caronc/apprise:latest (debian 12.11) - Trivy Report - 2025-10-14 15:22:27.158380226 +0000 UTC m=+11.561279294

debian
Package Vulnerability ID Severity Installed Version Fixed Version Links
apt CVE-2011-3374 LOW 2.6.1 https://access.redhat.com/security/cve/cve-2011-3374 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=642480 https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3374.html https://seclists.org/fulldisclosure/2011/Sep/221 https://security-tracker.debian.org/tracker/CVE-2011-3374 https://snyk.io/vuln/SNYK-LINUX-APT-116518 https://ubuntu.com/security/CVE-2011-3374
bash TEMP-0841856-B18BAF LOW 5.2.15-2+b8
bsdutils CVE-2022-0563 LOW 1:2.38.1-5+deb12u3 https://access.redhat.com/security/cve/CVE-2022-0563 https://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline/ https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w%40ws.net.home/T/#u https://lore.kernel.org/util-linux/[email protected]/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.gentoo.org/glsa/202401-08 https://security.netapp.com/advisory/ntap-20220331-0002/ https://www.cve.org/CVERecord?id=CVE-2022-0563
coreutils CVE-2016-2781 LOW 9.1-1 http://seclists.org/oss-sec/2016/q1/452 http://www.openwall.com/lists/oss-security/2016/02/28/2 http://www.openwall.com/lists/oss-security/2016/02/28/3 https://access.redhat.com/security/cve/CVE-2016-2781 https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E https://lore.kernel.org/patchwork/patch/793178/ https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.28/v2.28-ReleaseNotes https://nvd.nist.gov/vuln/detail/CVE-2016-2781 https://www.cve.org/CVERecord?id=CVE-2016-2781
coreutils CVE-2017-18018 LOW 9.1-1 http://lists.gnu.org/archive/html/coreutils/2017-12/msg00045.html https://access.redhat.com/security/cve/CVE-2017-18018 https://nvd.nist.gov/vuln/detail/CVE-2017-18018 https://www.cve.org/CVERecord?id=CVE-2017-18018
coreutils CVE-2025-5278 LOW 9.1-1 http://www.openwall.com/lists/oss-security/2025/05/27/2 http://www.openwall.com/lists/oss-security/2025/05/29/1 http://www.openwall.com/lists/oss-security/2025/05/29/2 https://access.redhat.com/security/cve/CVE-2025-5278 https://bugzilla.redhat.com/show_bug.cgi?id=2368764 https://cgit.git.savannah.gnu.org/cgit/coreutils.git/commit/?id=8c9602e3a145e9596dc1a63c6ed67865814b6633 https://cgit.git.savannah.gnu.org/cgit/coreutils.git/tree/NEWS?id=8c9602e3a145e9596dc1a63c6ed67865814b6633#n14 https://nvd.nist.gov/vuln/detail/CVE-2025-5278 https://security-tracker.debian.org/tracker/CVE-2025-5278 https://www.cve.org/CVERecord?id=CVE-2025-5278
curl CVE-2025-10148 MEDIUM 7.88.1-10+deb12u12 https://access.redhat.com/security/cve/CVE-2025-10148 https://curl.se/docs/CVE-2025-10148.html https://curl.se/docs/CVE-2025-10148.json https://hackerone.com/reports/3330839 https://nvd.nist.gov/vuln/detail/CVE-2025-10148 https://www.cve.org/CVERecord?id=CVE-2025-10148
curl CVE-2025-9086 MEDIUM 7.88.1-10+deb12u12 https://access.redhat.com/security/cve/CVE-2025-9086 https://curl.se/docs/CVE-2025-9086.html https://curl.se/docs/CVE-2025-9086.json https://github.com/curl/curl/commit/c6ae07c6a541e0e96d0040afb6 https://hackerone.com/reports/3294999 https://nvd.nist.gov/vuln/detail/CVE-2025-9086 https://www.cve.org/CVERecord?id=CVE-2025-9086
curl CVE-2024-2379 LOW 7.88.1-10+deb12u12 http://seclists.org/fulldisclosure/2024/Jul/18 http://seclists.org/fulldisclosure/2024/Jul/19 http://seclists.org/fulldisclosure/2024/Jul/20 http://www.openwall.com/lists/oss-security/2024/03/27/2 https://access.redhat.com/security/cve/CVE-2024-2379 https://curl.se/docs/CVE-2024-2379.html https://curl.se/docs/CVE-2024-2379.json https://hackerone.com/reports/2410774 https://nvd.nist.gov/vuln/detail/CVE-2024-2379 https://security.netapp.com/advisory/ntap-20240531-0001/ https://support.apple.com/kb/HT214118 https://support.apple.com/kb/HT214119 https://support.apple.com/kb/HT214120 https://www.cve.org/CVERecord?id=CVE-2024-2379
curl CVE-2025-0725 LOW 7.88.1-10+deb12u12 http://www.openwall.com/lists/oss-security/2025/02/05/3 http://www.openwall.com/lists/oss-security/2025/02/06/2 http://www.openwall.com/lists/oss-security/2025/02/06/4 https://access.redhat.com/security/cve/CVE-2025-0725 https://curl.se/docs/CVE-2025-0725.html https://curl.se/docs/CVE-2025-0725.json https://github.com/curl/curl/commit/76f83f0db23846e254d940ec7 https://hackerone.com/reports/2956023 https://nvd.nist.gov/vuln/detail/CVE-2025-0725 https://security.netapp.com/advisory/ntap-20250306-0009/ https://www.cve.org/CVERecord?id=CVE-2025-0725
dpkg CVE-2025-6297 LOW 1.21.22 https://git.dpkg.org/cgit/dpkg/dpkg.git/commit/?id=ed6bbd445dd8800308c67236ba35d08004c98e82 https://ubuntu.com/security/notices/USN-7768-1 https://www.cve.org/CVERecord?id=CVE-2025-6297
gcc-12-base CVE-2022-27943 LOW 12.2.0-14+deb12u1 https://access.redhat.com/security/cve/CVE-2022-27943 https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105039 https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=1a770b01ef415e114164b6151d1e55acdee09371 https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=9234cdca6ee88badfc00297e72f13dac4e540c79 https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=fc968115a742d9e4674d9725ce9c2106b91b6ead https://gcc.gnu.org/pipermail/gcc-patches/2022-March/592244.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H424YXGW7OKXS2NCAP35OP6Y4P4AW6VG/ https://nvd.nist.gov/vuln/detail/CVE-2022-27943 https://sourceware.org/bugzilla/show_bug.cgi?id=28995 https://www.cve.org/CVERecord?id=CVE-2022-27943
git CVE-2025-48384 HIGH 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:11534 https://access.redhat.com/security/cve/CVE-2025-48384 https://bugzilla.redhat.com/2337824 https://bugzilla.redhat.com/2337956 https://bugzilla.redhat.com/2378806 https://bugzilla.redhat.com/2378808 https://bugzilla.redhat.com/2379124 https://bugzilla.redhat.com/2379125 https://bugzilla.redhat.com/2379326 https://bugzilla.redhat.com/show_bug.cgi?id=2337824 https://bugzilla.redhat.com/show_bug.cgi?id=2337956 https://bugzilla.redhat.com/show_bug.cgi?id=2378806 https://bugzilla.redhat.com/show_bug.cgi?id=2378808 https://bugzilla.redhat.com/show_bug.cgi?id=2379124 https://bugzilla.redhat.com/show_bug.cgi?id=2379125 https://bugzilla.redhat.com/show_bug.cgi?id=2379326 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48385 https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384 https://errata.almalinux.org/8/ALSA-2025-11534.html https://errata.rockylinux.org/RLSA-2025:11534 https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89 https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9 https://linux.oracle.com/cve/CVE-2025-48384.html https://linux.oracle.com/errata/ELSA-2025-11688.html https://nvd.nist.gov/vuln/detail/CVE-2025-48384 https://ubuntu.com/security/notices/USN-7626-1 https://www.cisa.gov/known-exploited-vulnerabilities-catalog https://www.cve.org/CVERecord?id=CVE-2025-48384 https://www.openwall.com/lists/oss-security/2025/07/08/4
git CVE-2025-48385 HIGH 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:11534 https://access.redhat.com/security/cve/CVE-2025-48385 https://bugzilla.redhat.com/2337824 https://bugzilla.redhat.com/2337956 https://bugzilla.redhat.com/2378806 https://bugzilla.redhat.com/2378808 https://bugzilla.redhat.com/2379124 https://bugzilla.redhat.com/2379125 https://bugzilla.redhat.com/2379326 https://bugzilla.redhat.com/show_bug.cgi?id=2337824 https://bugzilla.redhat.com/show_bug.cgi?id=2337956 https://bugzilla.redhat.com/show_bug.cgi?id=2378806 https://bugzilla.redhat.com/show_bug.cgi?id=2378808 https://bugzilla.redhat.com/show_bug.cgi?id=2379124 https://bugzilla.redhat.com/show_bug.cgi?id=2379125 https://bugzilla.redhat.com/show_bug.cgi?id=2379326 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48385 https://errata.almalinux.org/8/ALSA-2025-11534.html https://errata.rockylinux.org/RLSA-2025:11534 https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655 https://linux.oracle.com/cve/CVE-2025-48385.html https://linux.oracle.com/errata/ELSA-2025-11534.html https://nvd.nist.gov/vuln/detail/CVE-2025-48385 https://ubuntu.com/security/notices/USN-7626-1 https://www.cve.org/CVERecord?id=CVE-2025-48385 https://www.openwall.com/lists/oss-security/2025/07/08/4
git CVE-2025-27613 MEDIUM 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:11534 https://access.redhat.com/security/cve/CVE-2025-27613 https://bugzilla.redhat.com/2337824 https://bugzilla.redhat.com/2337956 https://bugzilla.redhat.com/2378806 https://bugzilla.redhat.com/2378808 https://bugzilla.redhat.com/2379124 https://bugzilla.redhat.com/2379125 https://bugzilla.redhat.com/2379326 https://bugzilla.redhat.com/show_bug.cgi?id=2337824 https://bugzilla.redhat.com/show_bug.cgi?id=2337956 https://bugzilla.redhat.com/show_bug.cgi?id=2378806 https://bugzilla.redhat.com/show_bug.cgi?id=2378808 https://bugzilla.redhat.com/show_bug.cgi?id=2379124 https://bugzilla.redhat.com/show_bug.cgi?id=2379125 https://bugzilla.redhat.com/show_bug.cgi?id=2379326 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48385 https://errata.almalinux.org/8/ALSA-2025-11534.html https://errata.rockylinux.org/RLSA-2025:11534 https://github.com/j6t/gitk/compare/465f03869ae11acd04abfa1b83c67879c867410c..026c397d911cde55924d7eb1311d0fd6e2e105d5 https://github.com/j6t/gitk/compare/7dd272eca153058da2e8d5b9960bbbf0b4f0cbaa..67a128b91e25978a15f9f7e194d81b441d603652 https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v https://linux.oracle.com/cve/CVE-2025-27613.html https://linux.oracle.com/errata/ELSA-2025-11534.html https://lore.kernel.org/git/[email protected]/ https://nvd.nist.gov/vuln/detail/CVE-2025-27613 https://ubuntu.com/security/notices/USN-7626-1 https://ubuntu.com/security/notices/USN-7626-2 https://ubuntu.com/security/notices/USN-7626-3 https://www.cve.org/CVERecord?id=CVE-2025-27613 https://www.openwall.com/lists/oss-security/2025/07/08/4
git CVE-2018-1000021 LOW 1:2.39.5-0+deb12u2 http://www.batterystapl.es/2018/01/security-implications-of-ansi-escape.html https://access.redhat.com/security/cve/CVE-2018-1000021 https://nvd.nist.gov/vuln/detail/CVE-2018-1000021 https://www.cve.org/CVERecord?id=CVE-2018-1000021
git CVE-2022-24975 LOW 1:2.39.5-0+deb12u2 https://access.redhat.com/security/cve/CVE-2022-24975 https://github.com/git/git/blob/2dc94da3744bfbbf145eca587a0f5ff480cc5867/Documentation/git-clone.txt#L185-L191 https://lore.kernel.org/git/xmqq4k14qe9g.fsf%40gitster.g/ https://nvd.nist.gov/vuln/detail/CVE-2022-24975 https://www.aquasec.com/blog/undetected-hard-code-secrets-expose-corporations/ https://www.cve.org/CVERecord?id=CVE-2022-24975 https://wwws.nightwatchcybersecurity.com/2022/02/11/gitbleed/
git CVE-2024-52005 LOW 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:8414 https://access.redhat.com/security/cve/CVE-2024-52005 https://bugzilla.redhat.com/2338289 https://bugzilla.redhat.com/show_bug.cgi?id=2338289 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52005 https://errata.almalinux.org/8/ALSA-2025-8414.html https://errata.rockylinux.org/RLSA-2025:8414 https://github.com/git/git/security/advisories/GHSA-7jjc-gg6m-3329 https://linux.oracle.com/cve/CVE-2024-52005.html https://linux.oracle.com/errata/ELSA-2025-8414.html https://lore.kernel.org/git/[email protected] https://lore.kernel.org/git/[email protected]/T/#t https://nvd.nist.gov/vuln/detail/CVE-2024-52005 https://www.cve.org/CVERecord?id=CVE-2024-52005
