Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
RosalinuxRecent
RecentMost viewed

1374 matches found

Rosalinux
Rosalinux•added 2025/11/10 6:20 a.m.•4 views

Advisory ROSA-SA-2025-3063

Software: libarchive 3.3.3 OS: ROSA Virtualization 2.1 unaffected versions = libarchive-3.3.3.3-6.0.1.rv3 affected versions libarchive-3.3.3.3-6.0.1.rv3 CVE-ID: CVE-2025-5914 BDU-ID: CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the archivereadformatrarseekdata function of the Libarchive...

7.8CVSS7.2AI score0.04056EPSS
Exploits2
Rosalinux
Rosalinux•added 2025/11/10 6:20 a.m.•4 views

Advisory ROSA-SA-2025-3062

Software: gdk-pixbuf2 2.36.12 OS: ROSA Virtualization 2.1 unaffected versions = gdk-pixbuf2-2.36.12-7.0.1.1.rv3 affected versions gdk-pixbuf2-2.36.12-7.0.1.rv3 CVE-ID: CVE-2025-7345 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the gdkpixbufjpegimageloadincrement function of the...

7.5CVSS8AI score0.0106EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/11/10 6:20 a.m.•3 views

Advisory ROSA-SA-2025-3060

Software: bzip2 1.0.6 OS: ROSA Virtualization 2.1 unaffected versions = bzip2-1.0.6-28.rv3 affected versions bzip2-1.0.6-28.rv3 CVE-ID: CVE-2019-12900 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the BZ2decompress decompress.c function of the bzip2 data compression utility is related to...

9.8CVSS9.9AI score0.08042EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/11/10 6:20 a.m.•4 views

Advisory ROSA-SA-2025-3059

Software: dhcp 4.3.6 OS: ROSA Virtualization 2.1 unaffected versions = dhcp-4.3.6-50.0.1.rv3 affected versions dhcp-4.3.6-50.0.1.1.rv3 CVE-ID: CVE-2021-25217 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A software vulnerability providing the DHCP Dynamic Host Configuration Protocol service to the network is...

7.4CVSS6.9AI score0.06118EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/11/10 6:20 a.m.•4 views

Advisory ROSA-SA-2025-3065

Software: libxml2 2.9.7 OS: ROSA Virtualization 2.1 unaffected versions = libxml2-2.9.7-21.0.1.rv3.3 affected versions libxml2-2.9.7-21.0.1.1.rv3.3 CVE-ID: CVE-2025-6021 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the xmlBuildQName function of the Libxml2 library is related to a...

9.1CVSS8.4AI score0.0828EPSS
Exploits5
Rosalinux
Rosalinux•added 2025/11/10 6:15 a.m.•6 views

Advisory ROSA-SA-2025-3056

Software: gnutls 3.6.16 OS: ROSA Virtualization 3.1 unaffected versions = gnutls-3.6.16-8.0.1.rv31.4 affected versions gnutls-3.6.16-8.0.1.1.rv31.4 CVE-ID: CVE-2024-12243 BDU-ID: CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the GnuTLS transport layer security library is related to algorithmic...

8.2CVSS9.2AI score0.01193EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/11/10 6:15 a.m.•6 views

Advisory ROSA-SA-2025-3058

Software: libxslt 1.1.32 OS: ROSA Virtualization 3.1 unaffected versions = libxslt-1.1.32-6.3.rv31 affected versions libxslt-1.1.32-6.3.rv31 CVE-ID: CVE-2023-40403 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libxslt library of the iPadOS, tvOS, iOS, watchOS, macOS operating system is...

6.5CVSS7AI score0.01092EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/11/10 6:15 a.m.•6 views

Advisory ROSA-SA-2025-3057

Software: xmlrpc-c 1.51.0 OS: ROSA Virtualization 3.1 unaffected versions = xmlrpc-c-1.51.0-11.0.1.rv31 affected versions xmlrpc-c-1.51.0-11.0.1.rv31 CVE-ID: CVE-2024-8176 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libexpat XML file parsing library is related to a stack-based buffer...

