113074 matches found
nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination
A flaw was found in nghttp2. Due to missing internal state validation, the library continues to process incoming data even after a session has been terminated. A remote attacker could exploit this by sending a specially crafted HTTP/2 frame, leading to an assertion failure and a denial of service...
Important: Red Hat Security Advisory: nghttp2 security update
An update for nghttp2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
Important: Red Hat Security Advisory: perl-XML-Parser security update
An update for perl-XML-Parser is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...
perl-xml-parser: XML::Parser for Perl: Heap corruption and denial of service from crafted XML input
A flaw was found in XML::Parser for Perl. This vulnerability allows an attacker to cause a heap corruption, which can lead to a denial of service DoS by crashing the application. The issue occurs when the software processes specially crafted XML input, causing an internal buffer to overflow. This...
perl-xml-parser: XML::Parser: Memory corruption via deeply nested XML files
A flaw was found in XML::Parser, a Perl module for parsing XML. This vulnerability, an off-by-one heap buffer overflow, occurs when processing an XML file with very deep element nesting. A remote attacker could exploit this by providing a specially crafted XML file, potentially leading to memory...
libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion
A flaw was found in libpng. A remote attacker could exploit an out-of-bounds read and write vulnerability in the ARM/AArch64 Neon-optimized palette expansion path. This occurs when processing a final partial chunk of 8-bit paletted rows without verifying sufficient input pixels, leading to...
thunderbird: firefox: Memory safety bugs fixed in Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed evidence of memory corruption and w...
thunderbird: firefox: Memory safety bugs fixed in Firefox ESR 115.34.1, Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 115.34.0, Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed evidence of...
libpng: libpng: Arbitrary code execution due to use-after-free vulnerability
A flaw was found in libpng, a library used for processing PNG Portable Network Graphics image files. This vulnerability arises from improper memory management where a heap-allocated buffer is aliased between internal data structures. When specific functions are called, a freed memory region can...
Important: Red Hat Security Advisory: firefox security update
An update for firefox is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
firefox: thunderbird: Incorrect boundary conditions, integer overflow in the Graphics: Text component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions, integer overflow in the Graphics: Text component...
Important: Red Hat Security Advisory: rhc security update
An update for rhc is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the HostnameError.Error function. This flaw, caused by unbounded string concatenation, leads to excessive resource...
golang: net/url: Memory exhaustion in query parameter parsing in net/url
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted...
net/url: Incorrect parsing of IPv6 host literals in net/url
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid...
Important: Red Hat Security Advisory: rhc security update
An update for rhc is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination
A flaw was found in nghttp2. Due to missing internal state validation, the library continues to process incoming data even after a session has been terminated. A remote attacker could exploit this by sending a specially crafted HTTP/2 frame, leading to an assertion failure and a denial of service...
Important: Red Hat Security Advisory: nghttp2 security update
An update for nghttp2 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python3.14: python-unversioned-command-3.14.4-1.hum1 noarch python3-3.14.4-1.hum1 aarch64, x8664 python3-debug-3.14.4-1.hum1 aarch64, x8664 python3-devel-3.14.4-1.hum1 aarch64, x8664...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nodejs24: nodejs24-24.14.1-4.1.hum1 aarch64, x8664 nodejs24-bin-24.14.1-4.1.hum1 noarch nodejs24-devel-24.14.1-4.1.hum1 aarch64, x8664 nodejs24-docs-24.14.1-4.1.hum1 noarch...
Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: sqlite: lemon-3.52.0-1.1.hum1 aarch64, x8664 sqlite-3.52.0-1.1.hum1 aarch64, x8664 sqlite-analyzer-3.52.0-1.1.hum1 aarch64, x8664 sqlite-debug-3.52.0-1.1.hum1 aarch64, x8664...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: yarnpkg: yarnpkg-1.22.22-18.1.hum1 aarch64, x8664 yarnpkg-1.22.22-18.1.hum1.src src...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: xz: xz-5.8.3-1.1.hum1 aarch64, x8664 xz-devel-5.8.3-1.1.hum1 aarch64, x8664 xz-libs-5.8.3-1.1.hum1 aarch64, x8664 xz-lzma-compat-5.8.3-1.1.hum1 aarch64, x8664 xz-static-5.8.3-1.1.hum1 aarch64,...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: unbound: python3-unbound-1.24.2-11.1.hum1 aarch64, x8664 unbound-1.24.2-11.1.hum1 aarch64, x8664 unbound-anchor-1.24.2-11.1.hum1 aarch64, x8664 unbound-devel-1.24.2-11.1.hum1 aarch64, x8664...
Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: uriparser: mingw32-uriparser-1.0.0-2.1.hum1 noarch mingw64-uriparser-1.0.0-2.1.hum1 noarch uriparser-1.0.0-2.1.hum1 aarch64, x8664 uriparser-devel-1.0.0-2.1.hum1 aarch64, x8664...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: llvm: clang-21.1.8-1.1.hum1 aarch64, x8664 clang-analyzer-21.1.8-1.1.hum1 aarch64, x8664 clang-devel-21.1.8-1.1.hum1 aarch64, x8664 clang-libs-21.1.8-1.1.hum1 aarch64, x8664...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python-sentry-sdk: python3-sentry-sdk+aiohttp-2.48.0-4.1.hum1 noarch python3-sentry-sdk+asyncpg-2.48.0-4.1.hum1 noarch python3-sentry-sdk+bottle-2.48.0-4.1.hum1 noarch...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: qt5: qt5-filesystem-5.15.18-2.1.hum1 aarch64, x8664 qt5-rpm-macros-5.15.18-2.1.hum1 noarch qt5-srpm-macros-5.15.18-2.1.hum1 noarch qt5-5.15.18-2.1.hum1.src src...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: php: php-8.5.5-1.1.hum1 aarch64, x8664 php-bcmath-8.5.5-1.1.hum1 aarch64, x8664 php-cli-8.5.5-1.1.hum1 aarch64, x8664 php-common-8.5.5-1.1.hum1 aarch64, x8664 php-dba-8.5.5-1.1.hum1 aarch64, x866...
Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python-pip: python-pip-wheel-26.0.1-2.1.hum1 noarch python3-pip-26.0.1-2.1.hum1 noarch python-pip-26.0.1-2.1.hum1.src src...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: perl: perl-5.42.2-524.1.hum1 aarch64, x8664 perl-Attribute-Handlers-1.03-524.1.hum1 noarch perl-AutoLoader-5.74-524.1.hum1 noarch perl-AutoSplit-5.74-524.1.hum1 noarch perl-B-1.89-524.1.hum1...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: perl-Storable: perl-Storable-3.37-522.1.hum1 aarch64, x8664 perl-Storable-tests-3.37-522.1.hum1 aarch64, x8664 perl-Storable-3.37-522.1.hum1.src src...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: oniguruma: oniguruma-6.9.10-4.1.hum1 aarch64, x8664 oniguruma-devel-6.9.10-4.1.hum1 aarch64, x8664 oniguruma-6.9.10-4.1.hum1.src src...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: libxml2: libxml2-16-2.15.2-0.3.hum1 aarch64, x8664 libxml2-2.15.2-0.3.hum1 aarch64, x8664 libxml2-devel-2.15.2-0.3.hum1 aarch64, x8664 libxml2-static-2.15.2-0.3.hum1 aarch64, x8664...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: libtiff: libtiff-4.7.1-2.1.hum1 aarch64, x8664 libtiff-devel-4.7.1-2.1.hum1 aarch64, x8664 libtiff-static-4.7.1-2.1.hum1 aarch64, x8664 libtiff-tools-4.7.1-2.1.hum1 aarch64, x8664...
Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: libtasn1: libtasn1-4.21.0-1.1.hum1 aarch64, x8664 libtasn1-devel-4.21.0-1.1.hum1 aarch64, x8664 libtasn1-tools-4.21.0-1.1.hum1 aarch64, x8664 libtasn1-4.21.0-1.1.hum1.src src...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: gnutls: gnutls-3.8.12-1.1.hum1 aarch64, x8664 gnutls-c++-3.8.12-1.1.hum1 aarch64, x8664 gnutls-dane-3.8.12-1.1.hum1 aarch64, x8664 gnutls-devel-3.8.12-1.1.hum1 aarch64, x8664...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: libcap: captree-2.78-1.1.hum1 aarch64, x8664 libcap-2.78-1.1.hum1 aarch64, x8664 libcap-devel-2.78-1.1.hum1 aarch64, x8664 libcap-static-2.78-1.1.hum1 aarch64, x8664 libcap-2.78-1.1.hum1.src src...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: glib2: glib2-2.88.0-1.1.hum1 aarch64, x8664 glib2-devel-2.88.0-1.1.hum1 aarch64, x8664 glib2-doc-2.88.0-1.1.hum1 aarch64, x8664 glib2-static-2.88.0-1.1.hum1 aarch64, x8664...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: gnupg2: gnupg2-2.4.9-5.1.hum1 aarch64, x8664 gnupg2-dirmngr-2.4.9-5.1.hum1 aarch64, x8664 gnupg2-g13-2.4.9-5.1.hum1 aarch64, x8664 gnupg2-gpg-agent-2.4.9-5.1.hum1 aarch64, x8664...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python3.13: python3.13-3.13.13-1.hum1 aarch64, x8664 python3.13-debug-3.13.13-1.hum1 aarch64, x8664 python3.13-devel-3.13.13-1.hum1 aarch64, x8664 python3.13-freethreading-3.13.13-1.hum1 aarch64,...
Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: containers-common: containers-common-0.67.0-1.1.hum1 noarch containers-common-extra-0.67.0-1.1.hum1 noarch containers-common-0.67.0-1.1.hum1.src src...
Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: busybox: busybox-1.37.0-7.1.hum1 aarch64, x8664 busybox-petitboot-1.37.0-7.1.hum1 aarch64, x8664 busybox-shared-1.37.0-7.1.hum1 aarch64, x8664 busybox-1.37.0-7.1.hum1.src src...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: c-ares: c-ares-1.34.6-3.1.hum1 aarch64, x8664 c-ares-devel-1.34.6-3.1.hum1 aarch64, x8664 c-ares-1.34.6-3.1.hum1.src src...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: bind: bind-9.18.48-1.1.hum1 aarch64, x8664 bind-chroot-9.18.48-1.1.hum1 aarch64, x8664 bind-devel-9.18.48-1.1.hum1 aarch64, x8664 bind-dnssec-utils-9.18.48-1.1.hum1 aarch64, x8664...
Important: Red Hat Security Advisory: RHOAI 3.2 - Red Hat OpenShift AI
Updated images are now available for Red Hat OpenShift AI. Release of RHOAI 3.2 provides these changes:...
Important: Red Hat Security Advisory: RHOAI 3.3.1 - Red Hat OpenShift AI
Updated images are now available for Red Hat OpenShift AI. Release of RHOAI 3.3.1 provides these changes:...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: alsa-lib: alsa-lib-1.2.15.3-3.1.hum1 aarch64, x8664 alsa-lib-devel-1.2.15.3-3.1.hum1 aarch64, x8664 alsa-topology-1.2.15.3-3.1.hum1 noarch alsa-ucm-1.2.15.3-3.1.hum1 noarch...
Important: Red Hat Security Advisory: RHOAI 2.25.4 - Red Hat OpenShift AI
Updated images are now available for Red Hat OpenShift AI. Release of RHOAI 2.25.4 provides these changes:...
Important: Red Hat Security Advisory: RHOAI 2.16.4 - Red Hat OpenShift AI
Updated images are now available for Red Hat OpenShift AI. Release of RHOAI 2.16.4 provides these changes:...