git CVE-2025-46835 LOW 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:11534 https://access.redhat.com/security/cve/CVE-2025-46835 https://bugzilla.redhat.com/2337824 https://bugzilla.redhat.com/2337956 https://bugzilla.redhat.com/2378806 https://bugzilla.redhat.com/2378808 https://bugzilla.redhat.com/2379124 https://bugzilla.redhat.com/2379125 https://bugzilla.redhat.com/2379326 https://bugzilla.redhat.com/show_bug.cgi?id=2337824 https://bugzilla.redhat.com/show_bug.cgi?id=2337956 https://bugzilla.redhat.com/show_bug.cgi?id=2378806 https://bugzilla.redhat.com/show_bug.cgi?id=2378808 https://bugzilla.redhat.com/show_bug.cgi?id=2379124 https://bugzilla.redhat.com/show_bug.cgi?id=2379125 https://bugzilla.redhat.com/show_bug.cgi?id=2379326 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48385 https://errata.almalinux.org/8/ALSA-2025-11534.html https://errata.rockylinux.org/RLSA-2025:11534 https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg https://linux.oracle.com/cve/CVE-2025-46835.html https://linux.oracle.com/errata/ELSA-2025-11534.html https://nvd.nist.gov/vuln/detail/CVE-2025-46835 https://ubuntu.com/security/notices/USN-7626-1 https://ubuntu.com/security/notices/USN-7626-2 https://ubuntu.com/security/notices/USN-7626-3 https://www.cve.org/CVERecord?id=CVE-2025-46835 https://www.openwall.com/lists/oss-security/2025/07/08/4
git-man CVE-2025-48384 HIGH 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:11534 https://access.redhat.com/security/cve/CVE-2025-48384 https://bugzilla.redhat.com/2337824 https://bugzilla.redhat.com/2337956 https://bugzilla.redhat.com/2378806 https://bugzilla.redhat.com/2378808 https://bugzilla.redhat.com/2379124 https://bugzilla.redhat.com/2379125 https://bugzilla.redhat.com/2379326 https://bugzilla.redhat.com/show_bug.cgi?id=2337824 https://bugzilla.redhat.com/show_bug.cgi?id=2337956 https://bugzilla.redhat.com/show_bug.cgi?id=2378806 https://bugzilla.redhat.com/show_bug.cgi?id=2378808 https://bugzilla.redhat.com/show_bug.cgi?id=2379124 https://bugzilla.redhat.com/show_bug.cgi?id=2379125 https://bugzilla.redhat.com/show_bug.cgi?id=2379326 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48385 https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384 https://errata.almalinux.org/8/ALSA-2025-11534.html https://errata.rockylinux.org/RLSA-2025:11534 https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89 https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9 https://linux.oracle.com/cve/CVE-2025-48384.html https://linux.oracle.com/errata/ELSA-2025-11688.html https://nvd.nist.gov/vuln/detail/CVE-2025-48384 https://ubuntu.com/security/notices/USN-7626-1 https://www.cisa.gov/known-exploited-vulnerabilities-catalog https://www.cve.org/CVERecord?id=CVE-2025-48384 https://www.openwall.com/lists/oss-security/2025/07/08/4
git-man CVE-2025-48385 HIGH 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:11534 https://access.redhat.com/security/cve/CVE-2025-48385 https://bugzilla.redhat.com/2337824 https://bugzilla.redhat.com/2337956 https://bugzilla.redhat.com/2378806 https://bugzilla.redhat.com/2378808 https://bugzilla.redhat.com/2379124 https://bugzilla.redhat.com/2379125 https://bugzilla.redhat.com/2379326 https://bugzilla.redhat.com/show_bug.cgi?id=2337824 https://bugzilla.redhat.com/show_bug.cgi?id=2337956 https://bugzilla.redhat.com/show_bug.cgi?id=2378806 https://bugzilla.redhat.com/show_bug.cgi?id=2378808 https://bugzilla.redhat.com/show_bug.cgi?id=2379124 https://bugzilla.redhat.com/show_bug.cgi?id=2379125 https://bugzilla.redhat.com/show_bug.cgi?id=2379326 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48385 https://errata.almalinux.org/8/ALSA-2025-11534.html https://errata.rockylinux.org/RLSA-2025:11534 https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655 https://linux.oracle.com/cve/CVE-2025-48385.html https://linux.oracle.com/errata/ELSA-2025-11534.html https://nvd.nist.gov/vuln/detail/CVE-2025-48385 https://ubuntu.com/security/notices/USN-7626-1 https://www.cve.org/CVERecord?id=CVE-2025-48385 https://www.openwall.com/lists/oss-security/2025/07/08/4
git-man CVE-2025-27613 MEDIUM 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:11534 https://access.redhat.com/security/cve/CVE-2025-27613 https://bugzilla.redhat.com/2337824 https://bugzilla.redhat.com/2337956 https://bugzilla.redhat.com/2378806 https://bugzilla.redhat.com/2378808 https://bugzilla.redhat.com/2379124 https://bugzilla.redhat.com/2379125 https://bugzilla.redhat.com/2379326 https://bugzilla.redhat.com/show_bug.cgi?id=2337824 https://bugzilla.redhat.com/show_bug.cgi?id=2337956 https://bugzilla.redhat.com/show_bug.cgi?id=2378806 https://bugzilla.redhat.com/show_bug.cgi?id=2378808 https://bugzilla.redhat.com/show_bug.cgi?id=2379124 https://bugzilla.redhat.com/show_bug.cgi?id=2379125 https://bugzilla.redhat.com/show_bug.cgi?id=2379326 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48385 https://errata.almalinux.org/8/ALSA-2025-11534.html https://errata.rockylinux.org/RLSA-2025:11534 https://github.com/j6t/gitk/compare/465f03869ae11acd04abfa1b83c67879c867410c..026c397d911cde55924d7eb1311d0fd6e2e105d5 https://github.com/j6t/gitk/compare/7dd272eca153058da2e8d5b9960bbbf0b4f0cbaa..67a128b91e25978a15f9f7e194d81b441d603652 https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v https://linux.oracle.com/cve/CVE-2025-27613.html https://linux.oracle.com/errata/ELSA-2025-11534.html https://lore.kernel.org/git/[email protected]/ https://nvd.nist.gov/vuln/detail/CVE-2025-27613 https://ubuntu.com/security/notices/USN-7626-1 https://ubuntu.com/security/notices/USN-7626-2 https://ubuntu.com/security/notices/USN-7626-3 https://www.cve.org/CVERecord?id=CVE-2025-27613 https://www.openwall.com/lists/oss-security/2025/07/08/4
git-man CVE-2018-1000021 LOW 1:2.39.5-0+deb12u2 http://www.batterystapl.es/2018/01/security-implications-of-ansi-escape.html https://access.redhat.com/security/cve/CVE-2018-1000021 https://nvd.nist.gov/vuln/detail/CVE-2018-1000021 https://www.cve.org/CVERecord?id=CVE-2018-1000021
git-man CVE-2022-24975 LOW 1:2.39.5-0+deb12u2 https://access.redhat.com/security/cve/CVE-2022-24975 https://github.com/git/git/blob/2dc94da3744bfbbf145eca587a0f5ff480cc5867/Documentation/git-clone.txt#L185-L191 https://lore.kernel.org/git/xmqq4k14qe9g.fsf%40gitster.g/ https://nvd.nist.gov/vuln/detail/CVE-2022-24975 https://www.aquasec.com/blog/undetected-hard-code-secrets-expose-corporations/ https://www.cve.org/CVERecord?id=CVE-2022-24975 https://wwws.nightwatchcybersecurity.com/2022/02/11/gitbleed/
git-man CVE-2024-52005 LOW 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:8414 https://access.redhat.com/security/cve/CVE-2024-52005 https://bugzilla.redhat.com/2338289 https://bugzilla.redhat.com/show_bug.cgi?id=2338289 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52005 https://errata.almalinux.org/8/ALSA-2025-8414.html https://errata.rockylinux.org/RLSA-2025:8414 https://github.com/git/git/security/advisories/GHSA-7jjc-gg6m-3329 https://linux.oracle.com/cve/CVE-2024-52005.html https://linux.oracle.com/errata/ELSA-2025-8414.html https://lore.kernel.org/git/[email protected] https://lore.kernel.org/git/[email protected]/T/#t https://nvd.nist.gov/vuln/detail/CVE-2024-52005 https://www.cve.org/CVERecord?id=CVE-2024-52005
git-man CVE-2025-46835 LOW 1:2.39.5-0+deb12u2 https://access.redhat.com/errata/RHSA-2025:11534 https://access.redhat.com/security/cve/CVE-2025-46835 https://bugzilla.redhat.com/2337824 https://bugzilla.redhat.com/2337956 https://bugzilla.redhat.com/2378806 https://bugzilla.redhat.com/2378808 https://bugzilla.redhat.com/2379124 https://bugzilla.redhat.com/2379125 https://bugzilla.redhat.com/2379326 https://bugzilla.redhat.com/show_bug.cgi?id=2337824 https://bugzilla.redhat.com/show_bug.cgi?id=2337956 https://bugzilla.redhat.com/show_bug.cgi?id=2378806 https://bugzilla.redhat.com/show_bug.cgi?id=2378808 https://bugzilla.redhat.com/show_bug.cgi?id=2379124 https://bugzilla.redhat.com/show_bug.cgi?id=2379125 https://bugzilla.redhat.com/show_bug.cgi?id=2379326 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48385 https://errata.almalinux.org/8/ALSA-2025-11534.html https://errata.rockylinux.org/RLSA-2025:11534 https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg https://linux.oracle.com/cve/CVE-2025-46835.html https://linux.oracle.com/errata/ELSA-2025-11534.html https://nvd.nist.gov/vuln/detail/CVE-2025-46835 https://ubuntu.com/security/notices/USN-7626-1 https://ubuntu.com/security/notices/USN-7626-2 https://ubuntu.com/security/notices/USN-7626-3 https://www.cve.org/CVERecord?id=CVE-2025-46835 https://www.openwall.com/lists/oss-security/2025/07/08/4
gpgv CVE-2025-30258 MEDIUM 2.2.40-1.1 https://access.redhat.com/security/cve/CVE-2025-30258 https://dev.gnupg.org/T7527 https://dev.gnupg.org/rG48978ccb4e20866472ef18436a32744350a65158 https://lists.gnupg.org/pipermail/gnupg-announce/2025q1/000491.html https://nvd.nist.gov/vuln/detail/CVE-2025-30258 https://ubuntu.com/security/notices/USN-7412-1 https://www.cve.org/CVERecord?id=CVE-2025-30258
gpgv CVE-2022-3219 LOW 2.2.40-1.1 https://access.redhat.com/security/cve/CVE-2022-3219 https://bugzilla.redhat.com/show_bug.cgi?id=2127010 https://dev.gnupg.org/D556 https://dev.gnupg.org/T5993 https://marc.info/?l=oss-security&m=165696590211434&w=4 https://nvd.nist.gov/vuln/detail/CVE-2022-3219 https://security.netapp.com/advisory/ntap-20230324-0001/ https://www.cve.org/CVERecord?id=CVE-2022-3219
libapt-pkg6.0 CVE-2011-3374 LOW 2.6.1 https://access.redhat.com/security/cve/cve-2011-3374 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=642480 https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3374.html https://seclists.org/fulldisclosure/2011/Sep/221 https://security-tracker.debian.org/tracker/CVE-2011-3374 https://snyk.io/vuln/SNYK-LINUX-APT-116518 https://ubuntu.com/security/CVE-2011-3374
libblkid1 CVE-2022-0563 LOW 2.38.1-5+deb12u3 https://access.redhat.com/security/cve/CVE-2022-0563 https://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline/ https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w%40ws.net.home/T/#u https://lore.kernel.org/util-linux/[email protected]/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.gentoo.org/glsa/202401-08 https://security.netapp.com/advisory/ntap-20220331-0002/ https://www.cve.org/CVERecord?id=CVE-2022-0563
libbpf1 CVE-2025-29481 LOW 1:1.1.0-1 https://access.redhat.com/security/cve/CVE-2025-29481 https://github.com/lmarch2/poc/blob/main/libbpf/libbpf.md https://nvd.nist.gov/vuln/detail/CVE-2025-29481 https://www.cve.org/CVERecord?id=CVE-2025-29481
libc-bin CVE-2025-4802 HIGH 2.36-9+deb12u10 2.36-9+deb12u11 http://www.openwall.com/lists/oss-security/2025/05/16/7 http://www.openwall.com/lists/oss-security/2025/05/17/2 https://access.redhat.com/errata/RHSA-2025:8686 https://access.redhat.com/security/cve/CVE-2025-4802 https://bugzilla.redhat.com/2367468 https://bugzilla.redhat.com/show_bug.cgi?id=2367468 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4802 https://errata.almalinux.org/8/ALSA-2025-8686.html https://errata.rockylinux.org/RLSA-2025:8686 https://linux.oracle.com/cve/CVE-2025-4802.html https://linux.oracle.com/errata/ELSA-2025-8686.html https://nvd.nist.gov/vuln/detail/CVE-2025-4802 https://sourceware.org/bugzilla/show_bug.cgi?id=32976 https://sourceware.org/cgit/glibc/commit/?id=1e18586c5820e329f741d5c710275e165581380e https://sourceware.org/cgit/glibc/commit/?id=5451fa962cd0a90a0e2ec1d8910a559ace02bba0 https://ubuntu.com/security/notices/USN-7541-1 https://www.cve.org/CVERecord?id=CVE-2025-4802 https://www.openwall.com/lists/oss-security/2025/05/16/7 https://www.openwall.com/lists/oss-security/2025/05/17/2
libc-bin CVE-2025-8058 MEDIUM 2.36-9+deb12u10 2.36-9+deb12u13 https://access.redhat.com/errata/RHSA-2025:12980 https://access.redhat.com/security/cve/CVE-2025-8058 https://bugzilla.redhat.com/2383146 https://bugzilla.redhat.com/show_bug.cgi?id=2383146 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8058 https://errata.almalinux.org/8/ALSA-2025-12980.html https://errata.rockylinux.org/RLSA-2025:12980 https://linux.oracle.com/cve/CVE-2025-8058.html https://linux.oracle.com/errata/ELSA-2025-20595.html https://nvd.nist.gov/vuln/detail/CVE-2025-8058 https://sourceware.org/bugzilla/show_bug.cgi?id=33185 https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2025-0005 https://sourceware.org/git/?p=glibc.git;a=commit;h=3ff17af18c38727b88d9115e536c069e6b5d601f https://ubuntu.com/security/notices/USN-7760-1 https://www.cve.org/CVERecord?id=CVE-2025-8058
