114778 matches found
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python-pip: python-pip-wheel-26.1.1-3.1.hum1 noarch python3-pip-26.1.1-3.1.hum1 noarch python-pip-26.1.1-3.1.hum1.src src Security Fixes: python-pip: CVE-2026-8643...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (rocm)
Red Hat AI Base Images 3.0.2 rocm is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (cuda)
Red Hat AI Base Images 3.0.2 cuda is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (TPU)
Red Hat AI Base Images 3.3.2 TPU is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (CUDA 13.0)
Red Hat AI Base Images 3.3.2 CUDA 13.0 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (CPU)
Red Hat AI Base Images 3.3.2 CPU is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (tpu)
Red Hat AI Base Images 3.0.2 tpu is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (spyre)
Red Hat AI Base Images 3.0.2 spyre is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (cpu)
Red Hat AI Base Images 3.0.2 cpu is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (ROCm 7.0)
Red Hat AI Base Images 3.2.2 ROCm 7.0 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (Spyre)
Red Hat AI Base Images 3.2.2 Spyre is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (ROCm 6.4)
Red Hat AI Base Images 3.2.2 ROCm 6.4 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (TPU)
Red Hat AI Base Images 3.2.2 TPU is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (CUDA 12.9)
Red Hat AI Base Images 3.2.2 CUDA 12.9 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (ROCm 7.0)
Red Hat AI Base Images 3.3.2 ROCm 7.0 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (ROCm 6.4)
Red Hat AI Base Images 3.3.2 ROCm 6.4 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (CUDA 12.9)
Red Hat AI Base Images 3.3.2 CUDA 12.9 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (Spyre)
Red Hat AI Base Images 3.3.2 Spyre is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (Neuron)
Red Hat AI Base Images 3.3.2 Neuron is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (CPU)
Red Hat AI Base Images 3.2.2 CPU is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.36 bug fix and security update
Red Hat OpenShift Container Platform release 4.19.36 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a...
Important: Red Hat Security Advisory: General availability of the satellite/iop-insights-engine-rhel9 container image
A new satellite/iop-insights-engine-rhel9 container image is now generally available in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running services,...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.15.66 bug fix and security update
Red Hat OpenShift Container Platform release 4.15.66 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.15. Red Hat Product Security has rated this update as having a...
dnsmasq: Broken ECS source validation bypass
A validation bypass was discovered in dnsmasq's RFC 7871 client subnet ECS handling. When verifying ECS source information in DNS responses, dnsmasq passes the OPT record length instead of the full packet length to the validation function.This causes all internal bounds checks to fail, completely...
dnsmasq: DHCPv6 CLID buffer overflow in helper process
A heap buffer overflow was discovered in dnsmasq's DHCP script helper process. When processing DHCPv6 client identifiers CLIDs, the helper hex-encodes the raw CLID bytes into a fixed-size buffer without length validation. Since DHCPv6 CLIDs can be up to 65,535 bytes, a crafted DHCPv6 packet can...
dnsmasq: RRSIG rdlen underflow leading to heap OOB read
A heap out-of-bounds read vulnerability was discovered in dnsmasq's DNSSEC validation. When processing RRSIG records, dnsmasq calculates the signature length by subtracting the fixed field size from the record's declared data length. A crafted RRSIG record with a data length smaller than the fixe...
dnsmasq: NSEC bitmap parsing infinite loop
A denial of service vulnerability was discovered in dnsmasq's DNSSEC validation. When parsing NSEC and NSEC3 bitmap records, the window iteration logic fails to account for the 2-byte window header when advancing through the bitmap data. A specially crafted DNS response with a zero-length bitmap...
dnsmasq: dnsmasq: heap buffer overflow in cache via NAME_ESCAPE expansion
A heap buffer overflow was discovered in dnsmasq's DNS cache. When processing DNS responses, dnsmasq expands certain characters into longer escape sequences, but the cache buffer is not sized to hold the expanded result. A specially crafted DNS response can overflow this buffer, potentially...
Important: Red Hat Security Advisory: dnsmasq security update
An update for dnsmasq is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
Important: Red Hat Security Advisory: General availability of the satellite/iop-yuptoo-rhel9 container image
A new satellite/iop-yuptoo-rhel9 container image is now generally available in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running services, and...
Moderate: Red Hat Security Advisory: General availability of the satellite/iop-host-inventory-rhel9 container image
A new satellite/iop-host-inventory-rhel9 container image is now generally available in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running services,...