7.5CVSS8.9AI score0.01569EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/11/10 6:15 a.m.•10 views

Advisory ROSA-SA-2025-3055

Software: cups 2.2.6 OS: ROSA Virtualization 3.1 unaffected versions = cups-2.2.6-63.rv31 affected versions cups-2.2.6-63.rv31 CVE-ID: CVE-2025-58060 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the CUPS Common UNIX Printing System is related to flaws in the authentication procedure...

8CVSS7.1AI score0.00964EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/11/10 6:14 a.m.•6 views

Advisory ROSA-SA-2025-3053

Software: libarchive 3.3.3 OS: ROSA Virtualization 3.1 unaffected versions = libarchive-3.3.3.3-6.0.1.rv31 affected versions libarchive-3.3.3.3-6.0.1.rv31 CVE-ID: CVE-2025-5914 BDU-ID: CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the archivereadformatrarseekdata function of the Libarchive...

7.8CVSS7.2AI score0.04056EPSS
Exploits2
Rosalinux
Rosalinux•added 2025/11/10 6:14 a.m.•4 views

Advisory ROSA-SA-2025-3052

Software: gdk-pixbuf2 2.36.12 OS: ROSA Virtualization 3.1 unaffected versions = gdk-pixbuf2-2.36.12-7.0.1.1.rv31 affected versions gdk-pixbuf2-2.36.12-7.0.1.rv31 CVE-ID: CVE-2025-7345 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the gdkpixbufjpegimageloadincrement function of the...

7.5CVSS8AI score0.0106EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/11/10 6:14 a.m.•4 views

Advisory ROSA-SA-2025-3054

Software: libxml2 2.9.7 OS: ROSA Virtualization 3.1 unaffected versions = libxml2-2.9.7-21.0.1.rv31.3 affected versions libxml2-2.9.7-21.0.1.1.rv31.3 CVE-ID: CVE-2025-6021 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the xmlBuildQName function of the Libxml2 library is related to a...

9.1CVSS7.8AI score0.01437EPSS
Exploits2
Rosalinux
Rosalinux•added 2025/11/10 6:14 a.m.•4 views

Advisory ROSA-SA-2025-3051

Software: emacs 26.1 OS: ROSA Virtualization 3.1 unaffected versions = emacs-26.1-15.rv31 affected versions emacs-26.1-15.rv31 CVE-ID: CVE-2024-53920 BDU-ID: CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the elisp-completion-at-point and elisp-flymake-byte-compile function of the ELisp mode o...

7.8CVSS9.4AI score0.00514EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/11/09 1:37 p.m.•4 views

Advisory ROSA-SA-2025-3049

Software: krb5 1.18.2 OS: ROSA Virtualization 3.1 unaffected versions = krb5-1.18.2-32.rv31 affected versions krb5-1.18.2-32.rv31 CVE-ID: CVE-2024-37370 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the implementation of the Kerberos network authentication protocol is associated with a...

9.1CVSS8.8AI score0.14859EPSS
Exploits2
Rosalinux
Rosalinux•added 2025/11/09 1:37 p.m.•3 views

Advisory ROSA-SA-2025-3050

Software: expat 2.2.5 OS: ROSA Virtualization 3.1 unaffected versions = expat-2.2.5-17.0.1.rv31 affected versions expat-2.2.5-17.0.1.rv31 CVE-ID: CVE-2019-15903 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libexpat XML file parsing library is related to incorrect restriction of xml...

9.8CVSS8.8AI score0.33936EPSS
Exploits6
Rosalinux
Rosalinux•added 2025/11/09 1:37 p.m.•6 views

Advisory ROSA-SA-2025-3047

Software: libwebp 1.0.0 OS: ROSA Virtualization 3.1 unaffected versions = libwebp-1.0.0.0-10.0.1.rv31 affected versions libwebp-1.0.0.0-10.0.1.rv31 CVE-ID: CVE-2018-25009 BDU-ID: CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the libwebp library for WebP image encoding and decoding is related to...