libc-bin CVE-2010-4756 LOW 2.36-9+deb12u10 http://cxib.net/stuff/glob-0day.c http://securityreason.com/achievement_securityalert/89 http://securityreason.com/exploitalert/9223 https://access.redhat.com/security/cve/CVE-2010-4756 https://bugzilla.redhat.com/show_bug.cgi?id=681681 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4756 https://nvd.nist.gov/vuln/detail/CVE-2010-4756 https://www.cve.org/CVERecord?id=CVE-2010-4756
libc-bin CVE-2018-20796 LOW 2.36-9+deb12u10 http://www.securityfocus.com/bid/107160 https://access.redhat.com/security/cve/CVE-2018-20796 https://debbugs.gnu.org/cgi/bugreport.cgi?bug=34141 https://lists.gnu.org/archive/html/bug-gnulib/2019-01/msg00108.html https://nvd.nist.gov/vuln/detail/CVE-2018-20796 https://security.netapp.com/advisory/ntap-20190315-0002/ https://support.f5.com/csp/article/K26346590?utm_source=f5support&amp%3Butm_medium=RSS https://www.cve.org/CVERecord?id=CVE-2018-20796
libc-bin CVE-2019-1010022 LOW 2.36-9+deb12u10 https://access.redhat.com/security/cve/CVE-2019-1010022 https://nvd.nist.gov/vuln/detail/CVE-2019-1010022 https://security-tracker.debian.org/tracker/CVE-2019-1010022 https://sourceware.org/bugzilla/show_bug.cgi?id=22850 https://sourceware.org/bugzilla/show_bug.cgi?id=22850#c3 https://ubuntu.com/security/CVE-2019-1010022 https://www.cve.org/CVERecord?id=CVE-2019-1010022
libc-bin CVE-2019-1010023 LOW 2.36-9+deb12u10 http://www.securityfocus.com/bid/109167 https://access.redhat.com/security/cve/CVE-2019-1010023 https://nvd.nist.gov/vuln/detail/CVE-2019-1010023 https://security-tracker.debian.org/tracker/CVE-2019-1010023 https://sourceware.org/bugzilla/show_bug.cgi?id=22851 https://support.f5.com/csp/article/K11932200?utm_source=f5support&amp%3Butm_medium=RSS https://ubuntu.com/security/CVE-2019-1010023 https://www.cve.org/CVERecord?id=CVE-2019-1010023
libc-bin CVE-2019-1010024 LOW 2.36-9+deb12u10 http://www.securityfocus.com/bid/109162 https://access.redhat.com/security/cve/CVE-2019-1010024 https://nvd.nist.gov/vuln/detail/CVE-2019-1010024 https://security-tracker.debian.org/tracker/CVE-2019-1010024 https://sourceware.org/bugzilla/show_bug.cgi?id=22852 https://support.f5.com/csp/article/K06046097 https://support.f5.com/csp/article/K06046097?utm_source=f5support&amp%3Butm_medium=RSS https://ubuntu.com/security/CVE-2019-1010024 https://www.cve.org/CVERecord?id=CVE-2019-1010024
libc-bin CVE-2019-1010025 LOW 2.36-9+deb12u10 https://access.redhat.com/security/cve/CVE-2019-1010025 https://nvd.nist.gov/vuln/detail/CVE-2019-1010025 https://security-tracker.debian.org/tracker/CVE-2019-1010025 https://sourceware.org/bugzilla/show_bug.cgi?id=22853 https://support.f5.com/csp/article/K06046097 https://support.f5.com/csp/article/K06046097?utm_source=f5support&amp%3Butm_medium=RSS https://ubuntu.com/security/CVE-2019-1010025 https://www.cve.org/CVERecord?id=CVE-2019-1010025
libc-bin CVE-2019-9192 LOW 2.36-9+deb12u10 https://access.redhat.com/security/cve/CVE-2019-9192 https://nvd.nist.gov/vuln/detail/CVE-2019-9192 https://sourceware.org/bugzilla/show_bug.cgi?id=24269 https://support.f5.com/csp/article/K26346590?utm_source=f5support&amp%3Butm_medium=RSS https://www.cve.org/CVERecord?id=CVE-2019-9192
libc6 CVE-2025-4802 HIGH 2.36-9+deb12u10 2.36-9+deb12u11 http://www.openwall.com/lists/oss-security/2025/05/16/7 http://www.openwall.com/lists/oss-security/2025/05/17/2 https://access.redhat.com/errata/RHSA-2025:8686 https://access.redhat.com/security/cve/CVE-2025-4802 https://bugzilla.redhat.com/2367468 https://bugzilla.redhat.com/show_bug.cgi?id=2367468 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4802 https://errata.almalinux.org/8/ALSA-2025-8686.html https://errata.rockylinux.org/RLSA-2025:8686 https://linux.oracle.com/cve/CVE-2025-4802.html https://linux.oracle.com/errata/ELSA-2025-8686.html https://nvd.nist.gov/vuln/detail/CVE-2025-4802 https://sourceware.org/bugzilla/show_bug.cgi?id=32976 https://sourceware.org/cgit/glibc/commit/?id=1e18586c5820e329f741d5c710275e165581380e https://sourceware.org/cgit/glibc/commit/?id=5451fa962cd0a90a0e2ec1d8910a559ace02bba0 https://ubuntu.com/security/notices/USN-7541-1 https://www.cve.org/CVERecord?id=CVE-2025-4802 https://www.openwall.com/lists/oss-security/2025/05/16/7 https://www.openwall.com/lists/oss-security/2025/05/17/2
libc6 CVE-2025-8058 MEDIUM 2.36-9+deb12u10 2.36-9+deb12u13 https://access.redhat.com/errata/RHSA-2025:12980 https://access.redhat.com/security/cve/CVE-2025-8058 https://bugzilla.redhat.com/2383146 https://bugzilla.redhat.com/show_bug.cgi?id=2383146 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8058 https://errata.almalinux.org/8/ALSA-2025-12980.html https://errata.rockylinux.org/RLSA-2025:12980 https://linux.oracle.com/cve/CVE-2025-8058.html https://linux.oracle.com/errata/ELSA-2025-20595.html https://nvd.nist.gov/vuln/detail/CVE-2025-8058 https://sourceware.org/bugzilla/show_bug.cgi?id=33185 https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2025-0005 https://sourceware.org/git/?p=glibc.git;a=commit;h=3ff17af18c38727b88d9115e536c069e6b5d601f https://ubuntu.com/security/notices/USN-7760-1 https://www.cve.org/CVERecord?id=CVE-2025-8058
libc6 CVE-2010-4756 LOW 2.36-9+deb12u10 http://cxib.net/stuff/glob-0day.c http://securityreason.com/achievement_securityalert/89 http://securityreason.com/exploitalert/9223 https://access.redhat.com/security/cve/CVE-2010-4756 https://bugzilla.redhat.com/show_bug.cgi?id=681681 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4756 https://nvd.nist.gov/vuln/detail/CVE-2010-4756 https://www.cve.org/CVERecord?id=CVE-2010-4756
libc6 CVE-2018-20796 LOW 2.36-9+deb12u10 http://www.securityfocus.com/bid/107160 https://access.redhat.com/security/cve/CVE-2018-20796 https://debbugs.gnu.org/cgi/bugreport.cgi?bug=34141 https://lists.gnu.org/archive/html/bug-gnulib/2019-01/msg00108.html https://nvd.nist.gov/vuln/detail/CVE-2018-20796 https://security.netapp.com/advisory/ntap-20190315-0002/ https://support.f5.com/csp/article/K26346590?utm_source=f5support&amp%3Butm_medium=RSS https://www.cve.org/CVERecord?id=CVE-2018-20796
libc6 CVE-2019-1010022 LOW 2.36-9+deb12u10 https://access.redhat.com/security/cve/CVE-2019-1010022 https://nvd.nist.gov/vuln/detail/CVE-2019-1010022 https://security-tracker.debian.org/tracker/CVE-2019-1010022 https://sourceware.org/bugzilla/show_bug.cgi?id=22850 https://sourceware.org/bugzilla/show_bug.cgi?id=22850#c3 https://ubuntu.com/security/CVE-2019-1010022 https://www.cve.org/CVERecord?id=CVE-2019-1010022
libc6 CVE-2019-1010023 LOW 2.36-9+deb12u10 http://www.securityfocus.com/bid/109167 https://access.redhat.com/security/cve/CVE-2019-1010023 https://nvd.nist.gov/vuln/detail/CVE-2019-1010023 https://security-tracker.debian.org/tracker/CVE-2019-1010023 https://sourceware.org/bugzilla/show_bug.cgi?id=22851 https://support.f5.com/csp/article/K11932200?utm_source=f5support&amp%3Butm_medium=RSS https://ubuntu.com/security/CVE-2019-1010023 https://www.cve.org/CVERecord?id=CVE-2019-1010023
libc6 CVE-2019-1010024 LOW 2.36-9+deb12u10 http://www.securityfocus.com/bid/109162 https://access.redhat.com/security/cve/CVE-2019-1010024 https://nvd.nist.gov/vuln/detail/CVE-2019-1010024 https://security-tracker.debian.org/tracker/CVE-2019-1010024 https://sourceware.org/bugzilla/show_bug.cgi?id=22852 https://support.f5.com/csp/article/K06046097 https://support.f5.com/csp/article/K06046097?utm_source=f5support&amp%3Butm_medium=RSS https://ubuntu.com/security/CVE-2019-1010024 https://www.cve.org/CVERecord?id=CVE-2019-1010024
libc6 CVE-2019-1010025 LOW 2.36-9+deb12u10 https://access.redhat.com/security/cve/CVE-2019-1010025 https://nvd.nist.gov/vuln/detail/CVE-2019-1010025 https://security-tracker.debian.org/tracker/CVE-2019-1010025 https://sourceware.org/bugzilla/show_bug.cgi?id=22853 https://support.f5.com/csp/article/K06046097 https://support.f5.com/csp/article/K06046097?utm_source=f5support&amp%3Butm_medium=RSS https://ubuntu.com/security/CVE-2019-1010025 https://www.cve.org/CVERecord?id=CVE-2019-1010025
libc6 CVE-2019-9192 LOW 2.36-9+deb12u10 https://access.redhat.com/security/cve/CVE-2019-9192 https://nvd.nist.gov/vuln/detail/CVE-2019-9192 https://sourceware.org/bugzilla/show_bug.cgi?id=24269 https://support.f5.com/csp/article/K26346590?utm_source=f5support&amp%3Butm_medium=RSS https://www.cve.org/CVERecord?id=CVE-2019-9192
libcurl3-gnutls CVE-2025-10148 MEDIUM 7.88.1-10+deb12u12 https://access.redhat.com/security/cve/CVE-2025-10148 https://curl.se/docs/CVE-2025-10148.html https://curl.se/docs/CVE-2025-10148.json https://hackerone.com/reports/3330839 https://nvd.nist.gov/vuln/detail/CVE-2025-10148 https://www.cve.org/CVERecord?id=CVE-2025-10148
libcurl3-gnutls CVE-2025-9086 MEDIUM 7.88.1-10+deb12u12 https://access.redhat.com/security/cve/CVE-2025-9086 https://curl.se/docs/CVE-2025-9086.html https://curl.se/docs/CVE-2025-9086.json https://github.com/curl/curl/commit/c6ae07c6a541e0e96d0040afb6 https://hackerone.com/reports/3294999 https://nvd.nist.gov/vuln/detail/CVE-2025-9086 https://www.cve.org/CVERecord?id=CVE-2025-9086
libcurl3-gnutls CVE-2024-2379 LOW 7.88.1-10+deb12u12 http://seclists.org/fulldisclosure/2024/Jul/18 http://seclists.org/fulldisclosure/2024/Jul/19 http://seclists.org/fulldisclosure/2024/Jul/20 http://www.openwall.com/lists/oss-security/2024/03/27/2 https://access.redhat.com/security/cve/CVE-2024-2379 https://curl.se/docs/CVE-2024-2379.html https://curl.se/docs/CVE-2024-2379.json https://hackerone.com/reports/2410774 https://nvd.nist.gov/vuln/detail/CVE-2024-2379 https://security.netapp.com/advisory/ntap-20240531-0001/ https://support.apple.com/kb/HT214118 https://support.apple.com/kb/HT214119 https://support.apple.com/kb/HT214120 https://www.cve.org/CVERecord?id=CVE-2024-2379
libcurl3-gnutls CVE-2025-0725 LOW 7.88.1-10+deb12u12 http://www.openwall.com/lists/oss-security/2025/02/05/3 http://www.openwall.com/lists/oss-security/2025/02/06/2 http://www.openwall.com/lists/oss-security/2025/02/06/4 https://access.redhat.com/security/cve/CVE-2025-0725 https://curl.se/docs/CVE-2025-0725.html https://curl.se/docs/CVE-2025-0725.json https://github.com/curl/curl/commit/76f83f0db23846e254d940ec7 https://hackerone.com/reports/2956023 https://nvd.nist.gov/vuln/detail/CVE-2025-0725 https://security.netapp.com/advisory/ntap-20250306-0009/ https://www.cve.org/CVERecord?id=CVE-2025-0725
libcurl4 CVE-2025-10148 MEDIUM 7.88.1-10+deb12u12 https://access.redhat.com/security/cve/CVE-2025-10148 https://curl.se/docs/CVE-2025-10148.html https://curl.se/docs/CVE-2025-10148.json https://hackerone.com/reports/3330839 https://nvd.nist.gov/vuln/detail/CVE-2025-10148 https://www.cve.org/CVERecord?id=CVE-2025-10148
libcurl4 CVE-2025-9086 MEDIUM 7.88.1-10+deb12u12 https://access.redhat.com/security/cve/CVE-2025-9086 https://curl.se/docs/CVE-2025-9086.html https://curl.se/docs/CVE-2025-9086.json https://github.com/curl/curl/commit/c6ae07c6a541e0e96d0040afb6 https://hackerone.com/reports/3294999 https://nvd.nist.gov/vuln/detail/CVE-2025-9086 https://www.cve.org/CVERecord?id=CVE-2025-9086
libcurl4 CVE-2024-2379 LOW 7.88.1-10+deb12u12 http://seclists.org/fulldisclosure/2024/Jul/18 http://seclists.org/fulldisclosure/2024/Jul/19 http://seclists.org/fulldisclosure/2024/Jul/20 http://www.openwall.com/lists/oss-security/2024/03/27/2 https://access.redhat.com/security/cve/CVE-2024-2379 https://curl.se/docs/CVE-2024-2379.html https://curl.se/docs/CVE-2024-2379.json https://hackerone.com/reports/2410774 https://nvd.nist.gov/vuln/detail/CVE-2024-2379 https://security.netapp.com/advisory/ntap-20240531-0001/ https://support.apple.com/kb/HT214118 https://support.apple.com/kb/HT214119 https://support.apple.com/kb/HT214120 https://www.cve.org/CVERecord?id=CVE-2024-2379
libcurl4 CVE-2025-0725 LOW 7.88.1-10+deb12u12 http://www.openwall.com/lists/oss-security/2025/02/05/3 http://www.openwall.com/lists/oss-security/2025/02/06/2 http://www.openwall.com/lists/oss-security/2025/02/06/4 https://access.redhat.com/security/cve/CVE-2025-0725 https://curl.se/docs/CVE-2025-0725.html https://curl.se/docs/CVE-2025-0725.json https://github.com/curl/curl/commit/76f83f0db23846e254d940ec7 https://hackerone.com/reports/2956023 https://nvd.nist.gov/vuln/detail/CVE-2025-0725 https://security.netapp.com/advisory/ntap-20250306-0009/ https://www.cve.org/CVERecord?id=CVE-2025-0725
