Lucene search
K
RedhatRecent

114833 matches found

RedHat Linux
RedHat Linux
•added 2026/06/16 6:39 p.m.•11 views

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS5.5AI score0.004EPSS
Exploits0References9
RedHat Linux
RedHat Linux
•added 2026/06/16 6:39 p.m.•5 views

kernel: wifi: mac80211: drop stray 'static' from fast-RX rx_result

A flaw was found in the Linux kernel's Wi-Fi mac80211 subsystem. The ieee80211invokefastrx function uses a static variable for rxresult, which is shared across concurrent calls. This can lead to incorrect processing of Wi-Fi packets, where a packet might be mishandled or its status incorrectly...

8.8CVSS5.4AI score0.00161EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 6:39 p.m.•8 views

kernel: netfilter: flowtable: strictly check for maximum number of actions

A flaw was found in the Netfilter flowtable component of the Linux kernel. This vulnerability occurs because the system does not strictly check the maximum number of hardware offload actions for IPv6, allowing it to process more actions than supported. This could potentially lead to system...

7.8CVSS5.4AI score0.00141EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 6:39 p.m.•7 views

kernel: xen/privcmd: fix double free via VMA splitting

A flaw was found in the Linux kernel's xen/privcmd module. A local user could exploit this by performing a partial unmapping of a privcmd memory region. This action causes a Virtual Memory Area VMA to split, leading to duplicated internal memory pointers. As a result, the same memory can be freed...

7.8CVSS5.5AI score0.00183EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 6:39 p.m.•6 views

kernel: Buffer overflow in drivers/xen/sys-hypervisor.c

A flaw was found in the Linux kernel. A buffer overflow vulnerability exists in the Xen hypervisor driver drivers/xen/sys-hypervisor.c. This flaw occurs because the HYPERVISORxenversionXENVERbuildid function returns a build ID that is not properly null-terminated. When the buildidshow function...

7.8CVSS5.7AI score0.00197EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 6:39 p.m.•7 views

kernel: mptcp: fix slab-use-after-free in __inet_lookup_established

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. Due to incorrect memory allocation for IPv6 subflow child sockets, a use-after-free vulnerability exists. A remote attacker could exploit this by triggering concurrent lookups in the kernel's hash table, potentially leadin...

9.8CVSS5.9AI score0.004EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 6:39 p.m.•6 views

kernel: Bluetooth: hci_event: fix potential UAF in SSP passkey handlers

A flaw was found in the Linux kernel's Bluetooth subsystem. This vulnerability, a Use-After-Free UAF, exists within the Secure Simple Pairing SSP passkey handlers. It occurs when hciconn lookup and field access are performed without proper locking, allowing a connection to be freed concurrently...

8.8CVSS5.8AI score0.00262EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 6:39 p.m.•6 views

kernel: wifi: brcmfmac: validate bsscfg indices in IF events

A flaw was found in the Linux kernel's brcmfmac Wi-Fi driver. This vulnerability occurs because the driver fails to properly validate bsscfg indices in interface IF events. An attacker could exploit this by sending a specially crafted IF event with an invalid bsscfg index, which could lead to an...

8.8CVSS5.5AI score0.00244EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 5:38 p.m.•9 views

Important: Red Hat Security Advisory: rsync security update

An update for rsync is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.1CVSS5.5AI score0.0078EPSS
Exploits0References3
RedHat Linux
RedHat Linux
•added 2026/06/16 5:38 p.m.•13 views

rsync: TOCTOU symlink race condition allowing local privilege escalation in daemon mode without chroot.

A flaw was found in rsync. An rsync daemon configured with "use chroot = no" is exposed to a time-of-check / time-of-use race on parent path components. A local attacker with write access to a module can replace a parent directory component with a symlink between the receiver's check and its open...

7.8CVSS5.3AI score0.00152EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/16 5:38 p.m.•7 views

rsync: rsync: Remote memory disclosure via integer overflow in compressed-token decoding

A flaw was found in rsync. An authenticated daemon peer can exploit an integer overflow vulnerability in the compressed-token decoder. By carefully manipulating the compressed-token, a malicious sender can trigger an overflow, leading to remote memory disclosure. This allows an attacker to leak...