Important: Red Hat Security Advisory: General availability of the satellite/iop-advisor-frontend-rhel9 container image
A new satellite/iop-advisor-frontend-rhel9 container image is now generally available in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running services...
Important: Red Hat Security Advisory: General availability of the satellite/iop-puptoo-rhel9 container image
A new satellite/iop-puptoo-rhel9 container image is now generally available in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running services, and...
Important: Red Hat Security Advisory: General availability of the satellite/iop-host-inventory-frontend-rhel9 container image
A new satellite/iop-host-inventory-frontend-rhel9 container image is now generally available in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running...
Important: Red Hat Security Advisory: Technical preview of the satellite/iop-vmaas-rhel9 container image
A new satellite/iop-vmaas-rhel9 container image is now available as a technical preview in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running...
Important: Red Hat Security Advisory: Technical preview of the satellite/iop-vulnerability-frontend-rhel9 container image
A new satellite/iop-vulnerability-frontend-rhel9 container image is now available as a technical preview in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed package...
vim: arbitrary command execution via modeline sandbox bypass
A flaw was found in Vim. A modeline is used to set specific editor options directly from a text file. However, the complete, guitabtooltip, printheader options and the mapset function lack proper security checks, allowing an attacker to bypass restrictions and cause arbitrary OS command execution...
vim: Vim: Command injection allows arbitrary code execution via malicious tag files
A flaw was found in Vim, an open-source command-line text editor. This command injection vulnerability occurs during tag file processing. A local user could craft a malicious tags file containing backtick syntax in the filename field. When Vim resolves a tag from this file, it executes the embedd...
vim: zip.vim: Vim zip.vim plugin: Arbitrary file overwrite via path traversal bypass
A flaw was found in Vim's zip.vim plugin. A local user could be tricked into opening a specially crafted zip archive, which would allow a path traversal bypass. This vulnerability enables an attacker to overwrite arbitrary files on the system, potentially leading to data integrity issues or furth...
Important: Red Hat Security Advisory: vim security update
An update for vim is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System...
vim: command injection when decompressing .tgz archives
A flaw was found in Vim. When decompressing .tgz archives, the Vimuntar function builds shell commands using shellescape without the special flag. This allows a specially crafted archive filename to trigger Vim cmdline-special expansion and execute arbitrary commands in the context of the current...
kernel: tcp: fix potential race in tcp_v6_syn_recv_sock()
A flaw was found in the Linux kernel. A race condition exists in the TCP Transmission Control Protocol IPv6 Internet Protocol version 6 socket handling, specifically within the tcpv6synrecvsock function. This occurs because a child socket becomes visible in the TCP hash table before its...
Important: Red Hat Security Advisory: kernel security update
An update for kernel is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event()
A flaw was found in the Linux kernel's RDMA/mlx4 component. This vulnerability arises from the incorrect use of Read-Copy Update RCU in the mlx4srqevent function. An attacker could potentially trigger an event before the srq object is fully initialized, leading to a system crash. This could resul...
kernel: ALSA: aloop: Fix peer runtime UAF during format-change stop
A flaw was found in the Linux kernel's ALSA Advanced Linux Sound Architecture aloop driver. This Use-After-Free UAF vulnerability occurs when loopbackcheckformat stops the capture side during a format change, while a concurrent close operation detaches or frees the runtime. An attacker could...
kernel: netfilter: nft_inner: Fix IPv6 inner_thoff desync
A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nftinner module. This vulnerability arises from an incorrect handling of IPv6 inner packet processing, where the transport header offset innerthoff becomes desynchronized from the Layer 4 protocol l4proto. A remot...
vim: Vim: Command injection allows arbitrary code execution via malicious tag files
A flaw was found in Vim, an open-source command-line text editor. This command injection vulnerability occurs during tag file processing. A local user could craft a malicious tags file containing backtick syntax in the filename field. When Vim resolves a tag from this file, it executes the embedd...
vim: arbitrary command execution via modeline sandbox bypass
A flaw was found in Vim. A modeline is used to set specific editor options directly from a text file. However, the complete, guitabtooltip, printheader options and the mapset function lack proper security checks, allowing an attacker to bypass restrictions and cause arbitrary OS command execution...
Important: Red Hat Security Advisory: vim security update
An update for vim is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...
vim: command injection when decompressing .tgz archives
A flaw was found in Vim. When decompressing .tgz archives, the Vimuntar function builds shell commands using shellescape without the special flag. This allows a specially crafted archive filename to trigger Vim cmdline-special expansion and execute arbitrary commands in the context of the current...