libelf1 CVE-2024-25260 LOW 0.188-2.1 https://access.redhat.com/security/cve/CVE-2024-25260 https://github.com/schsiung/fuzzer_issues/issues/1 https://nvd.nist.gov/vuln/detail/CVE-2024-25260 https://sourceware.org/bugzilla/show_bug.cgi?id=31058 https://sourceware.org/elfutils/ https://ubuntu.com/security/notices/USN-7369-1 https://www.cve.org/CVERecord?id=CVE-2024-25260
libelf1 CVE-2025-1352 LOW 0.188-2.1 https://access.redhat.com/security/cve/CVE-2025-1352 https://nvd.nist.gov/vuln/detail/CVE-2025-1352 https://sourceware.org/bugzilla/attachment.cgi?id=15923 https://sourceware.org/bugzilla/show_bug.cgi?id=32650 https://sourceware.org/bugzilla/show_bug.cgi?id=32650#c2 https://vuldb.com/?ctiid.295960 https://vuldb.com/?id.295960 https://vuldb.com/?submit.495965 https://www.cve.org/CVERecord?id=CVE-2025-1352 https://www.gnu.org/
libelf1 CVE-2025-1365 LOW 0.188-2.1 https://access.redhat.com/security/cve/CVE-2025-1365 https://nvd.nist.gov/vuln/detail/CVE-2025-1365 https://sourceware.org/bugzilla/attachment.cgi?id=15925 https://sourceware.org/bugzilla/show_bug.cgi?id=32654 https://sourceware.org/bugzilla/show_bug.cgi?id=32654#c2 https://ubuntu.com/security/notices/USN-7369-1 https://vuldb.com/?ctiid.295977 https://vuldb.com/?id.295977 https://vuldb.com/?submit.496483 https://www.cve.org/CVERecord?id=CVE-2025-1365 https://www.gnu.org/
libelf1 CVE-2025-1371 LOW 0.188-2.1 https://access.redhat.com/security/cve/CVE-2025-1371 https://nvd.nist.gov/vuln/detail/CVE-2025-1371 https://sourceware.org/bugzilla/attachment.cgi?id=15926 https://sourceware.org/bugzilla/show_bug.cgi?id=32655 https://sourceware.org/bugzilla/show_bug.cgi?id=32655#c2 https://ubuntu.com/security/notices/USN-7369-1 https://vuldb.com/?ctiid.295978 https://vuldb.com/?id.295978 https://vuldb.com/?submit.496484 https://www.cve.org/CVERecord?id=CVE-2025-1371 https://www.gnu.org/
libelf1 CVE-2025-1372 LOW 0.188-2.1 https://access.redhat.com/security/cve/CVE-2025-1372 https://nvd.nist.gov/vuln/detail/CVE-2025-1372 https://sourceware.org/bugzilla/attachment.cgi?id=15927 https://sourceware.org/bugzilla/show_bug.cgi?id=32656 https://sourceware.org/bugzilla/show_bug.cgi?id=32656#c3 https://sourceware.org/bugzilla/show_bug.cgi?id=32657 https://ubuntu.com/security/notices/USN-7369-1 https://vuldb.com/?ctiid.295981 https://vuldb.com/?id.295981 https://vuldb.com/?submit.496485 https://www.cve.org/CVERecord?id=CVE-2025-1372 https://www.gnu.org/
libelf1 CVE-2025-1376 LOW 0.188-2.1 https://access.redhat.com/security/cve/CVE-2025-1376 https://nvd.nist.gov/vuln/detail/CVE-2025-1376 https://sourceware.org/bugzilla/attachment.cgi?id=15940 https://sourceware.org/bugzilla/show_bug.cgi?id=32672 https://sourceware.org/bugzilla/show_bug.cgi?id=32672#c3 https://vuldb.com/?ctiid.295984 https://vuldb.com/?id.295984 https://vuldb.com/?submit.497538 https://www.cve.org/CVERecord?id=CVE-2025-1376 https://www.gnu.org/
libelf1 CVE-2025-1377 LOW 0.188-2.1 https://access.redhat.com/security/cve/CVE-2025-1377 https://nvd.nist.gov/vuln/detail/CVE-2025-1377 https://sourceware.org/bugzilla/attachment.cgi?id=15941 https://sourceware.org/bugzilla/show_bug.cgi?id=32673 https://sourceware.org/bugzilla/show_bug.cgi?id=32673#c2 https://ubuntu.com/security/notices/USN-7369-1 https://vuldb.com/?ctiid.295985 https://vuldb.com/?id.295985 https://vuldb.com/?submit.497539 https://www.cve.org/CVERecord?id=CVE-2025-1377 https://www.gnu.org/
libexpat1 CVE-2023-52425 HIGH 2.5.0-1+deb12u1 2.5.0-1+deb12u2 http://www.openwall.com/lists/oss-security/2024/03/20/5 https://access.redhat.com/errata/RHSA-2024:4259 https://access.redhat.com/security/cve/CVE-2023-52425 https://bugzilla.redhat.com/2262877 https://bugzilla.redhat.com/show_bug.cgi?id=2262877 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52425 https://errata.almalinux.org/8/ALSA-2024-4259.html https://errata.rockylinux.org/RLSA-2024:1615 https://github.com/libexpat/libexpat/pull/789 https://linux.oracle.com/cve/CVE-2023-52425.html https://linux.oracle.com/errata/ELSA-2024-4259.html https://lists.debian.org/debian-lts-announce/2024/04/msg00006.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNRIHC7DVVRAIWFRGV23Y6UZXFBXSQDB/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WNUBSGZFEZOBHJFTAD42SAN4ATW2VEMV/ https://nvd.nist.gov/vuln/detail/CVE-2023-52425 https://security.netapp.com/advisory/ntap-20240614-0003/ https://ubuntu.com/security/notices/USN-6694-1 https://www.cve.org/CVERecord?id=CVE-2023-52425
libexpat1 CVE-2024-8176 HIGH 2.5.0-1+deb12u1 2.5.0-1+deb12u2 http://www.openwall.com/lists/oss-security/2025/03/15/1 https://access.redhat.com/errata/RHSA-2025:13681 https://access.redhat.com/errata/RHSA-2025:3531 https://access.redhat.com/errata/RHSA-2025:3734 https://access.redhat.com/errata/RHSA-2025:3913 https://access.redhat.com/errata/RHSA-2025:4048 https://access.redhat.com/errata/RHSA-2025:4446 https://access.redhat.com/errata/RHSA-2025:4447 https://access.redhat.com/errata/RHSA-2025:4448 https://access.redhat.com/errata/RHSA-2025:4449 https://access.redhat.com/errata/RHSA-2025:7444 https://access.redhat.com/errata/RHSA-2025:7512 https://access.redhat.com/errata/RHSA-2025:8385 https://access.redhat.com/security/cve/CVE-2024-8176 https://blog.hartwork.org/posts/expat-2-7-0-released/ https://bugzilla.redhat.com/2310137 https://bugzilla.redhat.com/show_bug.cgi?id=2310137 https://bugzilla.suse.com/show_bug.cgi?id=1239618 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8176 https://errata.almalinux.org/8/ALSA-2025-3913.html https://errata.rockylinux.org/RLSA-2025:4048 https://github.com/libexpat/libexpat/blob/R_2_7_0/expat/Changes#L40-L52 https://github.com/libexpat/libexpat/issues/893 https://gitlab.alpinelinux.org/alpine/aports/-/commit/d068c3ff36fc6f4789988a09c69b434db757db53 https://linux.oracle.com/cve/CVE-2024-8176.html https://linux.oracle.com/errata/ELSA-2025-7512.html https://nvd.nist.gov/vuln/detail/CVE-2024-8176 https://security-tracker.debian.org/tracker/CVE-2024-8176 https://security.netapp.com/advisory/ntap-20250328-0009/ https://ubuntu.com/security/CVE-2024-8176 https://ubuntu.com/security/notices/USN-7424-1 https://www.cve.org/CVERecord?id=CVE-2024-8176 https://www.kb.cert.org/vuls/id/760160
libexpat1 CVE-2024-50602 MEDIUM 2.5.0-1+deb12u1 2.5.0-1+deb12u2 https://access.redhat.com/errata/RHSA-2024:9502 https://access.redhat.com/security/cve/CVE-2024-50602 https://bugzilla.redhat.com/2321987 https://bugzilla.redhat.com/show_bug.cgi?id=2321987 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50602 https://errata.almalinux.org/8/ALSA-2024-9502.html https://errata.rockylinux.org/RLSA-2024:9502 https://github.com/libexpat/libexpat/pull/915 https://linux.oracle.com/cve/CVE-2024-50602.html https://linux.oracle.com/errata/ELSA-2024-9541.html https://lists.debian.org/debian-lts-announce/2025/04/msg00040.html https://nvd.nist.gov/vuln/detail/CVE-2024-50602 https://security.netapp.com/advisory/ntap-20250404-0008/ https://ubuntu.com/security/notices/USN-7145-1 https://www.cve.org/CVERecord?id=CVE-2024-50602
libexpat1 CVE-2025-59375 MEDIUM 2.5.0-1+deb12u1 https://access.redhat.com/security/cve/CVE-2025-59375 https://github.com/libexpat/libexpat/blob/676a4c531ec768732fac215da9730b5f50fbd2bf/expat/Changes#L45-L74 https://github.com/libexpat/libexpat/blob/R_2_7_2/expat/Changes https://github.com/libexpat/libexpat/issues/1018 https://github.com/libexpat/libexpat/pull/1034 https://issues.oss-fuzz.com/issues/439133977 https://nvd.nist.gov/vuln/detail/CVE-2025-59375 https://www.cve.org/CVERecord?id=CVE-2025-59375
libexpat1 CVE-2023-52426 LOW 2.5.0-1+deb12u1 https://access.redhat.com/security/cve/CVE-2023-52426 https://cwe.mitre.org/data/definitions/776.html https://github.com/libexpat/libexpat/commit/0f075ec8ecb5e43f8fdca5182f8cca4703da0404 https://github.com/libexpat/libexpat/pull/777 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNRIHC7DVVRAIWFRGV23Y6UZXFBXSQDB/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WNUBSGZFEZOBHJFTAD42SAN4ATW2VEMV/ https://nvd.nist.gov/vuln/detail/CVE-2023-52426 https://security.netapp.com/advisory/ntap-20240307-0005/ https://www.cve.org/CVERecord?id=CVE-2023-52426
libexpat1 CVE-2024-28757 LOW 2.5.0-1+deb12u1 http://www.openwall.com/lists/oss-security/2024/03/15/1 https://access.redhat.com/errata/RHSA-2024:1530 https://access.redhat.com/security/cve/CVE-2024-28757 https://bugzilla.redhat.com/2262877 https://bugzilla.redhat.com/2268766 https://errata.almalinux.org/9/ALSA-2024-1530.html https://github.com/libexpat/libexpat/issues/839 https://github.com/libexpat/libexpat/pull/842 https://linux.oracle.com/cve/CVE-2024-28757.html https://linux.oracle.com/errata/ELSA-2024-1530.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FPLC6WDSRDUYS7F7JWAOVOHFNOUQ43DD/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKJ7V5F6LJCEQJXDBWGT27J7NAP3E3N7/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VK2O34GH43NTHBZBN7G5Y6YKJKPUCTBE/ https://nvd.nist.gov/vuln/detail/CVE-2024-28757 https://security.netapp.com/advisory/ntap-20240322-0001/ https://ubuntu.com/security/notices/USN-6694-1 https://www.cve.org/CVERecord?id=CVE-2024-28757
libgcc-s1 CVE-2022-27943 LOW 12.2.0-14+deb12u1 https://access.redhat.com/security/cve/CVE-2022-27943 https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105039 https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=1a770b01ef415e114164b6151d1e55acdee09371 https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=9234cdca6ee88badfc00297e72f13dac4e540c79 https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=fc968115a742d9e4674d9725ce9c2106b91b6ead https://gcc.gnu.org/pipermail/gcc-patches/2022-March/592244.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H424YXGW7OKXS2NCAP35OP6Y4P4AW6VG/ https://nvd.nist.gov/vuln/detail/CVE-2022-27943 https://sourceware.org/bugzilla/show_bug.cgi?id=28995 https://www.cve.org/CVERecord?id=CVE-2022-27943
libgcrypt20 CVE-2018-6829 LOW 1.10.1-3 https://access.redhat.com/security/cve/CVE-2018-6829 https://github.com/weikengchen/attack-on-libgcrypt-elgamal https://github.com/weikengchen/attack-on-libgcrypt-elgamal/wiki https://lists.gnupg.org/pipermail/gcrypt-devel/2018-February/004394.html https://nvd.nist.gov/vuln/detail/CVE-2018-6829 https://www.cve.org/CVERecord?id=CVE-2018-6829 https://www.oracle.com/security-alerts/cpujan2020.html
libgcrypt20 CVE-2024-2236 LOW 1.10.1-3 https://access.redhat.com/errata/RHSA-2024:9404 https://access.redhat.com/errata/RHSA-2025:3530 https://access.redhat.com/errata/RHSA-2025:3534 https://access.redhat.com/security/cve/CVE-2024-2236 https://bugzilla.redhat.com/2245218 https://bugzilla.redhat.com/show_bug.cgi?id=2245218 https://bugzilla.redhat.com/show_bug.cgi?id=2268268 https://dev.gnupg.org/T7136 https://errata.almalinux.org/9/ALSA-2024-9404.html https://github.com/tomato42/marvin-toolkit/tree/master/example/libgcrypt https://gitlab.com/redhat-crypto/libgcrypt/libgcrypt-mirror/-/merge_requests/17 https://linux.oracle.com/cve/CVE-2024-2236.html https://linux.oracle.com/errata/ELSA-2024-9404.html https://lists.gnupg.org/pipermail/gcrypt-devel/2024-March/005607.html https://nvd.nist.gov/vuln/detail/CVE-2024-2236 https://www.cve.org/CVERecord?id=CVE-2024-2236
