Lucene search
K
RedhatRecent

116791 matches found

RedHat Linux
RedHat Linux
•added 32 minutes ago•2 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.8CVSS6.1AI score0.00132EPSS
Exploits0References3
RedHat Linux
RedHat Linux
•added 32 minutes ago•2 views

kernel: crypto: ccp - copy IV using skcipher ivsize

A flaw was found in the Linux kernel's cryptographic coprocessor CCP driver. When processing AFALG rfc3686-ctr-aes-ccp requests, the ccpaescomplete function attempts to restore more data than the allocated buffer for the Initialization Vector IV can hold. This leads to a buffer overrun, which can...

7.8CVSS6.1AI score0.00132EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 1 hour ago•2 views

libsolv: Heap buffer overflow in libsolv repopagestore via unchecked decompression of malicious .solv page data

A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled compressed data within .solv files due to insufficient input validation. An attacker can provide a specially crafted .solv file, which, when processed by a vulnerable application, can lea...

7.8CVSS6.2AI score0.00205EPSS
Exploits1References4
RedHat Linux
RedHat Linux
•added 1 hour ago•2 views

Moderate: Red Hat Security Advisory: libsolv security update

An update for libsolv is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.2AI score0.00205EPSS
Exploits1References2
RedHat Linux
RedHat Linux
•added 1 hour ago•2 views

cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

A flaw was found in OpenPrinting CUPS. An unauthorized client can exploit this vulnerability by sending a specially crafted print job to a shared PostScript queue without authentication. The server improperly handles the page-border value, allowing an attacker to embed and reparse malicious text ...

7.5CVSS7AI score0.00502EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 1 hour ago•2 views

Moderate: Red Hat Security Advisory: cups security update

An update for cups is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

7.5CVSS7AI score0.00502EPSS
Exploits1References2
RedHat Linux
RedHat Linux
•added 1 hour ago•2 views

Low: Red Hat Security Advisory: libxml2 security update

An update for libxml2 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

2.5CVSS6.3AI score0.0019EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 1 hour ago•3 views

libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling

A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an overly long command, the program does not check the input size properly, which can cause it to crash. This issue might allow attackers to run harmful code in rare...

2.5CVSS6.3AI score0.0019EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 1 hour ago•3 views

libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling

A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an overly long command, the program does not check the input size properly, which can cause it to crash. This issue might allow attackers to run harmful code in rare...

2.5CVSS6.3AI score0.0019EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 1 hour ago•2 views

Low: Red Hat Security Advisory: libxml2 security update

An update for libxml2 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

2.5CVSS6.3AI score0.0019EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 1 hour ago•3 views

Low: Red Hat Security Advisory: capstone security update

An update for capstone is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

9.8CVSS6.7AI score0.00163EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 1 hour ago•2 views

capstone: Capstone: Memory corruption via unchecked vsnprintf return

A flaw was found in Capstone, a disassembly framework. An unchecked return value from vsnprintf within the SStreamconcat function allows a malicious input to manipulate the internal stream index. This can lead to a stack buffer underflow or overflow, potentially enabling a local attacker to achie...

9.8CVSS6.7AI score0.00163EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2 hours ago•2 views

Moderate: Red Hat Security Advisory: libinput security update

An update for libinput is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS6.1AI score0.00498EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2 hours ago•3 views

libinput: local privilege escalation via crafted uinput devices

A flaw was found in libinput. A local attacker with access to /dev/uinput can inject arbitrary udev properties through the libinput-device-group helper. This injection can lead to root code execution, for example, by exploiting REMOVECMD properties that are executed when a device is removed. This...

9.8CVSS6.2AI score0.00498EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

5.3CVSS6AI score0.00261EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

9.6CVSS6.1AI score0.00476EPSS
Exploits0References30
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.12, Thunderbird ESR 140.12, Firefox 152 and Thunderbird 152

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory corruption and we presume...

8.1CVSS6.1AI score0.00407EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Incorrect boundary conditions in the Graphics: CanvasWebGL component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the Graphics: CanvasWebGL component...

7.3CVSS6AI score0.00209EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•2 views

firefox: thunderbird: Mitigation bypass in the DOM: Security component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Mitigation bypass in the DOM: Security component...

6.5CVSS6AI score0.00248EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

5.3CVSS6AI score0.00261EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•2 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

5.3CVSS6AI score0.00261EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

7.5CVSS6AI score0.00374EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•6 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

7.5CVSS6AI score0.00252EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•2 views

firefox: thunderbird: Same-origin policy bypass in the Networking: Cookies component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Same-origin policy bypass in the Networking: Cookies component...

