Lucene search
+L
RosalinuxMost viewed

1374 matches found

rosalinux
rosalinux
•added 2025/09/11 9:48 a.m.•8 views

Advisory ROSA-SA-2025-2987

software: rlottie 0.2 WASP: ROSA-CHROME unaffected versions = rlottie-0.2-4 affected versions rlottie-0.2-4 CVE-ID: CVE-2025-53074 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: Samsung Open Source rLottie - out-of-bounds read vulnerability allows buffers to overflow. CVE-STATUS: Vulnerability has be...

9.1CVSS6.5AI score0.00336EPSS
Exploits0
rosalinux
rosalinux
•added 2025/09/09 10:29 a.m.•8 views

Advisory ROSA-SA-2025-2975

Software: libarchive 3.6.2 OS: ROSA-CHROME unaffected versions = libarchive-3.6.2-6 affected versions libarchive-3.6.2-6 CVE-ID: CVE-2025-5914 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A vulnerability has been discovered in libarchive archivereadformatrarseekdata related to an integer overflow that...

7.8CVSS7.5AI score0.00326EPSS
Exploits2
rosalinux
rosalinux
•added 2025/09/09 10:19 a.m.•8 views

Advisory ROSA-SA-2025-2971

software: less 608 WASP: ROSA-CHROME unaffected versions = less-608-3 affected versions less-608-3 CVE-ID: CVE-2024-32487 BDU-ID: 2024-03717 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the UNIX-like UNIX text terminal utility Less is related to incorrect handling of quotation marks in the...

8.6CVSS7.9AI score0.00628EPSS
Exploits0
rosalinux
rosalinux
•added 2025/09/09 10:16 a.m.•8 views

Advisory ROSA-SA-2025-2969

software: ghostscript 9.56.1 OS: ROSA-CHROME unaffected versions = ghostscript-9.56.1-3 affected versions ghostscript-9.56.1-3 CVE-ID: CVE-2024-33870 BDU-ID: 2024-05063 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Ghostscript document processing, conversion, and generation software suite...

6.3CVSS7.4AI score0.00515EPSS
Exploits0
rosalinux
rosalinux
•added 2025/09/09 10:13 a.m.•8 views

Advisory ROSA-SA-2025-2968

software: libheif 1.19.8 WASP: ROSA-CHROME unaffected versions = libheif-1.19.8-1 affected versions libheif-1.19.8-1 CVE-ID: CVE-2025-43966 BDU-ID: None CVE-Crit: LOW CVE-DESC.: Vulnerability: In libheif before 1.19.6, the ImageItemiden function dereferences a null pointer in image-items/iden.cc...

7.5CVSS4.5AI score0.00279EPSS
Exploits0
rosalinux
rosalinux
•added 2025/09/09 9:34 a.m.•8 views

Advisory ROSA-SA-2025-2963

Software: xmlrpc-c 1.51.0 OS: ROSA Virtualization 3.0 unaffected versions = xmlrpc-c-1.51.0-11.0.1.rv30 affected versions xmlrpc-c-1.51.0-11.0.1.rv30 CVE-ID: CVE-2024-8176 BDU-ID: 2025-04573 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libexpat XML file parsing library is related to a...

7.5CVSS8.5AI score0.01569EPSS
Exploits0
rosalinux
rosalinux
•added 2025/09/09 9:34 a.m.•8 views

Advisory ROSA-SA-2025-2965

Software: avahi 0.7 OS: ROSA Virtualization 3.0 unaffected versions = avahi-0.7-27.0.2.rv30.1 affected versions avahi-0.7-27.0.0.2.rv30.1 CVE-ID: CVE-2017-6519 BDU-ID: 2019-00693 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the avahi-daemon daemon of the Avahi local area network service...

9.1CVSS8.9AI score0.03082EPSS
Exploits1
rosalinux
rosalinux
•added 2025/09/09 9:34 a.m.•8 views

Advisory ROSA-SA-2025-2961

Software: libnbd 1.6.0 OS: ROSA Virtualization 3.0 unaffected versions = libnbd-1.6.0-6.0.1.1.rv30 affected versions libnbd-1.6.0-6.0.1.1.rv30 CVE-ID: CVE-2022-0485 BDU-ID: 2022-01701 CVE-Crit: LOW CVE-DESC.: A vulnerability in the libnbd library's nbdcopy tool is related to an exception handling...