libgnutls30 CVE-2011-3389 LOW 3.7.9-2+deb12u5 http://arcticdog.wordpress.com/2012/08/29/beast-openssl-and-apache/ http://blog.mozilla.com/security/2011/09/27/attack-against-tls-protected-communications/ http://blogs.technet.com/b/msrc/archive/2011/09/26/microsoft-releases-security-advisory-2588513.aspx http://blogs.technet.com/b/srd/archive/2011/09/26/is-ssl-broken-more-about-security-advisory-2588513.aspx http://curl.haxx.se/docs/adv_20120124B.html http://downloads.asterisk.org/pub/security/AST-2016-001.html http://ekoparty.org/2011/juliano-rizzo.php http://eprint.iacr.org/2004/111 http://eprint.iacr.org/2006/136 http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html http://isc.sans.edu/diary/SSL+TLS+part+3+/11635 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html http://lists.apple.com/archives/Security-announce/2011//Oct/msg00002.html http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html http://lists.apple.com/archives/security-announce/2012/Jul/msg00001.html http://lists.apple.com/archives/security-announce/2012/May/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00009.html http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html http://marc.info/?l=bugtraq&m=132750579901589&w=2 http://marc.info/?l=bugtraq&m=132872385320240&w=2 http://marc.info/?l=bugtraq&m=133365109612558&w=2 http://marc.info/?l=bugtraq&m=133728004526190&w=2 http://marc.info/?l=bugtraq&m=134254866602253&w=2 http://marc.info/?l=bugtraq&m=134254957702612&w=2 http://my.opera.com/securitygroup/blog/2011/09/28/the-beast-ssl-tls-issue http://osvdb.org/74829 http://rhn.redhat.com/errata/RHSA-2012-0508.html http://rhn.redhat.com/errata/RHSA-2013-1455.html http://secunia.com/advisories/45791 http://secunia.com/advisories/47998 http://secunia.com/advisories/48256 http://secunia.com/advisories/48692 http://secunia.com/advisories/48915 http://secunia.com/advisories/48948 http://secunia.com/advisories/49198 http://secunia.com/advisories/55322 http://secunia.com/advisories/55350 http://secunia.com/advisories/55351 http://security.gentoo.org/glsa/glsa-201203-02.xml http://security.gentoo.org/glsa/glsa-201406-32.xml http://support.apple.com/kb/HT4999 http://support.apple.com/kb/HT5001 http://support.apple.com/kb/HT5130 http://support.apple.com/kb/HT5281 http://support.apple.com/kb/HT5501 http://support.apple.com/kb/HT6150 http://technet.microsoft.com/security/advisory/2588513 http://vnhacker.blogspot.com/2011/09/beast.html http://www.apcmedia.com/salestools/SJHN-7RKGNM/SJHN-7RKGNM_R4_EN.pdf http://www.debian.org/security/2012/dsa-2398 http://www.educatedguesswork.org/2011/09/security_impact_of_the_rizzodu.html http://www.ibm.com/developerworks/java/jdk/alerts/ http://www.imperialviolet.org/2011/09/23/chromeandbeast.html http://www.insecure.cl/Beast-SSL.rar http://www.kb.cert.org/vuls/id/864643 http://www.mandriva.com/security/advisories?name=MDVSA-2012:058 http://www.opera.com/docs/changelogs/mac/1151/ http://www.opera.com/docs/changelogs/mac/1160/ http://www.opera.com/docs/changelogs/unix/1151/ http://www.opera.com/docs/changelogs/unix/1160/ http://www.opera.com/docs/changelogs/windows/1151/ http://www.opera.com/docs/changelogs/windows/1160/ http://www.opera.com/support/kb/view/1004/ http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html http://www.redhat.com/support/errata/RHSA-2011-1384.html http://www.redhat.com/support/errata/RHSA-2012-0006.html http://www.securityfocus.com/bid/49388 http://www.securityfocus.com/bid/49778 http://www.securitytracker.com/id/1029190 http://www.securitytracker.com/id?1025997 http://www.securitytracker.com/id?1026103 http://www.securitytracker.com/id?1026704 http://www.ubuntu.com/usn/USN-1263-1 http://www.us-cert.gov/cas/techalerts/TA12-010A.html https://access.redhat.com/security/cve/CVE-2011-3389 https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail https://bugzilla.novell.com/show_bug.cgi?id=719047 https://bugzilla.redhat.com/show_bug.cgi?id=737506 https://cert-portal.siemens.com/productcert/pdf/ssa-556833.pdf https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-006 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862 https://hermes.opensuse.org/messages/13154861 https://hermes.opensuse.org/messages/13155432 https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02 https://linux.oracle.com/cve/CVE-2011-3389.html https://linux.oracle.com/errata/ELSA-2011-1380.html https://nvd.nist.gov/vuln/detail/CVE-2011-3389 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14752 https://ubuntu.com/security/notices/USN-1263-1 https://www.cve.org/CVERecord?id=CVE-2011-3389
libgssapi-krb5-2 CVE-2025-3576 MEDIUM 1.20.1-2+deb12u3 1.20.1-2+deb12u4 https://access.redhat.com/errata/RHSA-2025:11487 https://access.redhat.com/errata/RHSA-2025:13664 https://access.redhat.com/errata/RHSA-2025:13777 https://access.redhat.com/errata/RHSA-2025:15000 https://access.redhat.com/errata/RHSA-2025:15001 https://access.redhat.com/errata/RHSA-2025:15002 https://access.redhat.com/errata/RHSA-2025:15003 https://access.redhat.com/errata/RHSA-2025:15004 https://access.redhat.com/errata/RHSA-2025:8411 https://access.redhat.com/errata/RHSA-2025:9418 https://access.redhat.com/errata/RHSA-2025:9430 https://access.redhat.com/security/cve/CVE-2025-3576 https://bugzilla.redhat.com/2359465 https://bugzilla.redhat.com/show_bug.cgi?id=2359465 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3576 https://errata.almalinux.org/8/ALSA-2025-8411.html https://errata.rockylinux.org/RLSA-2025:8411 https://linux.oracle.com/cve/CVE-2025-3576.html https://linux.oracle.com/errata/ELSA-2025-9430.html https://lists.debian.org/debian-lts-announce/2025/05/msg00047.html https://nvd.nist.gov/vuln/detail/CVE-2025-3576 https://ubuntu.com/security/notices/USN-7542-1 https://web.mit.edu/kerberos/krb5-1.22/krb5-1.22.html https://www.cve.org/CVERecord?id=CVE-2025-3576
libgssapi-krb5-2 CVE-2018-5709 LOW 1.20.1-2+deb12u3 https://access.redhat.com/security/cve/CVE-2018-5709 https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E https://nvd.nist.gov/vuln/detail/CVE-2018-5709 https://www.cve.org/CVERecord?id=CVE-2018-5709
libgssapi-krb5-2 CVE-2024-26458 LOW 1.20.1-2+deb12u3 https://access.redhat.com/errata/RHSA-2024:3268 https://access.redhat.com/security/cve/CVE-2024-26458 https://bugzilla.redhat.com/2266731 https://bugzilla.redhat.com/2266740 https://bugzilla.redhat.com/show_bug.cgi?id=2266731 https://bugzilla.redhat.com/show_bug.cgi?id=2266740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26461 https://errata.almalinux.org/8/ALSA-2024-3268.html https://errata.rockylinux.org/RLSA-2024:3268 https://github.com/LuMingYinDetect/krb5_defects/blob/main/krb5_detect_1.md https://linux.oracle.com/cve/CVE-2024-26458.html https://linux.oracle.com/errata/ELSA-2024-9331.html https://mailman.mit.edu/pipermail/kerberos/2024-March/023095.html https://nvd.nist.gov/vuln/detail/CVE-2024-26458 https://security.netapp.com/advisory/ntap-20240415-0010/ https://ubuntu.com/security/notices/USN-7314-1 https://www.cve.org/CVERecord?id=CVE-2024-26458
libgssapi-krb5-2 CVE-2024-26461 LOW 1.20.1-2+deb12u3 https://access.redhat.com/errata/RHSA-2024:3268 https://access.redhat.com/security/cve/CVE-2024-26461 https://bugzilla.redhat.com/2266731 https://bugzilla.redhat.com/2266740 https://bugzilla.redhat.com/show_bug.cgi?id=2266731 https://bugzilla.redhat.com/show_bug.cgi?id=2266740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26461 https://errata.almalinux.org/8/ALSA-2024-3268.html https://errata.rockylinux.org/RLSA-2024:3268 https://github.com/LuMingYinDetect/krb5_defects/blob/main/krb5_detect_2.md https://linux.oracle.com/cve/CVE-2024-26461.html https://linux.oracle.com/errata/ELSA-2024-9331.html https://mailman.mit.edu/pipermail/kerberos/2024-March/023095.html https://nvd.nist.gov/vuln/detail/CVE-2024-26461 https://security.netapp.com/advisory/ntap-20240415-0011/ https://ubuntu.com/security/notices/USN-7314-1 https://www.cve.org/CVERecord?id=CVE-2024-26461
libk5crypto3 CVE-2025-3576 MEDIUM 1.20.1-2+deb12u3 1.20.1-2+deb12u4 https://access.redhat.com/errata/RHSA-2025:11487 https://access.redhat.com/errata/RHSA-2025:13664 https://access.redhat.com/errata/RHSA-2025:13777 https://access.redhat.com/errata/RHSA-2025:15000 https://access.redhat.com/errata/RHSA-2025:15001 https://access.redhat.com/errata/RHSA-2025:15002 https://access.redhat.com/errata/RHSA-2025:15003 https://access.redhat.com/errata/RHSA-2025:15004 https://access.redhat.com/errata/RHSA-2025:8411 https://access.redhat.com/errata/RHSA-2025:9418 https://access.redhat.com/errata/RHSA-2025:9430 https://access.redhat.com/security/cve/CVE-2025-3576 https://bugzilla.redhat.com/2359465 https://bugzilla.redhat.com/show_bug.cgi?id=2359465 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3576 https://errata.almalinux.org/8/ALSA-2025-8411.html https://errata.rockylinux.org/RLSA-2025:8411 https://linux.oracle.com/cve/CVE-2025-3576.html https://linux.oracle.com/errata/ELSA-2025-9430.html https://lists.debian.org/debian-lts-announce/2025/05/msg00047.html https://nvd.nist.gov/vuln/detail/CVE-2025-3576 https://ubuntu.com/security/notices/USN-7542-1 https://web.mit.edu/kerberos/krb5-1.22/krb5-1.22.html https://www.cve.org/CVERecord?id=CVE-2025-3576
libk5crypto3 CVE-2018-5709 LOW 1.20.1-2+deb12u3 https://access.redhat.com/security/cve/CVE-2018-5709 https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E https://nvd.nist.gov/vuln/detail/CVE-2018-5709 https://www.cve.org/CVERecord?id=CVE-2018-5709
libk5crypto3 CVE-2024-26458 LOW 1.20.1-2+deb12u3 https://access.redhat.com/errata/RHSA-2024:3268 https://access.redhat.com/security/cve/CVE-2024-26458 https://bugzilla.redhat.com/2266731 https://bugzilla.redhat.com/2266740 https://bugzilla.redhat.com/show_bug.cgi?id=2266731 https://bugzilla.redhat.com/show_bug.cgi?id=2266740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26461 https://errata.almalinux.org/8/ALSA-2024-3268.html https://errata.rockylinux.org/RLSA-2024:3268 https://github.com/LuMingYinDetect/krb5_defects/blob/main/krb5_detect_1.md https://linux.oracle.com/cve/CVE-2024-26458.html https://linux.oracle.com/errata/ELSA-2024-9331.html https://mailman.mit.edu/pipermail/kerberos/2024-March/023095.html https://nvd.nist.gov/vuln/detail/CVE-2024-26458 https://security.netapp.com/advisory/ntap-20240415-0010/ https://ubuntu.com/security/notices/USN-7314-1 https://www.cve.org/CVERecord?id=CVE-2024-26458
libk5crypto3 CVE-2024-26461 LOW 1.20.1-2+deb12u3 https://access.redhat.com/errata/RHSA-2024:3268 https://access.redhat.com/security/cve/CVE-2024-26461 https://bugzilla.redhat.com/2266731 https://bugzilla.redhat.com/2266740 https://bugzilla.redhat.com/show_bug.cgi?id=2266731 https://bugzilla.redhat.com/show_bug.cgi?id=2266740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26461 https://errata.almalinux.org/8/ALSA-2024-3268.html https://errata.rockylinux.org/RLSA-2024:3268 https://github.com/LuMingYinDetect/krb5_defects/blob/main/krb5_detect_2.md https://linux.oracle.com/cve/CVE-2024-26461.html https://linux.oracle.com/errata/ELSA-2024-9331.html https://mailman.mit.edu/pipermail/kerberos/2024-March/023095.html https://nvd.nist.gov/vuln/detail/CVE-2024-26461 https://security.netapp.com/advisory/ntap-20240415-0011/ https://ubuntu.com/security/notices/USN-7314-1 https://www.cve.org/CVERecord?id=CVE-2024-26461
libkrb5-3 CVE-2025-3576 MEDIUM 1.20.1-2+deb12u3 1.20.1-2+deb12u4 https://access.redhat.com/errata/RHSA-2025:11487 https://access.redhat.com/errata/RHSA-2025:13664 https://access.redhat.com/errata/RHSA-2025:13777 https://access.redhat.com/errata/RHSA-2025:15000 https://access.redhat.com/errata/RHSA-2025:15001 https://access.redhat.com/errata/RHSA-2025:15002 https://access.redhat.com/errata/RHSA-2025:15003 https://access.redhat.com/errata/RHSA-2025:15004 https://access.redhat.com/errata/RHSA-2025:8411 https://access.redhat.com/errata/RHSA-2025:9418 https://access.redhat.com/errata/RHSA-2025:9430 https://access.redhat.com/security/cve/CVE-2025-3576 https://bugzilla.redhat.com/2359465 https://bugzilla.redhat.com/show_bug.cgi?id=2359465 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3576 https://errata.almalinux.org/8/ALSA-2025-8411.html https://errata.rockylinux.org/RLSA-2025:8411 https://linux.oracle.com/cve/CVE-2025-3576.html https://linux.oracle.com/errata/ELSA-2025-9430.html https://lists.debian.org/debian-lts-announce/2025/05/msg00047.html https://nvd.nist.gov/vuln/detail/CVE-2025-3576 https://ubuntu.com/security/notices/USN-7542-1 https://web.mit.edu/kerberos/krb5-1.22/krb5-1.22.html https://www.cve.org/CVERecord?id=CVE-2025-3576