9.8CVSS9.1AI score0.99739EPSS
Exploits9
Rosalinux
Rosalinux•added 2025/11/09 1:37 p.m.•4 views

Advisory ROSA-SA-2025-3046

Software: freeglut 3.0.0 OS: ROSA Virtualization 3.1 unaffected versions = freeglut-3.0.0.0-9.rv31 affected versions freeglut-3.0.0.0-9.rv31 CVE-ID: CVE-2024-24258 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the GlutAddSubMenu function of the MuPDF PDF viewer is related to a memory leak...

7.5CVSS6.8AI score0.01147EPSS
Exploits2
Rosalinux
Rosalinux•added 2025/11/09 1:37 p.m.•4 views

Advisory ROSA-SA-2025-3045

Software: bzip2 1.0.6 OS: ROSA Virtualization 3.1 unaffected versions = bzip2-1.0.6-28.rv31 affected versions bzip2-1.0.6-28.rv31 CVE-ID: CVE-2019-12900 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the BZ2decompress decompress.c function of the bzip2 data compression utility is related to...

9.8CVSS8AI score0.08042EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/11/09 1:37 p.m.•7 views

Advisory ROSA-SA-2025-3044

Software: dhcp 4.4.2 OS: ROSA Virtualization 3.1 unaffected versions = dhcp-4.4.2-19.b1.rv31 affected versions dhcp-4.4.2-19.b1.rv31 CVE-ID: CVE-2021-25217 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A software vulnerability providing the DHCP Dynamic Host Configuration Protocol service to the network is...

7.4CVSS9.2AI score0.06118EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/11/09 1:37 p.m.•3 views

Advisory ROSA-SA-2025-3048

Software: libxml2 2.9.7 OS: ROSA Virtualization 3.1 unaffected versions = libxml2-2.9.7-21.0.1.rv31.3 affected versions libxml2-2.9.7-21.0.1.1.rv31.3 CVE-ID: CVE-2016-3709 BDU-ID: CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Libxml2 library is related to the failure to take measures to...

9.8CVSS8.3AI score0.2421EPSS
Exploits13
Rosalinux
Rosalinux•added 2025/11/09 1:7 p.m.•11 views

Advisory ROSA-SA-2025-3043

Software: openssh 8.0p1 OS: ROSA Virtualization 3.1 unaffected versions = openssh-8.0p1-26.0.2.2.rv31 affected versions openssh-8.0p1-26.0.2.2.rv31 CVE-ID: CVE-2020-14145 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the OpenSSH cryptographic security tool is related to a lack of service...

9.8CVSS7.7AI score0.93305EPSS
Exploits34
Rosalinux
Rosalinux•added 2025/10/27 6:20 a.m.•4 views

Advisory ROSA-SA-2025-3042

Software: gnutls 3.6.16 OS: ROSA Virtualization 3.0 unaffected versions = gnutls-3.6.16-8.0.0.1.rv30.4 affected versions gnutls-3.6.16-8.0.1.1.rv30.4 CVE-ID: CVE-2024-12243 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in GnuTLS when processing ASN.1 data via libtasn1 could result in...

8.2CVSS7AI score0.01193EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/10/27 6:20 a.m.•7 views

Advisory ROSA-SA-2025-3041

Software: cups 2.2.6 OS: ROSA Virtualization 3.0 unaffected versions = cups-2.2.6-63.rv30 affected versions cups-2.2.6-63.rv30 CVE-ID: CVE-2025-58060 BDU-ID: 2025-11019 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the CUPS Common UNIX Printing System is related to flaws in the authentication...

8CVSS7.1AI score0.00964EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/10/27 6:20 a.m.•5 views

Advisory ROSA-SA-2025-3040

Software: gnutls 3.6.16 OS: ROSA Virtualization 2.1 unaffected versions = gnutls-3.6.16-8.0.1.rv3.4 affected versions gnutls-3.6.16-8.0.1.1.rv3.4 CVE-ID: CVE-2024-12243 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in GnuTLS when processing ASN.1 data via libtasn1 could result in...

8.2CVSS7AI score0.01193EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/10/27 6:20 a.m.•9 views

Advisory ROSA-SA-2025-3039

Software: cups 2.2.6 OS: ROSA Virtualization 2.1 unaffected versions = cups-2.2.6-63.0.1.rv3 affected versions cups-2.2.6-63.0.1.rv3 CVE-ID: CVE-2025-58060 BDU-ID: 2025-11019 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the CUPS Common UNIX Printing System is related to flaws in the authenticatio...