9.1CVSS6AI score0.00189EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Sandbox escape in the Security: Process Sandboxing component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape in the Security: Process Sandboxing component...

9.6CVSS6AI score0.00393EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•2 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Networking component...

9.6CVSS6AI score0.00393EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Memory safety bug fixed in Firefox ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Firefox ESR 140.12...

7.5CVSS6AI score0.00306EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: JIT miscompilation in the DOM: Core & HTML component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: JIT miscompilation in the DOM: Core & HTML component...

7.5CVSS6AI score0.00306EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

7.5CVSS6AI score0.00326EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.37, Firefox ESR 140.12, Thunderbird ESR 140.12, Firefox 152 and Thunderbird 152

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory...

8.1CVSS6.1AI score0.00476EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

6.5CVSS6AI score0.00235EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•2 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

7.5CVSS6AI score0.00252EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Sandbox escape in the DOM: Workers component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape in the DOM: Workers component...

9.6CVSS6AI score0.00363EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Use-after-free in the Networking: HTTP component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the Networking: HTTP component...

8.8CVSS6AI score0.00382EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Sandbox escape in the DOM: Navigation component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape in the DOM: Navigation component...

9.6CVSS6AI score0.00393EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Incorrect boundary conditions in the Web Audio component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the Web Audio component...

8.1CVSS6AI score0.00398EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Privilege escalation in the Graphics: WebRender component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Privilege escalation in the Graphics: WebRender component...

8.8CVSS6AI score0.00395EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

8.1CVSS6AI score0.00397EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Incorrect boundary conditions in the Internationalization component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the Internationalization component...

5.4CVSS6AI score0.00164EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•2 views

firefox: thunderbird: Denial-of-service in the Graphics: ImageLib component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Denial-of-service in the Graphics: ImageLib component...

6.5CVSS6AI score0.00227EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•2 views

firefox: thunderbird: Mitigation bypass in the DOM: Security component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Mitigation bypass in the DOM: Security component...

9.1CVSS6AI score0.00251EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Information disclosure, sandbox escape in the Security: Process Sandboxing component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Information disclosure, sandbox escape in the Security: Process Sandboxing component...

4.7CVSS6AI score0.00185EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

firefox: thunderbird: Information disclosure, sandbox escape in the Security: Process Sandboxing component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Information disclosure, sandbox escape in the Security: Process Sandboxing component...

4.7CVSS6AI score0.00175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•2 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

7.5CVSS6AI score0.00252EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 3 hours ago•2 views

pacemaker: Pacemaker: Denial of Service via integer overflow in remote message decompression

A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerability in the remote message decompression process. By sending a specially crafted compressed remote message before authentication, an attacker can cause memory corruption, leading to a denial...

8.6CVSS6.1AI score0.0044EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 3 hours ago•3 views

Important: Red Hat Security Advisory: pacemaker security update

An update for pacemaker is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.6CVSS6.2AI score0.0044EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 5 hours ago•2 views

kernel: netfilter: nf_conntrack_helper: pass helper to expect cleanup

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nfconntrackhelper. When a connection tracking helper is unregistered, its associated expectations are not properly cleaned up. This oversight can lead to a use-after-free vulnerability, where the system attempts t...

7.8CVSS6.2AI score0.00126EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 5 hours ago•3 views

kernel: ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr

In the Linux kernel, the following vulnerability has been resolved: ima: don't clear IMADIGSIG flag when setting or removing non-IMA xattr Currently when both IMA and EVM are in fix mode, the IMA signature will be reset to IMA hash if a program first stores IMA signature in security.ima and then...

6AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 5 hours ago•2 views

kernel: crypto: caam - fix overflow on long hmac keys

A flaw was found in the Linux kernel's caam cryptographic accelerator driver. When processing a Hash-based Message Authentication Code HMAC key that exceeds the block size, the driver incorrectly handles memory allocation and copying. This can lead to an overflow, where the system attempts to rea...

7.8CVSS6.3AI score0.00129EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 5 hours ago•3 views

kernel: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold

A flaw was found in the Linux kernel's Bluetooth SCO Synchronous Connection-Oriented protocol implementation. The scorecvframe function fails to properly hold a reference to a socket after releasing a lock. This oversight allows a concurrent operation to free the socket while it is still being...

8.8CVSS6.3AI score0.003EPSS
Exploits0References5
Total number of security vulnerabilities116791