libkrb5-3 CVE-2018-5709 LOW 1.20.1-2+deb12u3 https://access.redhat.com/security/cve/CVE-2018-5709 https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E https://nvd.nist.gov/vuln/detail/CVE-2018-5709 https://www.cve.org/CVERecord?id=CVE-2018-5709
libkrb5-3 CVE-2024-26458 LOW 1.20.1-2+deb12u3 https://access.redhat.com/errata/RHSA-2024:3268 https://access.redhat.com/security/cve/CVE-2024-26458 https://bugzilla.redhat.com/2266731 https://bugzilla.redhat.com/2266740 https://bugzilla.redhat.com/show_bug.cgi?id=2266731 https://bugzilla.redhat.com/show_bug.cgi?id=2266740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26461 https://errata.almalinux.org/8/ALSA-2024-3268.html https://errata.rockylinux.org/RLSA-2024:3268 https://github.com/LuMingYinDetect/krb5_defects/blob/main/krb5_detect_1.md https://linux.oracle.com/cve/CVE-2024-26458.html https://linux.oracle.com/errata/ELSA-2024-9331.html https://mailman.mit.edu/pipermail/kerberos/2024-March/023095.html https://nvd.nist.gov/vuln/detail/CVE-2024-26458 https://security.netapp.com/advisory/ntap-20240415-0010/ https://ubuntu.com/security/notices/USN-7314-1 https://www.cve.org/CVERecord?id=CVE-2024-26458
libkrb5-3 CVE-2024-26461 LOW 1.20.1-2+deb12u3 https://access.redhat.com/errata/RHSA-2024:3268 https://access.redhat.com/security/cve/CVE-2024-26461 https://bugzilla.redhat.com/2266731 https://bugzilla.redhat.com/2266740 https://bugzilla.redhat.com/show_bug.cgi?id=2266731 https://bugzilla.redhat.com/show_bug.cgi?id=2266740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26461 https://errata.almalinux.org/8/ALSA-2024-3268.html https://errata.rockylinux.org/RLSA-2024:3268 https://github.com/LuMingYinDetect/krb5_defects/blob/main/krb5_detect_2.md https://linux.oracle.com/cve/CVE-2024-26461.html https://linux.oracle.com/errata/ELSA-2024-9331.html https://mailman.mit.edu/pipermail/kerberos/2024-March/023095.html https://nvd.nist.gov/vuln/detail/CVE-2024-26461 https://security.netapp.com/advisory/ntap-20240415-0011/ https://ubuntu.com/security/notices/USN-7314-1 https://www.cve.org/CVERecord?id=CVE-2024-26461
libkrb5support0 CVE-2025-3576 MEDIUM 1.20.1-2+deb12u3 1.20.1-2+deb12u4 https://access.redhat.com/errata/RHSA-2025:11487 https://access.redhat.com/errata/RHSA-2025:13664 https://access.redhat.com/errata/RHSA-2025:13777 https://access.redhat.com/errata/RHSA-2025:15000 https://access.redhat.com/errata/RHSA-2025:15001 https://access.redhat.com/errata/RHSA-2025:15002 https://access.redhat.com/errata/RHSA-2025:15003 https://access.redhat.com/errata/RHSA-2025:15004 https://access.redhat.com/errata/RHSA-2025:8411 https://access.redhat.com/errata/RHSA-2025:9418 https://access.redhat.com/errata/RHSA-2025:9430 https://access.redhat.com/security/cve/CVE-2025-3576 https://bugzilla.redhat.com/2359465 https://bugzilla.redhat.com/show_bug.cgi?id=2359465 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3576 https://errata.almalinux.org/8/ALSA-2025-8411.html https://errata.rockylinux.org/RLSA-2025:8411 https://linux.oracle.com/cve/CVE-2025-3576.html https://linux.oracle.com/errata/ELSA-2025-9430.html https://lists.debian.org/debian-lts-announce/2025/05/msg00047.html https://nvd.nist.gov/vuln/detail/CVE-2025-3576 https://ubuntu.com/security/notices/USN-7542-1 https://web.mit.edu/kerberos/krb5-1.22/krb5-1.22.html https://www.cve.org/CVERecord?id=CVE-2025-3576
libkrb5support0 CVE-2018-5709 LOW 1.20.1-2+deb12u3 https://access.redhat.com/security/cve/CVE-2018-5709 https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E https://nvd.nist.gov/vuln/detail/CVE-2018-5709 https://www.cve.org/CVERecord?id=CVE-2018-5709
libkrb5support0 CVE-2024-26458 LOW 1.20.1-2+deb12u3 https://access.redhat.com/errata/RHSA-2024:3268 https://access.redhat.com/security/cve/CVE-2024-26458 https://bugzilla.redhat.com/2266731 https://bugzilla.redhat.com/2266740 https://bugzilla.redhat.com/show_bug.cgi?id=2266731 https://bugzilla.redhat.com/show_bug.cgi?id=2266740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26461 https://errata.almalinux.org/8/ALSA-2024-3268.html https://errata.rockylinux.org/RLSA-2024:3268 https://github.com/LuMingYinDetect/krb5_defects/blob/main/krb5_detect_1.md https://linux.oracle.com/cve/CVE-2024-26458.html https://linux.oracle.com/errata/ELSA-2024-9331.html https://mailman.mit.edu/pipermail/kerberos/2024-March/023095.html https://nvd.nist.gov/vuln/detail/CVE-2024-26458 https://security.netapp.com/advisory/ntap-20240415-0010/ https://ubuntu.com/security/notices/USN-7314-1 https://www.cve.org/CVERecord?id=CVE-2024-26458
libkrb5support0 CVE-2024-26461 LOW 1.20.1-2+deb12u3 https://access.redhat.com/errata/RHSA-2024:3268 https://access.redhat.com/security/cve/CVE-2024-26461 https://bugzilla.redhat.com/2266731 https://bugzilla.redhat.com/2266740 https://bugzilla.redhat.com/show_bug.cgi?id=2266731 https://bugzilla.redhat.com/show_bug.cgi?id=2266740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26461 https://errata.almalinux.org/8/ALSA-2024-3268.html https://errata.rockylinux.org/RLSA-2024:3268 https://github.com/LuMingYinDetect/krb5_defects/blob/main/krb5_detect_2.md https://linux.oracle.com/cve/CVE-2024-26461.html https://linux.oracle.com/errata/ELSA-2024-9331.html https://mailman.mit.edu/pipermail/kerberos/2024-March/023095.html https://nvd.nist.gov/vuln/detail/CVE-2024-26461 https://security.netapp.com/advisory/ntap-20240415-0011/ https://ubuntu.com/security/notices/USN-7314-1 https://www.cve.org/CVERecord?id=CVE-2024-26461
libldap-2.5-0 CVE-2023-2953 HIGH 2.5.13+dfsg-5 http://seclists.org/fulldisclosure/2023/Jul/47 http://seclists.org/fulldisclosure/2023/Jul/48 http://seclists.org/fulldisclosure/2023/Jul/52 https://access.redhat.com/errata/RHSA-2024:4264 https://access.redhat.com/security/cve/CVE-2023-2953 https://bugs.openldap.org/show_bug.cgi?id=9904 https://bugzilla.redhat.com/2210651 https://bugzilla.redhat.com/show_bug.cgi?id=2210651 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2953 https://errata.almalinux.org/8/ALSA-2024-4264.html https://errata.rockylinux.org/RLSA-2024:4264 https://linux.oracle.com/cve/CVE-2023-2953.html https://linux.oracle.com/errata/ELSA-2024-4264.html https://nvd.nist.gov/vuln/detail/CVE-2023-2953 https://security.netapp.com/advisory/ntap-20230703-0005/ https://support.apple.com/kb/HT213843 https://support.apple.com/kb/HT213844 https://support.apple.com/kb/HT213845 https://ubuntu.com/security/notices/USN-6197-1 https://ubuntu.com/security/notices/USN-6616-1 https://www.cve.org/CVERecord?id=CVE-2023-2953
libldap-2.5-0 CVE-2015-3276 LOW 2.5.13+dfsg-5 http://rhn.redhat.com/errata/RHSA-2015-2131.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html http://www.securitytracker.com/id/1034221 https://access.redhat.com/security/cve/CVE-2015-3276 https://bugzilla.redhat.com/show_bug.cgi?id=1238322 https://linux.oracle.com/cve/CVE-2015-3276.html https://linux.oracle.com/errata/ELSA-2015-2131.html https://nvd.nist.gov/vuln/detail/CVE-2015-3276 https://www.cve.org/CVERecord?id=CVE-2015-3276
libldap-2.5-0 CVE-2017-14159 LOW 2.5.13+dfsg-5 http://www.openldap.org/its/index.cgi?findid=8703 https://access.redhat.com/security/cve/CVE-2017-14159 https://nvd.nist.gov/vuln/detail/CVE-2017-14159 https://www.cve.org/CVERecord?id=CVE-2017-14159 https://www.oracle.com/security-alerts/cpuapr2022.html
libldap-2.5-0 CVE-2017-17740 LOW 2.5.13+dfsg-5 http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html http://www.openldap.org/its/index.cgi/Incoming?id=8759 https://access.redhat.com/security/cve/CVE-2017-17740 https://kc.mcafee.com/corporate/index?page=content&id=SB10365 https://nvd.nist.gov/vuln/detail/CVE-2017-17740 https://www.cve.org/CVERecord?id=CVE-2017-17740 https://www.oracle.com/security-alerts/cpuapr2022.html
libldap-2.5-0 CVE-2020-15719 LOW 2.5.13+dfsg-5 http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00033.html http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00059.html https://access.redhat.com/errata/RHBA-2019:3674 https://access.redhat.com/security/cve/CVE-2020-15719 https://bugs.openldap.org/show_bug.cgi?id=9266 https://bugzilla.redhat.com/show_bug.cgi?id=1740070 https://kc.mcafee.com/corporate/index?page=content&id=SB10365 https://nvd.nist.gov/vuln/detail/CVE-2020-15719 https://www.cve.org/CVERecord?id=CVE-2020-15719 https://www.oracle.com/security-alerts/cpuapr2022.html
libldap-common CVE-2023-2953 HIGH 2.5.13+dfsg-5 http://seclists.org/fulldisclosure/2023/Jul/47 http://seclists.org/fulldisclosure/2023/Jul/48 http://seclists.org/fulldisclosure/2023/Jul/52 https://access.redhat.com/errata/RHSA-2024:4264 https://access.redhat.com/security/cve/CVE-2023-2953 https://bugs.openldap.org/show_bug.cgi?id=9904 https://bugzilla.redhat.com/2210651 https://bugzilla.redhat.com/show_bug.cgi?id=2210651 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2953 https://errata.almalinux.org/8/ALSA-2024-4264.html https://errata.rockylinux.org/RLSA-2024:4264 https://linux.oracle.com/cve/CVE-2023-2953.html https://linux.oracle.com/errata/ELSA-2024-4264.html https://nvd.nist.gov/vuln/detail/CVE-2023-2953 https://security.netapp.com/advisory/ntap-20230703-0005/ https://support.apple.com/kb/HT213843 https://support.apple.com/kb/HT213844 https://support.apple.com/kb/HT213845 https://ubuntu.com/security/notices/USN-6197-1 https://ubuntu.com/security/notices/USN-6616-1 https://www.cve.org/CVERecord?id=CVE-2023-2953
libldap-common CVE-2015-3276 LOW 2.5.13+dfsg-5 http://rhn.redhat.com/errata/RHSA-2015-2131.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html http://www.securitytracker.com/id/1034221 https://access.redhat.com/security/cve/CVE-2015-3276 https://bugzilla.redhat.com/show_bug.cgi?id=1238322 https://linux.oracle.com/cve/CVE-2015-3276.html https://linux.oracle.com/errata/ELSA-2015-2131.html https://nvd.nist.gov/vuln/detail/CVE-2015-3276 https://www.cve.org/CVERecord?id=CVE-2015-3276
libldap-common CVE-2017-14159 LOW 2.5.13+dfsg-5 http://www.openldap.org/its/index.cgi?findid=8703 https://access.redhat.com/security/cve/CVE-2017-14159 https://nvd.nist.gov/vuln/detail/CVE-2017-14159 https://www.cve.org/CVERecord?id=CVE-2017-14159 https://www.oracle.com/security-alerts/cpuapr2022.html
libldap-common CVE-2017-17740 LOW 2.5.13+dfsg-5 http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html http://www.openldap.org/its/index.cgi/Incoming?id=8759 https://access.redhat.com/security/cve/CVE-2017-17740 https://kc.mcafee.com/corporate/index?page=content&id=SB10365 https://nvd.nist.gov/vuln/detail/CVE-2017-17740 https://www.cve.org/CVERecord?id=CVE-2017-17740 https://www.oracle.com/security-alerts/cpuapr2022.html
libldap-common CVE-2020-15719 LOW 2.5.13+dfsg-5 http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00033.html http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00059.html https://access.redhat.com/errata/RHBA-2019:3674 https://access.redhat.com/security/cve/CVE-2020-15719 https://bugs.openldap.org/show_bug.cgi?id=9266 https://bugzilla.redhat.com/show_bug.cgi?id=1740070 https://kc.mcafee.com/corporate/index?page=content&id=SB10365 https://nvd.nist.gov/vuln/detail/CVE-2020-15719 https://www.cve.org/CVERecord?id=CVE-2020-15719 https://www.oracle.com/security-alerts/cpuapr2022.html
libmount1 CVE-2022-0563 LOW 2.38.1-5+deb12u3 https://access.redhat.com/security/cve/CVE-2022-0563 https://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline/ https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w%40ws.net.home/T/#u https://lore.kernel.org/util-linux/[email protected]/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.gentoo.org/glsa/202401-08 https://security.netapp.com/advisory/ntap-20220331-0002/ https://www.cve.org/CVERecord?id=CVE-2022-0563
libncursesw6 CVE-2023-50495 MEDIUM 6.4-4 https://access.redhat.com/security/cve/CVE-2023-50495 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/ https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00020.html https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00029.html https://nvd.nist.gov/vuln/detail/CVE-2023-50495 https://security.netapp.com/advisory/ntap-20240119-0008/ https://ubuntu.com/security/notices/USN-6684-1 https://www.cve.org/CVERecord?id=CVE-2023-50495
