa()

A flaw was found in libssh. The API function sshgethexa is vulnerable to a denial of service when processing zero-length input. This can be exploited remotely by an attacker during GSSAPI Generic Security Service Application Program Interface authentication if the server's logging verbosity is se...

8.2CVSS6.3AI score0.00582EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:10 a.m.•7 views

libssh: libssh: Denial of Service due to malformed SFTP message

A flaw was found in libssh in which a malicious SFTP SSH File Transfer Protocol server can exploit this by sending a malformed 'longname' field within an SSHFXPNAME message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can...

3.1CVSS6.3AI score0.00442EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:10 a.m.•15 views

libssh: Improper sanitation of paths received from SCP servers

A malicious SCP server can send unexpected paths that could make the client application override local files outside of working directory. This could be misused to create malicious executable or configuration files and make the user execute them under specific consequences. This is the same issue...

6.3CVSS6.5AI score0.00408EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:10 a.m.•20 views

Moderate: Red Hat Security Advisory: libssh security update

An update for libssh is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.2CVSS6.1AI score0.00582EPSS
Exploits0References10
RedHat Linux
RedHat Linux
•added 2026/05/19 9:6 a.m.•12 views

p11-kit: NULL dereference via C_DeriveKey with specific NULL parameters

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the CDeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potential...

7.5CVSS5.8AI score0.0116EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/05/19 9:6 a.m.•52 views

Moderate: Red Hat Security Advisory: p11-kit security update

An update for p11-kit is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS5.8AI score0.0116EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:5 a.m.•8 views

Low: Red Hat Security Advisory: NetworkManager security update

An update for NetworkManager is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

3.3CVSS5.8AI score0.00162EPSS
Exploits0References13
Total number of security vulnerabilities115831