7.4CVSS6.6AI score0.00788EPSS
Exploits2
rosalinux
rosalinux
•added 2025/08/06 8:30 a.m.•8 views

Advisory ROSA-SA-2025-2934

software: libvirt 8.9.0 OS: ROSA-CHROME unaffected versions = libvirt-8.9.0-4 affected versions libvirt-8.9.0-4 CVE-ID: CVE-2024-2496 BDU-ID: 2024-03249 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the udevConnectListAllInterfaces function of the Libvirt virtualization management library is...

5.5CVSS5.3AI score0.0025EPSS
Exploits0
rosalinux
rosalinux
•added 2025/08/06 8:30 a.m.•8 views

Advisory ROSA-SA-2025-2929

software: ghostscript 9.56.1 OS: ROSA-CHROME unaffected versions = ghostscript-9.56.1-2 affected versions ghostscript-9.56.1-2 CVE-ID: CVE-2025-27830 BDU-ID: 2025-03710 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the base/writet1.c and psi/zfapi.c files of the DollarBlend component of the...

7.8CVSS6.7AI score0.00281EPSS
Exploits0
rosalinux
rosalinux
•added 2025/08/06 8:30 a.m.•8 views

Advisory ROSA-SA-2025-2921

software: binutils 2.38 WASP: ROSA-CHROME unaffected versions = binutils-2.38-6 affected versions binutils-2.38-6 CVE-ID: CVE-2025-0840 BDU-ID: 2025-03384 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the objdump.c component of the GNU Binutils software development tool is related to a stack-based...

7.5CVSS5.8AI score0.00726EPSS
Exploits1
rosalinux
rosalinux
•added 2025/08/06 8:30 a.m.•8 views

Advisory ROSA-SA-2025-2924

software: qt5-qtbase 5.15.16 WASP: ROSA-CHROME unaffected versions = qt5-qtbase-5.15.16-3 affected versions qt5-qtbase-5.15.16-3 CVE-ID: CVE-2025-30348 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in QDom allows a remote attacker to execute a complex algorithm involving copying XML...

5.8CVSS6.5AI score0.00343EPSS
Exploits0
rosalinux
rosalinux
•added 2025/08/03 9:2 p.m.•8 views

Advisory ROSA-SA-2025-2917

software: x11-server 1.20.14 OS: ROSA-CHROME unaffected versions = x11-server-1.20.14-12 affected versions x11-server-1.20.14-12 CVE-ID: CVE-2025-26594 BDU-ID: 2025-04129 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Wayland protocol implementation for X.Org XWayland, an implementation of th...

7.8CVSS8.6AI score0.00485EPSS
Exploits0
rosalinux
rosalinux
•added 2025/08/03 8:59 p.m.•8 views

Advisory ROSA-SA-2025-2916

software: xwayland 24.1.6 WASP: ROSA-CHROME unaffected versions = xwayland-24.1.6-1 affected versions xwayland-24.1.6-1 CVE-ID: CVE-2025-26594 BDU-ID: 2025-04129 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Wayland protocol implementation for X.Org XWayland, an implementation of the X Windo...

7.8CVSS8.6AI score0.00485EPSS
Exploits0
rosalinux
rosalinux
•added 2025/08/03 8:50 p.m.•8 views

Advisory ROSA-SA-2025-2911

software: postgresql 12.22 WASP: ROSA-CHROME unaffected versions = postgresql-9.5.2 affected versions postgresql-9.5.2 CVE-ID: CVE-2016-2193 BDU-ID: 2016-00974 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the PostgreSQL database management system is related to errors in security settings...

7.5CVSS7.1AI score0.01807EPSS
Exploits0
rosalinux
rosalinux
•added 2025/08/03 8:18 p.m.•8 views

Advisory ROSA-SA-2025-2908

Software: libarchive 3.6.2 OS: ROSA-CHROME unaffected versions = libarchive-3.6.2-4 affected versions libarchive-3.6.2-4 CVE-ID: CVE-2024-26256 BDU-ID: 2024-02924 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libarchive archiving library is related to an operation exceeding buffer boundaries i...

7.8CVSS7.5AI score0.87896EPSS
Exploits0
rosalinux
rosalinux
•added 2025/06/23 8:18 a.m.•8 views

Advisory ROSA-SA-2025-2904

Software: openssl 1.1.1k OS: ROSA Virtualization 3.0 packageevrstring: openssl-1.1.1k-12.0.1.rv30 CVE-ID: CVE-2009-1387 BDU-ID: 2015-09404 CVE-Crit: MEDIUM CVE-DESC.: Multiple vulnerabilities in the openssl package up to version 0.9.8l-r2 of the Gentoo Linux operating system, the exploitation of...