libncursesw6 CVE-2025-6141 LOW 6.4-4 https://access.redhat.com/security/cve/CVE-2025-6141 https://invisible-island.net/ncurses/NEWS.html#index-t20250329 https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00107.html https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00109.html https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00114.html https://nvd.nist.gov/vuln/detail/CVE-2025-6141 https://vuldb.com/?ctiid.312610 https://vuldb.com/?id.312610 https://vuldb.com/?submit.593000 https://www.cve.org/CVERecord?id=CVE-2025-6141 https://www.gnu.org/
libpam-modules CVE-2025-6020 HIGH 1.5.2-6+deb12u1 http://www.openwall.com/lists/oss-security/2025/06/17/1 https://access.redhat.com/errata/RHSA-2025:10024 https://access.redhat.com/errata/RHSA-2025:10027 https://access.redhat.com/errata/RHSA-2025:10180 https://access.redhat.com/errata/RHSA-2025:10354 https://access.redhat.com/errata/RHSA-2025:10357 https://access.redhat.com/errata/RHSA-2025:10358 https://access.redhat.com/errata/RHSA-2025:10359 https://access.redhat.com/errata/RHSA-2025:10361 https://access.redhat.com/errata/RHSA-2025:10362 https://access.redhat.com/errata/RHSA-2025:10735 https://access.redhat.com/errata/RHSA-2025:10823 https://access.redhat.com/errata/RHSA-2025:11386 https://access.redhat.com/errata/RHSA-2025:11487 https://access.redhat.com/errata/RHSA-2025:14557 https://access.redhat.com/errata/RHSA-2025:15099 https://access.redhat.com/errata/RHSA-2025:15709 https://access.redhat.com/errata/RHSA-2025:15827 https://access.redhat.com/errata/RHSA-2025:15828 https://access.redhat.com/errata/RHSA-2025:16524 https://access.redhat.com/errata/RHSA-2025:9526 https://access.redhat.com/security/cve/CVE-2025-6020 https://bugzilla.redhat.com/2372512 https://bugzilla.redhat.com/show_bug.cgi?id=2372512 https://bugzilla.redhat.com/show_bug.cgi?id=2388220 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6020 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8941 https://errata.almalinux.org/8/ALSA-2025-14557.html https://errata.rockylinux.org/RLSA-2025:14557 https://linux.oracle.com/cve/CVE-2025-6020.html https://linux.oracle.com/errata/ELSA-2025-9526.html https://nvd.nist.gov/vuln/detail/CVE-2025-6020 https://ubuntu.com/security/notices/USN-7580-1 https://www.cve.org/CVERecord?id=CVE-2025-6020 https://www.openwall.com/lists/oss-security/2025/06/17/1
libpam-modules CVE-2024-10041 MEDIUM 1.5.2-6+deb12u1 https://access.redhat.com/errata/RHSA-2024:10379 https://access.redhat.com/errata/RHSA-2024:11250 https://access.redhat.com/errata/RHSA-2024:9941 https://access.redhat.com/security/cve/CVE-2024-10041 https://bugzilla.redhat.com/2319212 https://bugzilla.redhat.com/2324291 https://bugzilla.redhat.com/show_bug.cgi?id=2319212 https://bugzilla.redhat.com/show_bug.cgi?id=2324291 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10041 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10963 https://errata.almalinux.org/8/ALSA-2024-10379.html https://errata.rockylinux.org/RLSA-2024:10379 https://linux.oracle.com/cve/CVE-2024-10041.html https://linux.oracle.com/errata/ELSA-2024-11250.html https://nvd.nist.gov/vuln/detail/CVE-2024-10041 https://www.cve.org/CVERecord?id=CVE-2024-10041
libpam-modules CVE-2024-22365 MEDIUM 1.5.2-6+deb12u1 http://www.openwall.com/lists/oss-security/2024/01/18/3 https://access.redhat.com/errata/RHSA-2024:3163 https://access.redhat.com/security/cve/CVE-2024-22365 https://bugzilla.redhat.com/2257722 https://bugzilla.redhat.com/show_bug.cgi?id=2257722 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22365 https://errata.almalinux.org/8/ALSA-2024-3163.html https://errata.rockylinux.org/RLSA-2024:3163 https://github.com/linux-pam/linux-pam https://github.com/linux-pam/linux-pam/commit/031bb5a5d0d950253b68138b498dc93be69a64cb https://github.com/linux-pam/linux-pam/releases/tag/v1.6.0 https://linux.oracle.com/cve/CVE-2024-22365.html https://linux.oracle.com/errata/ELSA-2024-3163.html https://nvd.nist.gov/vuln/detail/CVE-2024-22365 https://ubuntu.com/security/notices/USN-6588-1 https://ubuntu.com/security/notices/USN-6588-2 https://www.cve.org/CVERecord?id=CVE-2024-22365 https://www.openwall.com/lists/oss-security/2024/01/18/3
libpam-modules-bin CVE-2025-6020 HIGH 1.5.2-6+deb12u1 http://www.openwall.com/lists/oss-security/2025/06/17/1 https://access.redhat.com/errata/RHSA-2025:10024 https://access.redhat.com/errata/RHSA-2025:10027 https://access.redhat.com/errata/RHSA-2025:10180 https://access.redhat.com/errata/RHSA-2025:10354 https://access.redhat.com/errata/RHSA-2025:10357 https://access.redhat.com/errata/RHSA-2025:10358 https://access.redhat.com/errata/RHSA-2025:10359 https://access.redhat.com/errata/RHSA-2025:10361 https://access.redhat.com/errata/RHSA-2025:10362 https://access.redhat.com/errata/RHSA-2025:10735 https://access.redhat.com/errata/RHSA-2025:10823 https://access.redhat.com/errata/RHSA-2025:11386 https://access.redhat.com/errata/RHSA-2025:11487 https://access.redhat.com/errata/RHSA-2025:14557 https://access.redhat.com/errata/RHSA-2025:15099 https://access.redhat.com/errata/RHSA-2025:15709 https://access.redhat.com/errata/RHSA-2025:15827 https://access.redhat.com/errata/RHSA-2025:15828 https://access.redhat.com/errata/RHSA-2025:16524 https://access.redhat.com/errata/RHSA-2025:9526 https://access.redhat.com/security/cve/CVE-2025-6020 https://bugzilla.redhat.com/2372512 https://bugzilla.redhat.com/show_bug.cgi?id=2372512 https://bugzilla.redhat.com/show_bug.cgi?id=2388220 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6020 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8941 https://errata.almalinux.org/8/ALSA-2025-14557.html https://errata.rockylinux.org/RLSA-2025:14557 https://linux.oracle.com/cve/CVE-2025-6020.html https://linux.oracle.com/errata/ELSA-2025-9526.html https://nvd.nist.gov/vuln/detail/CVE-2025-6020 https://ubuntu.com/security/notices/USN-7580-1 https://www.cve.org/CVERecord?id=CVE-2025-6020 https://www.openwall.com/lists/oss-security/2025/06/17/1
libpam-modules-bin CVE-2024-10041 MEDIUM 1.5.2-6+deb12u1 https://access.redhat.com/errata/RHSA-2024:10379 https://access.redhat.com/errata/RHSA-2024:11250 https://access.redhat.com/errata/RHSA-2024:9941 https://access.redhat.com/security/cve/CVE-2024-10041 https://bugzilla.redhat.com/2319212 https://bugzilla.redhat.com/2324291 https://bugzilla.redhat.com/show_bug.cgi?id=2319212 https://bugzilla.redhat.com/show_bug.cgi?id=2324291 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10041 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10963 https://errata.almalinux.org/8/ALSA-2024-10379.html https://errata.rockylinux.org/RLSA-2024:10379 https://linux.oracle.com/cve/CVE-2024-10041.html https://linux.oracle.com/errata/ELSA-2024-11250.html https://nvd.nist.gov/vuln/detail/CVE-2024-10041 https://www.cve.org/CVERecord?id=CVE-2024-10041
libpam-modules-bin CVE-2024-22365 MEDIUM 1.5.2-6+deb12u1 http://www.openwall.com/lists/oss-security/2024/01/18/3 https://access.redhat.com/errata/RHSA-2024:3163 https://access.redhat.com/security/cve/CVE-2024-22365 https://bugzilla.redhat.com/2257722 https://bugzilla.redhat.com/show_bug.cgi?id=2257722 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22365 https://errata.almalinux.org/8/ALSA-2024-3163.html https://errata.rockylinux.org/RLSA-2024:3163 https://github.com/linux-pam/linux-pam https://github.com/linux-pam/linux-pam/commit/031bb5a5d0d950253b68138b498dc93be69a64cb https://github.com/linux-pam/linux-pam/releases/tag/v1.6.0 https://linux.oracle.com/cve/CVE-2024-22365.html https://linux.oracle.com/errata/ELSA-2024-3163.html https://nvd.nist.gov/vuln/detail/CVE-2024-22365 https://ubuntu.com/security/notices/USN-6588-1 https://ubuntu.com/security/notices/USN-6588-2 https://www.cve.org/CVERecord?id=CVE-2024-22365 https://www.openwall.com/lists/oss-security/2024/01/18/3
libpam-runtime CVE-2025-6020 HIGH 1.5.2-6+deb12u1 http://www.openwall.com/lists/oss-security/2025/06/17/1 https://access.redhat.com/errata/RHSA-2025:10024 https://access.redhat.com/errata/RHSA-2025:10027 https://access.redhat.com/errata/RHSA-2025:10180 https://access.redhat.com/errata/RHSA-2025:10354 https://access.redhat.com/errata/RHSA-2025:10357 https://access.redhat.com/errata/RHSA-2025:10358 https://access.redhat.com/errata/RHSA-2025:10359 https://access.redhat.com/errata/RHSA-2025:10361 https://access.redhat.com/errata/RHSA-2025:10362 https://access.redhat.com/errata/RHSA-2025:10735 https://access.redhat.com/errata/RHSA-2025:10823 https://access.redhat.com/errata/RHSA-2025:11386 https://access.redhat.com/errata/RHSA-2025:11487 https://access.redhat.com/errata/RHSA-2025:14557 https://access.redhat.com/errata/RHSA-2025:15099 https://access.redhat.com/errata/RHSA-2025:15709 https://access.redhat.com/errata/RHSA-2025:15827 https://access.redhat.com/errata/RHSA-2025:15828 https://access.redhat.com/errata/RHSA-2025:16524 https://access.redhat.com/errata/RHSA-2025:9526 https://access.redhat.com/security/cve/CVE-2025-6020 https://bugzilla.redhat.com/2372512 https://bugzilla.redhat.com/show_bug.cgi?id=2372512 https://bugzilla.redhat.com/show_bug.cgi?id=2388220 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6020 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8941 https://errata.almalinux.org/8/ALSA-2025-14557.html https://errata.rockylinux.org/RLSA-2025:14557 https://linux.oracle.com/cve/CVE-2025-6020.html https://linux.oracle.com/errata/ELSA-2025-9526.html https://nvd.nist.gov/vuln/detail/CVE-2025-6020 https://ubuntu.com/security/notices/USN-7580-1 https://www.cve.org/CVERecord?id=CVE-2025-6020 https://www.openwall.com/lists/oss-security/2025/06/17/1
libpam-runtime CVE-2024-10041 MEDIUM 1.5.2-6+deb12u1 https://access.redhat.com/errata/RHSA-2024:10379 https://access.redhat.com/errata/RHSA-2024:11250 https://access.redhat.com/errata/RHSA-2024:9941 https://access.redhat.com/security/cve/CVE-2024-10041 https://bugzilla.redhat.com/2319212 https://bugzilla.redhat.com/2324291 https://bugzilla.redhat.com/show_bug.cgi?id=2319212 https://bugzilla.redhat.com/show_bug.cgi?id=2324291 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10041 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10963 https://errata.almalinux.org/8/ALSA-2024-10379.html https://errata.rockylinux.org/RLSA-2024:10379 https://linux.oracle.com/cve/CVE-2024-10041.html https://linux.oracle.com/errata/ELSA-2024-11250.html https://nvd.nist.gov/vuln/detail/CVE-2024-10041 https://www.cve.org/CVERecord?id=CVE-2024-10041
libpam-runtime CVE-2024-22365 MEDIUM 1.5.2-6+deb12u1 http://www.openwall.com/lists/oss-security/2024/01/18/3 https://access.redhat.com/errata/RHSA-2024:3163 https://access.redhat.com/security/cve/CVE-2024-22365 https://bugzilla.redhat.com/2257722 https://bugzilla.redhat.com/show_bug.cgi?id=2257722 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22365 https://errata.almalinux.org/8/ALSA-2024-3163.html https://errata.rockylinux.org/RLSA-2024:3163 https://github.com/linux-pam/linux-pam https://github.com/linux-pam/linux-pam/commit/031bb5a5d0d950253b68138b498dc93be69a64cb https://github.com/linux-pam/linux-pam/releases/tag/v1.6.0 https://linux.oracle.com/cve/CVE-2024-22365.html https://linux.oracle.com/errata/ELSA-2024-3163.html https://nvd.nist.gov/vuln/detail/CVE-2024-22365 https://ubuntu.com/security/notices/USN-6588-1 https://ubuntu.com/security/notices/USN-6588-2 https://www.cve.org/CVERecord?id=CVE-2024-22365 https://www.openwall.com/lists/oss-security/2024/01/18/3
