Lucene search
K
RedhatRecent

114833 matches found

RedHat Linux
RedHat Linux
•added 2026/06/10 10:0 a.m.•8 views

crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

A flaw was found in the Go standard library packages crypto/x509 and crypto/tls. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being...

7.5CVSS7.1AI score0.00615EPSS
Exploits0References8
RedHat Linux
RedHat Linux
•added 2026/06/10 10:0 a.m.•11 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.33 packages and security update

Red Hat OpenShift Container Platform release 4.19.33 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a...

7.5CVSS7.2AI score0.00615EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/06/10 9:58 a.m.•8 views

jdbc.postgresql.org: pgjdbc: Client-side Denial of Service via malicious SCRAM-SHA-256 authentication

A flaw was found in pgjdbc, an open-source PostgreSQL JDBC Driver. A malicious server can exploit this vulnerability by instructing the driver to perform SCRAM-SHA-256 Salted Challenge Response Authentication Mechanism Secure Hash Algorithm 256 authentication with an excessively large iteration...

7.5CVSS7.1AI score0.0077EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 9:58 a.m.•23 views

Important: Red Hat Security Advisory: postgresql-jdbc security update

An update for postgresql-jdbc is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

7.5CVSS7.2AI score0.0077EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/06/10 9:42 a.m.•18 views

Important: Red Hat Security Advisory: Red Hat Migration Toolkit for Containers

A new version of Migration Toolkit for Containers MTC is now available. The Migration Toolkit for Containers MTC enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the...

10CVSS6.9AI score0.02591EPSS
Exploits12References10
RedHat Linux
RedHat Linux
•added 2026/06/10 9:40 a.m.•20 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: httpd: httpd-2.4.68-1.hum1 aarch64, x8664 httpd-core-2.4.68-1.hum1 aarch64, x8664 httpd-devel-2.4.68-1.hum1 aarch64, x8664 httpd-filesystem-2.4.68-1.hum1 noarch httpd-manual-2.4.68-1.hum1 noarch...

9.8CVSS5.4AI score0.11471EPSS
Exploits7References15
RedHat Linux
RedHat Linux
•added 2026/06/10 9:34 a.m.•7 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: jaeger: jaeger-2.19.0-1.hum1 aarch64, x8664 jaeger-2.19.0-1.hum1.src src...

8.9CVSS5AI score0.00761EPSS
Exploits0References7
RedHat Linux
RedHat Linux
•added 2026/06/10 9:32 a.m.•12 views

firefox: thunderbird: Other issue in the WebRTC component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Other issue in the WebRTC component...

9.8CVSS5.4AI score0.00446EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 9:32 a.m.•14 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerabili...

9.8CVSS5.5AI score0.00446EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/10 9:32 a.m.•14 views

firefox: Memory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefox 150.0.2

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10.1 and Firefox 150.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some ...

8.1CVSS5.7AI score0.00384EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 9:32 a.m.•22 views

firefox: thunderbird: Use-after-free in the DOM: Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the DOM: Networking component...

7.5CVSS5.4AI score0.00317EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 9:19 a.m.•11 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.33 bug fix and security update

Red Hat OpenShift Container Platform release 4.19.33 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a...

8.8CVSS5.9AI score0.03663EPSS
Exploits21References6
RedHat Linux
RedHat Linux
•added 2026/06/10 9:7 a.m.•17 views

firefox: thunderbird: Memory safety bugs fixed in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort som...

8.8CVSS6.1AI score0.00316EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 9:7 a.m.•12 views

firefox: thunderbird: webrtc: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component...

9.6CVSS5.4AI score0.00258EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 9:7 a.m.•13 views

firefox: thunderbird: Information disclosure due to incorrect boundary conditions in the Audio/Video component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Information disclosure due to incorrect boundary conditions in the Audio/Video component...

7.5CVSS5.4AI score0.00323EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 9:7 a.m.•17 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

9.6CVSS5.8AI score0.00375EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/10 9:7 a.m.•11 views

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort som...