8CVSS7.1AI score0.00964EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/10/27 6:19 a.m.•6 views

Advisory ROSA-SA-2025-3036

Software: postgresql13 13.21 OS: rosa-server79 unaffected versions = postgresql13-13.21-1PGDG.res7 affected versions postgresql13-13.21-1PGDG.res7 CVE-ID: CVE-2023-5869 BDU-ID: 2023-07840 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the arrayappend, arrayprepend, arraysubscripthandler functions o...

8.8CVSS8.9AI score0.89472EPSS
Exploits11
Rosalinux
Rosalinux•added 2025/10/27 6:19 a.m.•3 views

Advisory ROSA-SA-2025-3038

Software: postgresql15 15.14 OS: rosa-server79 unaffected versions = postgresql15-15.14-1PGDG.res7 affected versions postgresql15-15.14-1PGDG.res7 CVE-ID: CVE-2017-7484 BDU-ID: 2019-03334 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the PostgreSQL database management system is related to a lack o...

8.8CVSS8.4AI score0.0256EPSS
Exploits2
Rosalinux
Rosalinux•added 2025/10/27 6:19 a.m.•7 views

Advisory ROSA-SA-2025-3037

Software: postgresql14 14.18 OS: rosa-server79 unaffected versions = postgresql14-14.18-1PGDG.res7 affected versions postgresql14-14.18-1PGDG.res7 CVE-ID: CVE-2023-5869 BDU-ID: 2023-07840 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the arrayappend, arrayprepend, and arraysubscripthandler functio...

8.8CVSS8.9AI score0.89472EPSS
Exploits11
Rosalinux
Rosalinux•added 2025/10/27 6:19 a.m.•4 views

Advisory ROSA-SA-2025-3035

Software: firefox 128.5.1 OS: rosa-server79 unaffected versions = firefox-128.5.1-1.0.1.res7 affected versions firefox-128.5.1-1.0.1.res7 CVE-ID: CVE-2024-11692 BDU-ID: 2024-10454 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client browsers is...

8.8CVSS7.9AI score0.00762EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/10/14 2:33 p.m.•24 views

Advisory ROSA-SA-2025-3034

software: opencv 4.10.0 AXIS: ROSA-CHROME affected versions: None CVE-ID: CVE-2025-53644 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in OpenCV 4.10.0 and 4.11.0 is the use of an uninitialized pointer when processing JPEGs, which can lead to arbitrary memory writes. CVE-STATUS: Not...

9.8CVSS7.1AI score0.00356EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/10/14 2:33 p.m.•4 views

Advisory ROSA-SA-2025-3033

software: tomcat 9.0.37 WASP: ROSA-CHROME unaffected versions = tomcat-9.0.37-14 affected versions tomcat-9.0.37-14 CVE-ID: CVE-2025-48989 BDU-ID: 2025-09899 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the HTTP2 handler of the Apache Tomcat application server is related to incorrect resource...

7.5CVSS6.8AI score0.02931EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/10/14 2:33 p.m.•3 views

Advisory ROSA-SA-2025-3032

software: vim 9.1.1768 WASP: ROSA-CHROME unaffected versions = vim-9.1.1768-1 affected versions vim-9.1.1768-1 CVE-ID: CVE-2024-47814 BDU-ID: 2024-08644 CVE-Crit: LOW CVE-DESC.: A vulnerability in the BufWinLeave function of the vim text editor is related to memory usage after memory is freed...

4.7CVSS7.5AI score0.00283EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/10/14 2:33 p.m.•5 views

Advisory ROSA-SA-2025-3030

software: glibc 2.33 AXIS: ROSA-CHROME unaffected versions = glibc-2.33-11.git5f08d1.3 affected versions glibc-2.33-11.git5f08d1.3 CVE-ID: CVE-2023-0687 BDU-ID: 2023-00731 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the monstartup function of the monstartup file gmon.c of the GNU C System Call...