9.8CVSS9.4AI score0.87816EPSS
Exploits4
rosalinux
rosalinux
•added 2025/06/09 8:56 a.m.•8 views

Advisory ROSA-SA-2025-2889

Software: krb5 1.18.2 OS: ROSA Virtualization 3.0 packageevrstring: krb5-1.18.2-32.0.1.rv30 CVE-ID: CVE-2025-3576 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the MIT Kerberos implementation allows an attacker to spoof messages protected by GSSAPI using RC4-HMAC-MD5 due to...

5.9CVSS6AI score0.00308EPSS
Exploits0
rosalinux
rosalinux
•added 2025/06/09 8:56 a.m.•8 views

Advisory ROSA-SA-2025-2885

Software: expat 2.2.5 OS: ROSA Virtualization 3.0 packageevrstring: expat-2.2.5-17.0.1.rv30 CVE-ID: CVE-2024-8176 BDU-ID: 2025-04573 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libexpat XML file parsing library is related to a stack-based buffer overflow. Exploitation of the vulnerability...

7.5CVSS8.3AI score0.01569EPSS
Exploits0
rosalinux
rosalinux
•added 2025/06/09 8:53 a.m.•8 views

Advisory ROSA-SA-2025-2880

Software: libjpeg-turbo 1.5.3 OS: ROSA Virtualization 2.1 packageevrstring: libjpeg-turbo-1.5.3-14.rv3 CVE-ID: CVE-2020-13790 BDU-ID: 2021-01352 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the startinputppm function from rdppm.c of the libjpeg-turbo image manipulation library is related to a...

8.1CVSS8.4AI score0.03205EPSS
Exploits1
rosalinux
rosalinux
•added 2025/04/11 10:8 p.m.•8 views

Advisory ROSA-SA-2025-2843

Software: gmp 6.1.2 OS: ROSA Virtualization 2.1 packageevrstring: gmp-6.1.2-11.rv3 CVE-ID: CVE-2021-43618 BDU-ID: 2022-05776 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the mpz/inpraw.c component of the GMP arithmetic operations library on 32-bit platforms is related to integer overflow...

7.5CVSS7.5AI score0.03425EPSS
Exploits1
rosalinux
rosalinux
•added 2025/03/01 9:41 p.m.•8 views

Advisory ROSA-SA-2025-2752

Software: opensc 0.20.0 OS: ROSA Virtualization 2.1 packageevrstring: opensc-0.20.0-8.rv3 CVE-ID: CVE-2023-2977 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A vulnerability in OpenSC causes a buffer overflow in the pkcs15 cardoshaveverifyrcpackage function, allowing an attacker to cause a processing...

7.1CVSS7.4AI score0.01174EPSS
Exploits1
rosalinux
rosalinux
•added 2025/03/01 9:41 p.m.•8 views

Advisory ROSA-SA-2025-2749

Software: gnutls 3.6.16 OS: ROSA Virtualization 2.1 packageevrstring: gnutls-3.6.16-8.0.1.rv3.1 CVE-ID: CVE-2023-5981 BDU-ID: 2024-01500 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the GnuTLS transport layer security library is related to information disclosure via a mismatch. Exploitation of...

7.5CVSS9.3AI score0.01614EPSS
Exploits1
rosalinux
rosalinux
•added 2025/03/01 9:32 p.m.•8 views

Advisory ROSA-SA-2025-2736

Software: ghostscript 9.27 OS: ROSA Virtualization 3.0 packageevrstring: ghostscript-9.27-13.0.1.rv30 CVE-ID: CVE-2024-33871 BDU-ID: 2024-05064 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability exists in the contrib/opvp/gdevopvp.c component of the Ghostscript processing, conversion, and document...

8.8CVSS8.9AI score0.01425EPSS
Exploits0
rosalinux
rosalinux
•added 2025/03/01 9:21 p.m.•8 views

Advisory ROSA-SA-2025-2731

Software: PackageKit 1.1.12 OS: ROSA Virtualization 3.0 packageevrstring: PackageKit-1.1.12-7.0.1.rv30 CVE-ID: CVE-2024-0217 BDU-ID: None CVE-Crit: LOW CVE-DESC.: A use-after-free vulnerability in PackageKitd allows an attacker to access freed memory and potentially execute arbitrary code...