8.1CVSS5.4AI score0.0078EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/16 5:37 p.m.•23 views

Important: Red Hat Security Advisory: rsync security update

An update for rsync is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.1CVSS5.5AI score0.0078EPSS
Exploits0References3
RedHat Linux
RedHat Linux
•added 2026/06/16 5:37 p.m.•7 views

rsync: rsync: Remote memory disclosure via integer overflow in compressed-token decoding

A flaw was found in rsync. An authenticated daemon peer can exploit an integer overflow vulnerability in the compressed-token decoder. By carefully manipulating the compressed-token, a malicious sender can trigger an overflow, leading to remote memory disclosure. This allows an attacker to leak...

8.1CVSS5.4AI score0.0078EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/16 5:37 p.m.•4 views

rsync: TOCTOU symlink race condition allowing local privilege escalation in daemon mode without chroot.

A flaw was found in rsync. An rsync daemon configured with "use chroot = no" is exposed to a time-of-check / time-of-use race on parent path components. A local attacker with write access to a module can replace a parent directory component with a symlink between the receiver's check and its open...

7.8CVSS5.3AI score0.00152EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/16 5:21 p.m.•14 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.24 security, enhancement & bug fix update

Red Hat OpenShift Data Foundation 4.18.24 security, enhancement & bug fix update Red Hat OpenShift Data Foundation 4.18.24 security, enhancement & bug fix update FIXED BUGS: ========== DFBUGS-7107: Backport to 4.18.z CLONE - ODF Console is breaking DFBUGS-7064: RHODF 4.18.24 release DFBUGS-7046:...

9.1CVSS6.6AI score0.01945EPSS
Exploits4References9
RedHat Linux
RedHat Linux
•added 2026/06/16 5:9 p.m.•8 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.30 security, enhancement & bug fix update

Red Hat OpenShift Data Foundation 4.16.30 security, enhancement & bug fix update Red Hat OpenShift Data Foundation 4.16.30 security, enhancement & bug fix update FIXED BUGS: ========== DFBUGS-7345: RHODF 4.16.30 release DFBUGS-7105: Backport to 4.16.z CLONE - ODF Console is breaking DFBUGS-6743:...

9.1CVSS6.5AI score0.01557EPSS
Exploits1References4
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•4 views

gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier URI or Service SRV Subject Alternative Names SANs. This could cause the certificate validation process to incorrectly fall back to...

7.1CVSS5.3AI score0.00354EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•5 views

gnutls: gnutls: Security bypass due to incorrect name constraint handling

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities CAs only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate...

7.4CVSS5.4AI score0.00475EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•4 views

gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability

A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security DTLS packet reordering logic. The comparator function, responsible for ordering DTLS packets by sequence numbers, did not correctly handle packets with duplicate sequence numbers. This...

7.5CVSS5.3AI score0.01335EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•6 views

gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison

A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of nameConstraints labels, specifically for dNSName DNS or rfc822Name email constraints within excludedSubtrees or permittedSubtrees. A remote attacker can exploit this by crafting a leaf...

7.4CVSS5.2AI score0.00566EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•11 views

gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol OCSP response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabl...

3.7CVSS5.4AI score0.0072EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•4 views

gnutls: gnutls: Authentication Bypass via NUL Character in Username

A flaw was found in gnutls. Servers configured with RSA-PSK Rivest–Shamir–Adleman – Pre-Shared Key wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass...

9.8CVSS5.4AI score0.0105EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•12 views

gnutls: gnutls: Information disclosure via heap overread in RSA key exchange

A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA key exchange to a server using an RSA key backed by a PKCS11 token, could trigger a short heap overread. This memory corruption vulnerability could lead to information disclosure...

8.2CVSS5.5AI score0.00727EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•5 views

gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS5.3AI score0.00423EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•5 views

gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of service...