9.8CVSS7.3AI score0.01103EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/10/14 2:33 p.m.•6 views

Advisory ROSA-SA-2025-3031

software: libxml2 2.9.14 OS: ROSA-CHROME unaffected versions = libxml2-2.9.14-10 affected versions libxml2-2.9.14-10 CVE-ID: CVE-2025-9714 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: Vulnerability: uncontrolled recursion in evalXPath of libxml2 library before 2.9.14, allowing a local attacker to cau...

6.2CVSS7AI score0.00144EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/09/29 2:44 p.m.•5 views

Advisory ROSA-SA-2025-3029

software: redis 7.2.10 OS: ROSA-CHROME unaffected versions = redis-7.2.10-1 affected versions redis-7.2.10-1 CVE-ID: CVE-2024-31227 BDU-ID: 2024-09249 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability exists in the Redis database management system due to insufficient input validation. Exploitation of t...

9.8CVSS8.3AI score0.07802EPSS
Exploits7
Rosalinux
Rosalinux•added 2025/09/29 2:41 p.m.•3 views

Advisory ROSA-SA-2025-3028

Software: webmin 2.510 WASP: ROSA-CHROME unaffected versions = webmin-2.510-1 affected versions webmin-2.510-1 CVE-ID: CVE-2024-45692 BDU-ID: 2024-07424 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Webmin hosting control panel is related to a loop with an unreachable exit condition...

7.5CVSS6.8AI score0.00623EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/09/29 2:38 p.m.•5 views

Advisory ROSA-SA-2025-3027

software: jasper 2.0.33 WASP: ROSA-CHROME unaffected versions = jasper-2.0.33-2 affected versions jasper-2.0.33-2 CVE-ID: CVE-2025-8835 BDU-ID: None CVE-Crit: LOW CVE-DESC.: A vulnerability in JasPer before version 4.2.5 allows a crash due to null pointer dereferencing in the jasimagechclrspc...

5.5CVSS7.5AI score0.00195EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/09/29 2:32 p.m.•4 views

Advisory ROSA-SA-2025-3026

Software: openjpeg2 2.4.0 OS: ROSA-CHROME unaffected versions = openjpeg2-2.4.0 affected versions openjpeg2-2.4.0 CVE-ID: CVE-2025-54874 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: In OpenJPEG versions 2.5.1-2.5.3, calling opjjp2readheader may cause heap overruns when the data stream is short and...

9.8CVSS7AI score0.00604EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/09/29 2:30 p.m.•4 views

Advisory ROSA-SA-2025-3025

software: yarn 1.22.22 WASP: ROSA-CHROME unaffected versions = yarn-1.22.22.22-3 affected versions yarn-1.22.22.22-3 CVE-ID: CVE-2025-9308 BDU-ID: None CVE-Crit: LOW CVE-DESC.: Vulnerability in Yarn before version 1.22.22 in setOptions function of src/util/request-manager.js file. Possible attack...

5.5CVSS6.7AI score0.00188EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/09/29 2:28 p.m.•4 views

Advisory ROSA-SA-2025-3024

software: libsndfile 1.1.0 OS: ROSA-CHROME unaffected versions = libsndfile-1.1.0-5 affected versions libsndfile-1.1.0-5 CVE-ID: CVE-2025-52194 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: Buffer overflow vulnerability in libsndfile 1.2.2 and earlier versions when processing invalid IRCAM audio files,...

7.5CVSS8AI score0.00585EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/09/29 2:19 p.m.•4 views

Advisory ROSA-SA-2025-3023

software: kanboard 1.2.47 WASP: ROSA-CHROME unaffected versions = kanboard-1.2.47-0.gitb57deb.4 affected versions kanboard-1.2.47-0.gitb57deb.4 CVE-ID: CVE-2025-52576 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in Kanboard before version 1.2.46 allows existing usernames to be...

5.3CVSS7AI score0.00299EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/09/29 2:17 p.m.•4 views

Advisory ROSA-SA-2025-3022

Software: libarchive 3.6.2 OS: ROSA-CHROME unaffected versions = libarchive-3.6.2-8 affected versions libarchive-3.6.2-8 CVE-ID: CVE-2025-5915 BDU-ID: None CVE-Crit: LOW CVE-DESC.: A vulnerability in libarchive allows a buffer overflow to occur on the heap during filter processing, which could...