3.3CVSS4.5AI score0.00228EPSS
Exploits0
rosalinux
rosalinux
•added 2025/02/24 12:27 p.m.•8 views

Advisory ROSA-SA-2025-2698

Software: perl-CPAN 2.18 OS: ROSA Virtualization 3.0 packageevrstring: perl-CPAN-2.18-397.0.1 CVE-ID: CVE-2023-31484 BDU-ID: 2023-03871 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the CPAN.pm component of the Perl programming language is related to errors in the TLS certificate authentication...

8.1CVSS7.3AI score0.01548EPSS
Exploits1
rosalinux
rosalinux
•added 2025/02/15 10:9 p.m.•8 views

Advisory ROSA-SA-2025-2687

Software: pango 1.42.4 OS: ROSA Virtualization 3.0 packageevrstring: pango-1.42.4-8 CVE-ID: CVE-2019-1010238 BDU-ID: 2019-02871 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the pangolog2visgetembeddinglevels function of the Pango library is related to an operation exceeding buffer boundaries...

9.8CVSS7.5AI score0.06274EPSS
Exploits1
rosalinux
rosalinux
•added 2025/02/15 10:9 p.m.•8 views

Advisory ROSA-SA-2025-2686

Software: openldap 2.4.46 OS: ROSA Virtualization 3.0 packageevrstring: openldap-2.4.46-18.0.1 CVE-ID: CVE-2022-29155 BDU-ID: 2022-03203 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the OpenLDAP protocol implementation is related to failure to take measures to protect the SQL query structure...

9.8CVSS7.2AI score0.69899EPSS
Exploits1
rosalinux
rosalinux
•added 2025/02/15 10:9 p.m.•8 views

Advisory ROSA-SA-2025-2681

Software: fuse 2.9.7 OS: ROSA Virtualization 3.0 packageevrstring: fuse-2.9.7-16.0.1 CVE-ID: CVE-2018-10906 BDU-ID: 2019-00421 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the fusermount module of the file system driver for UNIX-like operating systems FUSE is related to a restriction bypass wh...

7.8CVSS6.8AI score0.01414EPSS
Exploits3
rosalinux
rosalinux
•added 2025/02/15 10:9 p.m.•8 views

Advisory ROSA-SA-2025-2682

Software: ghostscript 9.27 OS: ROSA Virtualization 3.0 packageevrstring: ghostscript-9.27-11.0.1 CVE-ID: CVE-2019-14813 BDU-ID: 2019-03227 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the setsystemparams procedure of the PostScript Ghostscript file format conversion program is related to...

9.8CVSS8.2AI score0.11397EPSS
Exploits1
rosalinux
rosalinux
•added 2025/01/28 7:50 p.m.•8 views

Advisory ROSA-SA-2025-2672

software: rxvt 2.7.10 OS: ROSA-CHROME packageevrstring: rxvt-2.7.10 CVE-ID: CVE-2021-33477 BDU-ID: 2021-04892 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in Eterm, Mrxyt, Rxyt, Rxyt-unicode software is related to improper processing of certain control sequences. Exploitation of the vulnerability...

8.8CVSS7AI score0.04012EPSS
Exploits1
rosalinux
rosalinux
•added 2025/01/27 1:43 p.m.•8 views

Advisory ROSA-SA-2025-2598

software: glib2.0 2.72.3 OS: ROSA-CHROME packageevrstring: glib2.0-2.72.3-4 CVE-ID: CVE-2023-29499 BDU-ID: 2023-07646 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the isnormal function of the Glib library is associated with uncontrolled resource consumption. Exploitation of the vulnerability coul...

7.8CVSS7.9AI score0.00768EPSS
Exploits0
rosalinux
rosalinux
•added 2024/12/10 11:51 a.m.•8 views

Advisory ROSA-SA-2024-2540

software: wavpack 5.3.0 OS: ROSA-CHROME packageevrstring: wavpack-5.3.0-3 CVE-ID: CVE-2020-35738 BDU-ID: 2021-00777 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the WavpackPackSamples function of the packutils.c component of the WavPack audio codec is related to an operation exceeding the allowed...