9.1CVSS5.2AI score0.00805EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•3 views

gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling

A flaw was found in gnutls. An off-by-one error exists in the PKCS12 bag element bounds check. This vulnerability allows an remote attacker to write past the internal array of a PKCS12 bag when appending to a bag that already contains 32 elements. This memory corruption could lead to a denial of...

5.3CVSS5.5AI score0.00727EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•18 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS5.8AI score0.01263EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•8 views

Important: Red Hat Security Advisory: gnutls security update

An update for gnutls is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS5.9AI score0.01335EPSS
Exploits2References14
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•4 views

gnutls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal

A flaw was found in gnutls. The PKCS7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerability is a form of...

3.7CVSS5.9AI score0.00379EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:53 p.m.•23 views

gnutls: gnutls: Use-after-free in gnutls_pkcs11_token_set_pin

A flaw was found in GnuTLS. The gnutlspkcs11tokensetpin function, used for changing the Security Officer PIN, can lead to a use-after-free vulnerability. This occurs when an attacker attempts to change the PIN with a NULL old PIN for a token that lacks a protected authentication path...

6.6CVSS5.8AI score0.0015EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/16 4:45 p.m.•10 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.19.19 security, enhancement & bug fix update

Red Hat OpenShift Data Foundation 4.19.19 security, enhancement & bug fix update Red Hat OpenShift Data Foundation 4.19.19 security, enhancement & bug fix update FIXED BUGS: ========== DFBUGS-7063: RHODF 4.19.19 release DFBUGS-7062: Backport to 4.19.z ODF Console is breaking DFBUGS-7047: Backport...

9.1CVSS6.6AI score0.01557EPSS
Exploits2References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:41 p.m.•6 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.20.14 security, enhancement & bug fix update

Red Hat OpenShift Data Foundation 4.20.14 security, enhancement & bug fix update Red Hat OpenShift Data Foundation 4.20.14 security, enhancement & bug fix update FIXED BUGS: ========== DFBUGS-7104: Backport to 4.20.z CLONE - ODF Console is breaking DFBUGS-7079: NooBaa upgrade failure due to...

9.1CVSS6.4AI score0.01557EPSS
Exploits1References3
RedHat Linux
RedHat Linux
•added 2026/06/16 4:32 p.m.•16 views

Important: Red Hat Security Advisory: New container image: rhceph-9.0

A new version of Red Hat build of Ceph Storage has been released The Red Hat Storage Ceph container images are based on the latest ubi9 base image and Ceph 9.0. This release updates to the latest version...

8.7CVSS6.9AI score0.03026EPSS
Exploits2References9
RedHat Linux
RedHat Linux
•added 2026/06/16 4:8 p.m.•5 views

libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c

A flaw was found in the xmllint program distributed by the libxml2 package. A buffer over-read in the xmlHTMLPrintFileContext function in the xmllint.c file may be triggered when a crafted file is processed with the xmllint program using the --htmlout command line option, causing an application...

7.5CVSS6.4AI score0.02298EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/06/16 4:8 p.m.•6 views

Low: Red Hat Security Advisory: libxml2 security update

An update for libxml2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.5CVSS6.7AI score0.02298EPSS
Exploits1References2
RedHat Linux
RedHat Linux
•added 2026/06/16 4:8 p.m.•11 views

libxslt: use-after-free with key data stored cross-RVT

A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash...

5.5CVSS5.2AI score0.00161EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/16 4:8 p.m.•13 views

Moderate: Red Hat Security Advisory: libxslt security update

An update for libxslt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.5CVSS5.4AI score0.00161EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/06/16 4:5 p.m.•9 views

openCryptoki: openCryptoki: Information disclosure and Denial of Service via malformed BER-encoded cryptographic objects

A flaw was found in openCryptoki, a PKCS11 Cryptographic Token Interface Standard library. The BER/DER Basic Encoding Rules/Distinguished Encoding Rules decoding functions in the shared common library do not properly validate attacker-controlled length fields against actual buffer boundaries. Thi...

