114831 matches found
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: vim: vim-X11-9.2.780-1.hum1 aarch64, x8664 vim-common-9.2.780-1.hum1 aarch64, x8664 vim-data-9.2.780-1.hum1 noarch vim-default-editor-9.2.780-1.hum1 noarch vim-enhanced-9.2.780-1.hum1 aarch64,...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nodejs22: nodejs22-22.23.1-2.hum1 aarch64, x8664 nodejs22-bin-22.23.1-2.hum1 noarch nodejs22-devel-22.23.1-2.hum1 aarch64, x8664 nodejs22-docs-22.23.1-2.hum1 noarch...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: trivy: trivy-0.72.0-0.1.hum1 aarch64, x8664 trivy-0.72.0-0.1.hum1.src src Security Fixes: trivy: CVE-2026-46680 CVE-2026-47262 CVE-2026-53488...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.36 bug fix and security update
Red Hat OpenShift Container Platform release 4.19.36 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: pam: pam-1.7.2-2.2.hum1 aarch64, x8664 pam-devel-1.7.2-2.2.hum1 aarch64, x8664 pam-doc-1.7.2-2.2.hum1 noarch pam-libs-1.7.2-2.2.hum1 aarch64, x8664 pam-1.7.2-2.2.hum1.src src Security Fixes: pam:...
kernel: rxrpc: Fix potential UAF after skb_unshare() failure
A flaw was found in the Linux kernel's rxrpc subsystem. This vulnerability arises when the system attempts to unshare a packet buffer, and the operation fails due to an allocation issue. This failure can lead to a Use-After-Free UAF condition, where the system attempts to access memory that has...
kernel: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath
A flaw was found in the Linux kernel's CIFS Common Internet File System client. When the cifssanitizeprepath function processes specially crafted input, such as an empty string or a string containing only delimiters, it can attempt to read data beyond its allocated memory buffer. This out-of-boun...
kernel: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry
A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for ARM64, specifically within the vgic-its component. This vulnerability occurs when multiple concurrent operations incorrectly drop the translation cache's reference to an entry more than once during cache invalidation. Thi...
kernel: netfilter: nft_inner: Fix IPv6 inner_thoff desync
A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nftinner module. This vulnerability arises from an incorrect handling of IPv6 inner packet processing, where the transport header offset innerthoff becomes desynchronized from the Layer 4 protocol l4proto. A remot...
kernel: drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs()
A flaw was found in the Linux kernel's Direct Rendering Manager DRM Graphics Execution Manager GEM component. This vulnerability arises from an inconsistent calculation of plane dimensions, which can lead to incorrect memory allocation checks. A local attacker could exploit this by creating a...
kernel: Arm Processors: Privilege escalation or information disclosure via writes to higher exception level resources
A flaw was found in the Linux kernel on ARM processors. A race condition in Translation Lookaside Buffer Invalidation TLBI operations during memory permission changes allows a local attacker to write to memory resources owned by higher privilege levels. This could allow an unprivileged local...
Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update
An update for kernel is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: binutils: binutils-2.45.1-5.2.hum1 aarch64, x8664 binutils-devel-2.45.1-5.2.hum1 aarch64, x8664 binutils-gold-2.45.1-5.2.hum1 aarch64, x8664 binutils-gprofng-2.45.1-5.2.hum1 aarch64, x8664...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python-pip: python-pip-wheel-26.1.1-3.1.hum1 noarch python3-pip-26.1.1-3.1.hum1 noarch python-pip-26.1.1-3.1.hum1.src src Security Fixes: python-pip: CVE-2026-8643...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: libtiff: libtiff-4.7.1-2.4.hum1 aarch64, x8664 libtiff-devel-4.7.1-2.4.hum1 aarch64, x8664 libtiff-static-4.7.1-2.4.hum1 aarch64, x8664 libtiff-tools-4.7.1-2.4.hum1 aarch64, x8664...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: attr: attr-2.6.0-9.1.hum1 aarch64, x8664 libattr-2.6.0-9.1.hum1 aarch64, x8664 libattr-devel-2.6.0-9.1.hum1 aarch64, x8664 attr-2.6.0-9.1.hum1.src src Security Fixes: attr: CVE-2026-54371...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (rocm)
Red Hat AI Base Images 3.0.2 rocm is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (cuda)
Red Hat AI Base Images 3.0.2 cuda is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (TPU)
Red Hat AI Base Images 3.3.2 TPU is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (CUDA 13.0)
Red Hat AI Base Images 3.3.2 CUDA 13.0 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (CPU)
Red Hat AI Base Images 3.3.2 CPU is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (tpu)
Red Hat AI Base Images 3.0.2 tpu is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (spyre)
Red Hat AI Base Images 3.0.2 spyre is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (cpu)
Red Hat AI Base Images 3.0.2 cpu is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (ROCm 7.0)
Red Hat AI Base Images 3.2.2 ROCm 7.0 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (Spyre)
Red Hat AI Base Images 3.2.2 Spyre is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (ROCm 6.4)
Red Hat AI Base Images 3.2.2 ROCm 6.4 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (TPU)
Red Hat AI Base Images 3.2.2 TPU is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (CUDA 12.9)
Red Hat AI Base Images 3.2.2 CUDA 12.9 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (ROCm 7.0)
Red Hat AI Base Images 3.3.2 ROCm 7.0 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (ROCm 6.4)
Red Hat AI Base Images 3.3.2 ROCm 6.4 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (CUDA 12.9)
Red Hat AI Base Images 3.3.2 CUDA 12.9 is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (Spyre)
Red Hat AI Base Images 3.3.2 Spyre is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.3.2 (Neuron)
Red Hat AI Base Images 3.3.2 Neuron is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (CPU)
Red Hat AI Base Images 3.2.2 CPU is now available. Red Hat® AI Base Images...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.36 bug fix and security update
Red Hat OpenShift Container Platform release 4.19.36 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a...