6.1CVSS6.9AI score0.01196EPSS
Exploits1
rosalinux
rosalinux
•added 2026/03/22 9:45 p.m.•7 views

Advisory ROSA-SA-2026-3255

software: ffmpeg 4.4.6 OS: ROSA-CHROME unaffected versions = ffmpeg-4.4.6-3 affected versions ffmpeg-4.4.6-3 CVE-ID: CVE-2025-10256 BDU-ID: 2025-11446 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the configinput function of the FFmpeg multimedia library is related to pointer dereferencing...

5.5CVSS6.4AI score0.00298EPSS
Exploits0
rosalinux
rosalinux
•added 2026/03/22 9:40 p.m.•7 views

Advisory ROSA-SA-2026-3252

software: grafana 12.1.8 WASP: ROSA-CHROME unaffected versions = grafana-12.1.8-1 affected versions 3s, timeout and permanently block on sending to an unbuffered channel, resulting in linear growth of goroutines and memory exhaustion. CVE-STATUS: The vulnerability has been resolved CVE-REV: To...

7.6CVSS7.2AI score0.97999EPSS
Exploits6
rosalinux
rosalinux
•added 2026/03/22 9:33 p.m.•7 views

Advisory ROSA-SA-2026-3251

software: glibc 2.33 AXIS: ROSA-CHROME unaffected versions = glibc-2.33-11.git5f08d1.5 affected versions glibc-2.33-11.git5f08d1.5 CVE-ID: CVE-2026-0915 BDU-ID: 2026-02104 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the getnetbyaddr and getnetbyaddrr functions of the GNU C Library system library...

8.4CVSS5.9AI score0.00564EPSS
Exploits1
rosalinux
rosalinux
•added 2026/03/22 9:17 p.m.•7 views

Advisory ROSA-SA-2026-3243

Software: libarchive 3.6.2 OS: ROSA-CHROME unaffected versions = libarchive-3.6.2-9 affected versions libarchive-3.6.2-9 CVE-ID: CVE-2025-60753 BDU-ID: 2026-00318 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the applysubstitution function of the libarchive library involves the execution of a lo...

5.5CVSS6.1AI score0.00157EPSS
Exploits1
rosalinux
rosalinux
•added 2026/03/22 9:17 p.m.•7 views

Advisory ROSA-SA-2026-3240

software: vim 9.1.2128 WASP: ROSA-CHROME unaffected versions = vim-9.1.2128-1 affected versions vim-9.1.2128-1 CVE-ID: CVE-2025-66476 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: Vim for Windows before version 9.1.1947 implements an unreliable search order for external commands: when using cmd.exe, the...

7.8CVSS7.4AI score0.00439EPSS
Exploits0
rosalinux
rosalinux
•added 2026/03/22 9:2 p.m.•7 views

Advisory ROSA-SA-2026-3238

software: openvpn 2.6.17 OS: ROSA-CHROME unaffected versions = openvpn-2.6.17-1 affected versions openvpn-2.6.17-1 CVE-ID: CVE-2025-13751 BDU-ID: 2025-16280 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the OpenVPN software is related to unrestricted resource allocation. Exploitation of the...

5.6CVSS7.5AI score0.00157EPSS
Exploits0
rosalinux
rosalinux
•added 2026/03/22 8:49 p.m.•7 views

Advisory ROSA-SA-2026-3230

software: avahi 0.8 WASP: ROSA-CHROME unaffected versions = avahi-0.8-12.git35bb1b.4 affected versions avahi-0.8-12.git35bb1b.4 CVE-ID: CVE-2025-68276 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: Vulnerability in Avahi mDNS/DNS-SD. An unprivileged local user can cause an avahi-daemon DoS crash by...

6.5CVSS6.8AI score0.00331EPSS
Exploits0
rosalinux
rosalinux
•added 2026/03/22 6:39 p.m.•7 views

Advisory ROSA-SA-2026-3222

software: suricata 7.0.13 WASP: ROSA-CHROME unaffected versions = suricata-7.0.13-1 affected versions suricata-7.0.13-1 CVE-ID: CVE-2025-64330 BDU-ID: 2025-14771 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Suricata Intrusion Detection and Prevention System is related to a buffer overflow in...

7.5CVSS6AI score0.00327EPSS
Exploits0
rosalinux
rosalinux
•added 2026/03/22 6:25 p.m.•7 views

Advisory ROSA-SA-2026-3215

software: tomcat 9.0.37 WASP: ROSA-CHROME unaffected versions = tomcat-9.0.37-15 affected versions tomcat-9.0.37-15 CVE-ID: CVE-2025-55752 BDU-ID: 2025-13742 CVE-Crit: HIGH CVE-DESC.: An Apache Tomcat application server vulnerability involves relative path traversal. Exploitation of the...