6.8CVSS5.5AI score0.0016EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/06/16 4:5 p.m.•11 views

Moderate: Red Hat Security Advisory: opencryptoki security update

An update for opencryptoki is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

6.8CVSS5.5AI score0.0016EPSS
Exploits1References2
RedHat Linux
RedHat Linux
•added 2026/06/16 3:55 p.m.•11 views

Moderate: Red Hat Security Advisory: ncurses security update

An update for ncurses is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS5.9AI score0.00414EPSS
Exploits1References2
RedHat Linux
RedHat Linux
•added 2026/06/16 3:55 p.m.•7 views

ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

A flaw was found in ncurses. This vulnerability, a buffer overflow, exists within the analyzestring function. An attacker could potentially exploit this to execute unauthorized code on the affected system, which might lead to a denial of service in the affected application, the corruption of data...

9.8CVSS5.9AI score0.00414EPSS
Exploits1References8
RedHat Linux
RedHat Linux
•added 2026/06/16 3:55 p.m.•19 views

Moderate: Red Hat Security Advisory: libpng15 security update

An update for libpng15 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS6.6AI score0.01052EPSS
Exploits1References2
RedHat Linux
RedHat Linux
•added 2026/06/16 3:55 p.m.•11 views

libpng: libpng: Arbitrary code execution due to use-after-free vulnerability

A flaw was found in libpng, a library used for processing PNG Portable Network Graphics image files. This vulnerability arises from improper memory management where a heap-allocated buffer is aliased between internal data structures. When specific functions are called, a freed memory region can...

7.5CVSS6.7AI score0.01052EPSS
Exploits1References10
RedHat Linux
RedHat Linux
•added 2026/06/16 3:54 p.m.•6 views

Moderate: Red Hat Security Advisory: libpng12 security update

An update for libpng12 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS6.4AI score0.01052EPSS
Exploits1References2
RedHat Linux
RedHat Linux
•added 2026/06/16 3:54 p.m.•5 views

libpng: libpng: Arbitrary code execution due to use-after-free vulnerability

A flaw was found in libpng, a library used for processing PNG Portable Network Graphics image files. This vulnerability arises from improper memory management where a heap-allocated buffer is aliased between internal data structures. When specific functions are called, a freed memory region can...

7.5CVSS6.5AI score0.01052EPSS
Exploits1References10
RedHat Linux
RedHat Linux
•added 2026/06/16 2:45 p.m.•12 views

Important: Red Hat Security Advisory: rsync security, bug fix, and enhancement update

An update for rsync is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.1CVSS5.5AI score0.0078EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/16 2:45 p.m.•6 views

rsync: TOCTOU symlink race condition allowing local privilege escalation in daemon mode without chroot.

A flaw was found in rsync. An rsync daemon configured with "use chroot = no" is exposed to a time-of-check / time-of-use race on parent path components. A local attacker with write access to a module can replace a parent directory component with a symlink between the receiver's check and its open...

7.8CVSS5.3AI score0.00152EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/16 2:45 p.m.•9 views

rsync: rsync: Remote memory disclosure via integer overflow in compressed-token decoding

A flaw was found in rsync. An authenticated daemon peer can exploit an integer overflow vulnerability in the compressed-token decoder. By carefully manipulating the compressed-token, a malicious sender can trigger an overflow, leading to remote memory disclosure. This allows an attacker to leak...

8.1CVSS5.4AI score0.0078EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/16 2:42 p.m.•9 views

HPLIP: HPLIP: Privilege escalation and arbitrary code execution via operating system command injection

A flaw was found in the HP Linux Imaging and Printing Software HPLIP. This vulnerability may allow a local attacker to achieve escalation of privileges and/or arbitrary code execution through operating system command injection. This could lead to an attacker gaining unauthorized control over the...

8.5CVSS6.1AI score0.0088EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/16 2:42 p.m.•9 views

Important: Red Hat Security Advisory: hplip security update

An update for hplip is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS6.2AI score0.01333EPSS
Exploits0References3
Total number of security vulnerabilities114833