io.quarkus/quarkus-vertx-http: Quarkus: Authorization bypass in HTTP path-based policies via encoded characters
A flaw was found in Quarkus. A remote attacker could bypass HTTP path-based authorization policies by using specially crafted encoded semicolons, slashes, or backslashes in HTTP requests. This could allow unauthorized access to protected static resources, leading to information disclosure...
netty-handler: Netty: Improper trust manager handling leads to hostname verification bypass
A flaw was found in Netty, a network application framework. This vulnerability allows a remote attacker to bypass hostname verification due to improper handling of user-supplied trust managers. When a client is configured with a plain X.509 Trust Manager X509TrustManager, it fails to perform...
netty-codec-haproxy: Netty HAProxy PROXY protocol v2 codec: Denial of Service via memory leak from crafted PROXY protocol headers
A flaw was found in the Netty HAProxy PROXY protocol v2 codec. A remote attacker can exploit this vulnerability by sending a specially crafted HAProxy PROXY protocol v2 header with nested PP2TYPESSL type-length-value TLV records. This can lead to a memory leak, causing the underlying cumulation...
netty-codec-http2: netty-codec-http2: Denial of Service due to resource leak
A flaw was found in netty-codec-http2. A remote attacker could send specially crafted frames that cause a resource leak within the DelegatingDecompressorFrameListener class. This resource leak could lead to an Out Of Memory Error OOME, potentially causing a Denial of Service DoS by taking down th...
io.netty/netty-resolver-dns: Netty has Insufficient Bailiwick Validation for NS Records
A flaw was found in Netty's DnsResolveContext. An attacker controlling an authoritative name server for a subdomain can exploit this vulnerability by providing crafted NS records that are insufficiently validated. This allows the attacker to poison the DNS cache for parent domains, bypassing...
netty-resolver-dns: Netty: Information disclosure and data manipulation due to improper CNAME record validation
A flaw was found in Netty's DnsResolveContext. This vulnerability allows a remote attacker to achieve information disclosure or data manipulation by crafting malicious DNS responses. The flaw occurs because the DnsResolveContext fails to validate the origin bailiwick of CNAME records in DNS...
netty-handler: Netty: Denial of Service due to eager buffer allocation in TLS handshake
A flaw was found in Netty, a network application framework. A remote attacker can exploit this vulnerability by sending a crafted TLS Transport Layer Security ClientHello message. This can lead to an eager allocation of a large memory buffer, causing a Denial of Service DoS due to excessive memor...
next.js: Next.js: Information disclosure via security fix bypass in middleware with Turbopack
A flaw was found in Next.js. A remote unauthenticated attacker could exploit a bypass in a security fix when using middleware.ts with Turbopack. This vulnerability could lead to the disclosure of sensitive information...
netty-codec-haproxy: Netty-codec-haproxy: Denial of Service via malformed HAProxy message
A flaw was found in netty-codec-haproxy, a component of the Netty network application framework. A remote attacker can exploit this vulnerability by sending a specially crafted HAProxy message with a malformed PP2TYPESSL TLV Type-Length-Value header. This can lead to an IndexOutOfBoundsException...
next.js: Next.js: Denial of Service via crafted POST requests to server actions
A flaw was found in Next.js. Applications utilizing Partial Prerendering via the Cache Components feature are susceptible to connection exhaustion. A remote attacker can send crafted POST requests to a server action, triggering a request-body handling deadlock. This leaves connections open,...
Next.js: Next.js: Server-Side Request Forgery via crafted WebSocket upgrade requests
A flaw was found in Next.js. Self-hosted applications utilizing the built-in Node.js server are vulnerable to Server-Side Request Forgery SSRF through specially crafted WebSocket upgrade requests. A remote attacker can exploit this by causing the server to proxy requests to arbitrary internal or...
Next.js: Next.js: Denial of Service via Image Optimization API
A flaw was found in Next.js. When self-hosting Next.js with the default image loader, the Image Optimization API fetches local images entirely into memory without enforcing a maximum size limit. A remote attacker could exploit this by requesting large local assets from the /next/image endpoint...
next.js: Next.js: Unauthorized access to protected content via middleware bypass
A flaw was found in Next.js. App Router applications that use middleware or proxy-based authorization checks are vulnerable to unauthorized access. A remote attacker can exploit this by crafting specific .rsc and segment-prefetch URLs, which bypass the intended middleware rules. This allows acces...
Next.js: Next.js: Authorization bypass via crafted query parameters
A flaw was found in Next.js. This vulnerability allows an attacker to bypass security checks in web applications that use Next.js middleware to protect specific web pages. By sending specially crafted web addresses, an attacker can access protected content without proper authorization. This could...