7.5CVSS7.2AI score0.66535EPSS
Exploits4
rosalinux
rosalinux
•added 2026/02/16 10:56 a.m.•7 views

Advisory ROSA-SA-2026-3181

Software: rsync 3.1.3 OS: ROSA Virtualization 3.0 unaffected versions = rsync-3.1.3-23.rv30 affected versions rsync-3.1.3-23.rv30 CVE-ID: CVE-2025-4638 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the zlib library embedded in PointCloudLibrary PCL allows attackers to cause...

9.8CVSS7.5AI score0.16004EPSS
Exploits2
rosalinux
rosalinux
•added 2026/02/16 7:27 a.m.•7 views

Advisory ROSA-SA-2026-3159

Software: pam 1.3.1 OS: ROSA Virtualization 3.1 unaffected versions = pam-1.3.1-39.0.2.rv31 affected versions pam-1.3.1-39.0.2.rv31 CVE-ID: CVE-2025-6020 BDU-ID: 2025-07273 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the pamnamespace module of the Linux-PAM authentication module is caused by a...

7.8CVSS7.4AI score0.00399EPSS
Exploits0
rosalinux
rosalinux
•added 2026/02/16 7:27 a.m.•7 views

Advisory ROSA-SA-2026-3162

Software: sqlite 3.26.0 OS: ROSA Virtualization 3.1 unaffected versions = sqlite-3.26.0-20.rv31 affected versions sqlite-3.26.0-20.rv31 CVE-ID: CVE-2025-6965 BDU-ID: 2025-08786 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Aggregate Term Handler component of the SQLite database management syst...

7.7CVSS6.9AI score0.73495EPSS
Exploits3
rosalinux
rosalinux
•added 2026/02/16 7:8 a.m.•7 views

Advisory ROSA-SA-2026-3139

Software: flac 1.3.2 OS: ROSA Virtualization 3.0 unaffected versions = flac-1.3.2-9.rv30.1 affected versions flac-1.3.2-9.rv30.1 CVE-ID: CVE-2020-22219 BDU-ID: 2023-06152 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the bitwritergrow in function of the FLAC audio codec is related to an operation...

7.8CVSS6.2AI score0.00742EPSS
Exploits1
rosalinux
rosalinux
•added 2026/01/26 12:35 p.m.•7 views

Advisory ROSA-SA-2026-3124

software: cups 2.4.14 OS: ROSA-CHROME unaffected versions = cups-2.4.14-1 affected versions cups-2.4.14-1 CVE-ID: CVE-2025-58060 BDU-ID: 2025-11019 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the CUPS Common UNIX Printing System is related to flaws in the authentication procedure. Exploitation o...

8CVSS5.9AI score0.00964EPSS
Exploits1
rosalinux
rosalinux
•added 2026/01/26 12:21 p.m.•7 views

Advisory ROSA-SA-2026-3121

software: binutils 2.38 WASP: ROSA-CHROME unaffected versions = binutils-2.38-7 affected versions binutils-2.38-7 CVE-ID: CVE-2025-5244 BDU-ID: 2025-10924 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the elfgcsweep function of the ld component of the GNU Binutils software development tool is...

7.8CVSS5.9AI score0.00235EPSS
Exploits1
rosalinux
rosalinux
•added 2026/01/26 12:14 p.m.•7 views

Advisory ROSA-SA-2026-3118

software: ghostscript 9.56.1 OS: ROSA-CHROME unaffected versions = ghostscript-9.56.1-9 affected versions ghostscript-9.56.1-9 CVE-ID: CVE-2025-59798 BDU-ID: 2025-11520 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the pdfwritecmap function of the Ghostscript document processing, conversion, and...

5.5CVSS6.2AI score0.00188EPSS
Exploits0
rosalinux
rosalinux
•added 2026/01/26 12:11 p.m.•7 views

Advisory ROSA-SA-2026-3117

software: ffmpeg 4.4.6 OS: ROSA-CHROME unaffected versions = ffmpeg-4.4.6-2 affected versions ffmpeg-4.4.6-2 CVE-ID: CVE-2023-6601 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in FFmpeg's HLS demultiplexer allows bypassing dangerous file extension checks and launching arbitrary...

4.7CVSS5.9AI score0.00397EPSS
Exploits1
Total number of security vulnerabilities1374