7.5CVSS6.1AI score0.00375EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 8:58 a.m.•9 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.33 bug fix and security update

Red Hat OpenShift Container Platform release 4.19.33 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a...

9.8CVSS6.7AI score0.01557EPSS
Exploits3References6
RedHat Linux
RedHat Linux
•added 2026/06/10 8:5 a.m.•11 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.33 security and extras update

Red Hat OpenShift Container Platform release 4.19.33 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a security impact of...

9.1CVSS6.5AI score0.01557EPSS
Exploits1References2
RedHat Linux
RedHat Linux
•added 2026/06/10 7:50 a.m.•12 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

7.8CVSS5.9AI score0.00553EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/10 7:50 a.m.•13 views

Important: Red Hat Security Advisory: compat-libtiff3 security update

An update for compat-libtiff3 is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS6AI score0.00553EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/06/10 7:9 a.m.•16 views

qt: Qt SVG: Arbitrary QML/JavaScript code injection via malicious SVG file

A flaw was found in the Qt SVG module and the VectorImage component in Qt Quick. This vulnerability allows a remote attacker to inject arbitrary QML/JavaScript code by tricking a user into loading a specially crafted malicious SVG file. Successful exploitation could lead to denial of service,...

9.3CVSS5.7AI score0.00224EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/10 7:9 a.m.•15 views

Important: Red Hat Security Advisory: qt6-qtdeclarative security update

An update for qt6-qtdeclarative is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.3CVSS5.6AI score0.00224EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/06/10 6:33 a.m.•13 views

Important: Red Hat Security Advisory: poppler security update

An update for poppler is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.8CVSS5.7AI score0.00252EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/06/10 6:33 a.m.•22 views

poppler: Integer overflow in Poppler SplashOutputDev::tilingPatternFill leads to heap buffer overflow via unchecked dimension multiplication

A flaw was found in Poppler's Splash backend. A remote attacker could exploit this vulnerability by crafting a malicious PDF file that, when rendered, triggers an integer overflow in the tilingPatternFill function. This overflow leads to an undersized heap memory allocation, allowing a subsequent...

7.8CVSS5.7AI score0.00252EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/10 6:30 a.m.•7 views

poppler: Integer overflow in Poppler SplashOutputDev::tilingPatternFill leads to heap buffer overflow via unchecked dimension multiplication

A flaw was found in Poppler's Splash backend. A remote attacker could exploit this vulnerability by crafting a malicious PDF file that, when rendered, triggers an integer overflow in the tilingPatternFill function. This overflow leads to an undersized heap memory allocation, allowing a subsequent...

7.8CVSS5.7AI score0.00252EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/10 6:30 a.m.•11 views

Important: Red Hat Security Advisory: poppler security update

An update for poppler is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS5.7AI score0.00252EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/06/10 6:9 a.m.•13 views

firefox: Memory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefox 150.0.2

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10.1 and Firefox 150.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some ...

8.1CVSS5.7AI score0.00384EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 6:9 a.m.•16 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

9.8CVSS5.5AI score0.00446EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/06/10 6:9 a.m.•10 views

firefox: thunderbird: Other issue in the WebRTC component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Other issue in the WebRTC component...

9.8CVSS5.4AI score0.00446EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 6:9 a.m.•14 views

firefox: thunderbird: Use-after-free in the DOM: Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the DOM: Networking component...

7.5CVSS5.4AI score0.00317EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/10 4:27 a.m.•11 views

Important: Red Hat Security Advisory: RHOAI 2.25.7 - Red Hat OpenShift AI

Updated images are now available for Red Hat OpenShift AI. Release of RHOAI 2.25.7 provides these changes:...

10CVSS7AI score0.01945EPSS
Exploits19References39
RedHat Linux
RedHat Linux
•added 2026/06/09 5:9 p.m.•12 views

Critical: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Container Release Update

An update is now available for Red Hat Ansible Automation Platform 2.6 Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams,...