6.6CVSS7.9AI score0.00333EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/09/29 2:3 p.m.•4 views

Advisory ROSA-SA-2025-3021

software: cjson 1.7.19 AXIS: ROSA-CHROME unaffected versions = cjson-1.7.19-1 affected versions cjson-1.7.19-1 CVE-ID: CVE-2025-57052 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: Vulnerability in cJSON 1.5.0-1.7.18: allows a remote attacker to perform array escaping via decodearrayindexfrompointer...

9.8CVSS7AI score0.00668EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/09/29 1:53 p.m.•2 views

Advisory ROSA-SA-2025-3020

software: tinyxml2 6.2.0 WASP: ROSA-CHROME unaffected versions = tinyxml2-6.2.0-2 affected versions tinyxml2-6.2.0-2 CVE-ID: CVE-2024-50615 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: Vulnerability in TinyXML2 before 10.0.0: Reachable assertion in XMLUtil::GetCharacterRef could cause application...

6.5CVSS6.9AI score0.00373EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/09/29 1:51 p.m.•5 views

Advisory ROSA-SA-2025-3019

software: git 2.51.0 WASP: ROSA-CHROME unaffected versions = git-2.51.0-1 affected versions git-2.51.0-1 CVE-ID: CVE-2025-48384 BDU-ID: 2025-08691 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Git distributed version control system of the Microsoft Visual Studio software development tool is...

8CVSS7.4AI score0.02775EPSS
Exploits9
Rosalinux
Rosalinux•added 2025/09/29 1:42 p.m.•4 views

Advisory ROSA-SA-2025-3018

software: libssh 0.9.8 OS: ROSA-CHROME unaffected versions = libssh-0.9.8-2 affected versions libssh-0.9.8-2 CVE-ID: CVE-2025-5372 BDU-ID: 2025-07644 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the libssh library's sshkdf function is related to incorrect code generation control. Exploitation o...

8.8CVSS7.3AI score0.00407EPSS
Exploits0
Rosalinux
Rosalinux•added 2025/09/29 1:39 p.m.•6 views

Advisory ROSA-SA-2025-3017

software: chromium-browser-stable 140.0.7339.185 WASP: ROSA-CHROME unaffected versions = chromium-browser-stable-140.0.7339.185-1 affected versions chromium-browser-stable-140.0.7339.185-1 CVE-ID: CVE-2025-10585 BDU-ID: 2025-11457 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the V8 component of...

9.8CVSS7.1AI score0.05299EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/09/29 1:39 p.m.•4 views

Advisory ROSA-SA-2025-3016

software: rust1.89 1.89.0 WASP: ROSA-CHROME unaffected versions = rust1.89-1.89.0-1 affected versions rust1.89-1.89.0-1 CVE-ID: CVE-2025-10585 BDU-ID: 2025-11457 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the V8 component of Google Chrome and Microsoft Edge browsers is related to data type...

9.8CVSS7.1AI score0.05299EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/09/29 1:37 p.m.•5 views

Advisory ROSA-SA-2025-3015

Software: dovecot 2.3.21.1 OS: ROSA-CHROME unaffected versions = dovecot-2.3.21.1-6 affected versions dovecot-2.3.21.1-6 CVE-ID: CVE-2022-30550 BDU-ID: 2022-04273 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the passdb account database of the Dovecot mail server is related to configuration...

8.8CVSS7.1AI score0.01739EPSS
Exploits1
Rosalinux
Rosalinux•added 2025/09/29 1:37 p.m.•4 views

Advisory ROSA-SA-2025-3014

software: cert-sh-functions 1.0.6 WASP: ROSA-CHROME unaffected versions = cert-sh-functions-1.0.6-5 affected versions cert-sh-functions-1.0.6-5 CVE-ID: CVE-2022-30550 BDU-ID: 2022-04273 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the passdb account database of the Dovecot mail server is relate...

8.8CVSS7.1AI score0.01739EPSS
Exploits1
Total number of security vulnerabilities1374