9.9CVSS6.4AI score0.06496EPSS
Exploits11References16
RedHat Linux
RedHat Linux
•added 2026/06/09 3:36 p.m.•10 views

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS8AI score0.01545EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/06/09 3:36 p.m.•12 views

bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone

A flaw was found in BIND. A remote attacker could exploit this vulnerability by sending a maliciously crafted DNSSEC-validated zone to a BIND resolver. This could cause the resolver to consume excessive CPU resources, leading to a denial of service DoS for legitimate users...

7.5CVSS7.9AI score0.01545EPSS
Exploits0References8
RedHat Linux
RedHat Linux
•added 2026/06/09 3:31 p.m.•11 views

Important: Red Hat Security Advisory: Red Hat Quay 3.15.5

Red Hat Quay 3.15.5 is now available with bug fixes. Quay 3.15.5...

10CVSS6.7AI score0.01557EPSS
Exploits9References24
RedHat Linux
RedHat Linux
•added 2026/06/09 3:16 p.m.•11 views

firefox: thunderbird: webrtc: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component...

9.6CVSS5.4AI score0.00258EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/09 3:16 p.m.•7 views

firefox: thunderbird: Memory safety bugs fixed in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort som...

8.8CVSS6.1AI score0.00316EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/09 3:16 p.m.•7 views

firefox: thunderbird: Information disclosure due to incorrect boundary conditions in the Audio/Video component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Information disclosure due to incorrect boundary conditions in the Audio/Video component...

7.5CVSS5.4AI score0.00323EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/09 3:16 p.m.•10 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.6CVSS5.8AI score0.00375EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/09 3:16 p.m.•8 views

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort som...

7.5CVSS6.1AI score0.00375EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/09 3:12 p.m.•7 views

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort som...

7.5CVSS6.1AI score0.00375EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/09 3:12 p.m.•7 views

firefox: thunderbird: Memory safety bugs fixed in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort som...

8.8CVSS6.1AI score0.00316EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/09 3:12 p.m.•7 views

firefox: thunderbird: webrtc: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component...

9.6CVSS5.4AI score0.00258EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/09 3:12 p.m.•6 views

firefox: thunderbird: Information disclosure due to incorrect boundary conditions in the Audio/Video component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Information disclosure due to incorrect boundary conditions in the Audio/Video component...

7.5CVSS5.4AI score0.00323EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/09 3:12 p.m.•10 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.6CVSS5.8AI score0.00375EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/06/09 2:38 p.m.•15 views

Moderate: Red Hat Security Advisory: Red Hat Developer Hub 1.10.0 release.

Red Hat Developer Hub 1.10.0 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single...

8.2CVSS6.3AI score0.00612EPSS
Exploits2References18
RedHat Linux
RedHat Linux
•added 2026/06/09 1:57 p.m.•10 views

Important: Red Hat Security Advisory: Red Hat Quay 3.17.3

Red Hat Quay 3.17.3 is now available with bug fixes. Quay 3.17.3...

8.8CVSS5.4AI score0.00413EPSS
Exploits0References3
RedHat Linux
RedHat Linux
•added 2026/06/09 1:49 p.m.•3 views

kernel: net: skbuff: propagate shared-frag marker through frag-transfer helpers

A flaw was found in the Linux kernel's networking skbuff component. When skbtrycoalesce attaches paged fragments, it can lose the SKBFLSHAREDFRAG marker. This can lead to the Encapsulating Security Payload ESP input decrypting data in place over page-cache backed fragments, potentially resulting ...

8.8CVSS6.4AI score0.00135EPSS
Exploits7References6
RedHat Linux
RedHat Linux
•added 2026/06/09 1:49 p.m.•27 views

kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's XFRM ESP-in-TCP subsystem. Unsafe in-place cryptographic processing allows a low-privileged local attacker to write arbitrary bytes into the page cache of read-only files, including sensitive system files. An attacker can exploit this to overwrite privileged...

7.8CVSS5.9AI score0.03663EPSS
Exploits11References5
Total number of security vulnerabilities114833