libpam0g CVE-2025-6020 HIGH 1.5.2-6+deb12u1 http://www.openwall.com/lists/oss-security/2025/06/17/1 https://access.redhat.com/errata/RHSA-2025:10024 https://access.redhat.com/errata/RHSA-2025:10027 https://access.redhat.com/errata/RHSA-2025:10180 https://access.redhat.com/errata/RHSA-2025:10354 https://access.redhat.com/errata/RHSA-2025:10357 https://access.redhat.com/errata/RHSA-2025:10358 https://access.redhat.com/errata/RHSA-2025:10359 https://access.redhat.com/errata/RHSA-2025:10361 https://access.redhat.com/errata/RHSA-2025:10362 https://access.redhat.com/errata/RHSA-2025:10735 https://access.redhat.com/errata/RHSA-2025:10823 https://access.redhat.com/errata/RHSA-2025:11386 https://access.redhat.com/errata/RHSA-2025:11487 https://access.redhat.com/errata/RHSA-2025:14557 https://access.redhat.com/errata/RHSA-2025:15099 https://access.redhat.com/errata/RHSA-2025:15709 https://access.redhat.com/errata/RHSA-2025:15827 https://access.redhat.com/errata/RHSA-2025:15828 https://access.redhat.com/errata/RHSA-2025:16524 https://access.redhat.com/errata/RHSA-2025:9526 https://access.redhat.com/security/cve/CVE-2025-6020 https://bugzilla.redhat.com/2372512 https://bugzilla.redhat.com/show_bug.cgi?id=2372512 https://bugzilla.redhat.com/show_bug.cgi?id=2388220 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6020 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8941 https://errata.almalinux.org/8/ALSA-2025-14557.html https://errata.rockylinux.org/RLSA-2025:14557 https://linux.oracle.com/cve/CVE-2025-6020.html https://linux.oracle.com/errata/ELSA-2025-9526.html https://nvd.nist.gov/vuln/detail/CVE-2025-6020 https://ubuntu.com/security/notices/USN-7580-1 https://www.cve.org/CVERecord?id=CVE-2025-6020 https://www.openwall.com/lists/oss-security/2025/06/17/1
libpam0g CVE-2024-10041 MEDIUM 1.5.2-6+deb12u1 https://access.redhat.com/errata/RHSA-2024:10379 https://access.redhat.com/errata/RHSA-2024:11250 https://access.redhat.com/errata/RHSA-2024:9941 https://access.redhat.com/security/cve/CVE-2024-10041 https://bugzilla.redhat.com/2319212 https://bugzilla.redhat.com/2324291 https://bugzilla.redhat.com/show_bug.cgi?id=2319212 https://bugzilla.redhat.com/show_bug.cgi?id=2324291 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10041 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10963 https://errata.almalinux.org/8/ALSA-2024-10379.html https://errata.rockylinux.org/RLSA-2024:10379 https://linux.oracle.com/cve/CVE-2024-10041.html https://linux.oracle.com/errata/ELSA-2024-11250.html https://nvd.nist.gov/vuln/detail/CVE-2024-10041 https://www.cve.org/CVERecord?id=CVE-2024-10041
libpam0g CVE-2024-22365 MEDIUM 1.5.2-6+deb12u1 http://www.openwall.com/lists/oss-security/2024/01/18/3 https://access.redhat.com/errata/RHSA-2024:3163 https://access.redhat.com/security/cve/CVE-2024-22365 https://bugzilla.redhat.com/2257722 https://bugzilla.redhat.com/show_bug.cgi?id=2257722 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22365 https://errata.almalinux.org/8/ALSA-2024-3163.html https://errata.rockylinux.org/RLSA-2024:3163 https://github.com/linux-pam/linux-pam https://github.com/linux-pam/linux-pam/commit/031bb5a5d0d950253b68138b498dc93be69a64cb https://github.com/linux-pam/linux-pam/releases/tag/v1.6.0 https://linux.oracle.com/cve/CVE-2024-22365.html https://linux.oracle.com/errata/ELSA-2024-3163.html https://nvd.nist.gov/vuln/detail/CVE-2024-22365 https://ubuntu.com/security/notices/USN-6588-1 https://ubuntu.com/security/notices/USN-6588-2 https://www.cve.org/CVERecord?id=CVE-2024-22365 https://www.openwall.com/lists/oss-security/2024/01/18/3
libperl5.36 CVE-2023-31484 HIGH 5.36.0-7+deb12u2 5.36.0-7+deb12u3 http://www.openwall.com/lists/oss-security/2023/04/29/1 http://www.openwall.com/lists/oss-security/2023/05/03/3 http://www.openwall.com/lists/oss-security/2023/05/03/5 http://www.openwall.com/lists/oss-security/2023/05/07/2 https://access.redhat.com/errata/RHSA-2024:3094 https://access.redhat.com/security/cve/CVE-2023-31484 https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/ https://bugzilla.redhat.com/2218667 https://bugzilla.redhat.com/show_bug.cgi?id=2218667 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31484 https://errata.almalinux.org/8/ALSA-2024-3094.html https://errata.rockylinux.org/RLSA-2023:6539 https://github.com/andk/cpanpm/commit/9c98370287f4e709924aee7c58ef21c85289a7f0 (2.35-TRIAL) https://github.com/andk/cpanpm/pull/175 https://linux.oracle.com/cve/CVE-2023-31484.html https://linux.oracle.com/errata/ELSA-2024-3094.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BM6UW55CNFUTNGD5ZRKGUKKKFDJGMFHL/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LEGCEOKFJVBJ2QQ6S2H4NAEWTUERC7SB/ https://metacpan.org/dist/CPAN/changes https://nvd.nist.gov/vuln/detail/CVE-2023-31484 https://security.netapp.com/advisory/ntap-20240621-0007/ https://ubuntu.com/security/notices/USN-6112-1 https://ubuntu.com/security/notices/USN-6112-2 https://www.cve.org/CVERecord?id=CVE-2023-31484 https://www.openwall.com/lists/oss-security/2023/04/18/14
libperl5.36 CVE-2025-40909 MEDIUM 5.36.0-7+deb12u2 5.36.0-7+deb12u3 http://www.openwall.com/lists/oss-security/2025/05/23/1 http://www.openwall.com/lists/oss-security/2025/05/30/4 http://www.openwall.com/lists/oss-security/2025/06/02/2 http://www.openwall.com/lists/oss-security/2025/06/02/5 http://www.openwall.com/lists/oss-security/2025/06/02/6 http://www.openwall.com/lists/oss-security/2025/06/02/7 http://www.openwall.com/lists/oss-security/2025/06/03/1 https://access.redhat.com/errata/RHSA-2025:11805 https://access.redhat.com/security/cve/CVE-2025-40909 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098226 https://bugzilla.redhat.com/2369407 https://bugzilla.redhat.com/show_bug.cgi?id=2369407 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-40909 https://errata.almalinux.org/8/ALSA-2025-11805.html https://errata.rockylinux.org/RLSA-2025:11805 https://github.com/Perl/perl5/commit/11a11ecf4bea72b17d250cfb43c897be1341861e https://github.com/Perl/perl5/commit/918bfff86ca8d6d4e4ec5b30994451e0bd74aba9.patch https://github.com/Perl/perl5/issues/10387 https://github.com/Perl/perl5/issues/23010 https://linux.oracle.com/cve/CVE-2025-40909.html https://linux.oracle.com/errata/ELSA-2025-12056.html https://lists.security.metacpan.org/cve-announce/msg/30017499/ https://nvd.nist.gov/vuln/detail/CVE-2025-40909 https://perldoc.perl.org/5.14.0/perl5136delta#Directory-handles-not-copied-to-threads https://ubuntu.com/security/notices/USN-7678-1 https://www.cve.org/CVERecord?id=CVE-2025-40909 https://www.openwall.com/lists/oss-security/2025/05/22/2
libperl5.36 CVE-2011-4116 LOW 5.36.0-7+deb12u2 http://www.openwall.com/lists/oss-security/2011/11/04/2 http://www.openwall.com/lists/oss-security/2011/11/04/4 https://access.redhat.com/security/cve/CVE-2011-4116 https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14 https://nvd.nist.gov/vuln/detail/CVE-2011-4116 https://rt.cpan.org/Public/Bug/Display.html?id=69106 https://seclists.org/oss-sec/2011/q4/238 https://www.cve.org/CVERecord?id=CVE-2011-4116
libperl5.36 CVE-2023-31486 LOW 5.36.0-7+deb12u2 http://www.openwall.com/lists/oss-security/2023/04/29/1 http://www.openwall.com/lists/oss-security/2023/05/03/3 http://www.openwall.com/lists/oss-security/2023/05/03/5 http://www.openwall.com/lists/oss-security/2023/05/07/2 https://access.redhat.com/errata/RHSA-2023:7174 https://access.redhat.com/security/cve/CVE-2023-31486 https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/ https://bugzilla.redhat.com/2228392 https://errata.almalinux.org/8/ALSA-2023-7174.html https://github.com/chansen/p5-http-tiny/pull/153 https://hackeriet.github.io/cpan-http-tiny-overview/ https://linux.oracle.com/cve/CVE-2023-31486.html https://linux.oracle.com/errata/ELSA-2023-7174.html https://nvd.nist.gov/vuln/detail/CVE-2023-31486 https://security.netapp.com/advisory/ntap-20241129-0011/ https://www.cve.org/CVERecord?id=CVE-2023-31486 https://www.openwall.com/lists/oss-security/2023/04/18/14 https://www.openwall.com/lists/oss-security/2023/05/03/4 https://www.reddit.com/r/perl/comments/111tadi/psa_httptiny_disabled_ssl_verification_by_default/
libsmartcols1 CVE-2022-0563 LOW 2.38.1-5+deb12u3 https://access.redhat.com/security/cve/CVE-2022-0563 https://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline/ https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w%40ws.net.home/T/#u https://lore.kernel.org/util-linux/[email protected]/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.gentoo.org/glsa/202401-08 https://security.netapp.com/advisory/ntap-20220331-0002/ https://www.cve.org/CVERecord?id=CVE-2022-0563
libsqlite3-0 CVE-2025-6965 CRITICAL 3.40.1-2+deb12u1 3.40.1-2+deb12u2 https://access.redhat.com/errata/RHSA-2025:14101 https://access.redhat.com/security/cve/CVE-2025-6965 https://bugzilla.redhat.com/2380149 https://bugzilla.redhat.com/show_bug.cgi?id=2380149 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6965 https://errata.almalinux.org/8/ALSA-2025-14101.html https://errata.rockylinux.org/RLSA-2025:12010 https://linux.oracle.com/cve/CVE-2025-6965.html https://linux.oracle.com/errata/ELSA-2025-14101.html https://nvd.nist.gov/vuln/detail/CVE-2025-6965 https://ubuntu.com/security/notices/USN-7676-1 https://ubuntu.com/security/notices/USN-7679-1 https://www.cve.org/CVERecord?id=CVE-2025-6965 https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8
libsqlite3-0 CVE-2025-7458 CRITICAL 3.40.1-2+deb12u1 https://access.redhat.com/security/cve/CVE-2025-7458 https://nvd.nist.gov/vuln/detail/CVE-2025-7458 https://sqlite.org/forum/forumpost/16ce2bb7a639e29b https://sqlite.org/src/info/12ad822d9b827777 https://www.cve.org/CVERecord?id=CVE-2025-7458
libsqlite3-0 CVE-2025-29088 MEDIUM 3.40.1-2+deb12u1 https://access.redhat.com/security/cve/CVE-2025-29088 https://gist.github.com/ylwango613/d3883fb9f6ba8a78086356779ce88248 https://github.com/sqlite/sqlite/commit/56d2fd008b108109f489339f5fd55212bb50afd4 https://nvd.nist.gov/vuln/detail/CVE-2025-29088 https://sqlite.org/forum/forumpost/48f365daec https://sqlite.org/releaselog/3_49_1.html https://ubuntu.com/security/notices/USN-7528-1 https://ubuntu.com/security/notices/USN-7679-1 https://www.cve.org/CVERecord?id=CVE-2025-29088 https://www.sqlite.org/cves.html
libsqlite3-0 CVE-2025-7709 MEDIUM 3.40.1-2+deb12u1 https://github.com/google/security-research/security/advisories/GHSA-v2c8-vqqp-hv3g https://ubuntu.com/security/notices/USN-7751-1 https://www.cve.org/CVERecord?id=CVE-2025-7709
libsqlite3-0 CVE-2021-45346 LOW 3.40.1-2+deb12u1 https://access.redhat.com/security/cve/CVE-2021-45346 https://github.com/guyinatuxedo/sqlite3_record_leaking https://nvd.nist.gov/vuln/detail/CVE-2021-45346 https://security.netapp.com/advisory/ntap-20220303-0001/ https://sqlite.org/forum/forumpost/056d557c2f8c452ed5 https://sqlite.org/forum/forumpost/53de8864ba114bf6 https://www.cve.org/CVERecord?id=CVE-2021-45346 https://www.sqlite.org/cves.html#status_of_recent_sqlite_cves
libssl3 CVE-2025-9230 MEDIUM 3.0.17-1~deb12u1 3.0.17-1~deb12u3 https://access.redhat.com/security/cve/CVE-2025-9230 https://github.com/openssl/openssl/commit/5965ea5dd6960f36d8b7f74f8eac67a8eb8f2b45 https://github.com/openssl/openssl/commit/9e91358f365dee6c446dcdcdb01c04d2743fd280 https://github.com/openssl/openssl/commit/a79c4ce559c6a3a8fd4109e9f33c1185d5bf2def https://github.com/openssl/openssl/commit/b5282d677551afda7d20e9c00e09561b547b2dfd https://github.com/openssl/openssl/commit/bae259a211ada6315dc50900686daaaaaa55f482 https://github.openssl.org/openssl/extended-releases/commit/c2b96348bfa662f25f4fabf81958ae822063dae3 https://github.openssl.org/openssl/extended-releases/commit/dfbaf161d8dafc1132dd88cd48ad990ed9b4c8ba https://nvd.nist.gov/vuln/detail/CVE-2025-9230 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9230
libssl3 CVE-2025-27587 LOW 3.0.17-1~deb12u1 https://github.com/openssl/openssl/issues/24253 https://minerva.crocs.fi.muni.cz https://www.cve.org/CVERecord?id=CVE-2025-27587
libssl3 CVE-2025-9232 LOW 3.0.17-1~deb12u1 3.0.17-1~deb12u3 https://access.redhat.com/security/cve/CVE-2025-9232 https://github.com/openssl/openssl/commit/2b4ec20e47959170422922eaff25346d362dcb35 https://github.com/openssl/openssl/commit/654dc11d23468a74fc8ea4672b702dd3feb7be4b https://github.com/openssl/openssl/commit/7cf21a30513c9e43c4bc3836c237cf086e194af3 https://github.com/openssl/openssl/commit/89e790ac431125a4849992858490bed6b225eadf https://github.com/openssl/openssl/commit/bbf38c034cdabd0a13330abcc4855c866f53d2e0 https://nvd.nist.gov/vuln/detail/CVE-2025-9232 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9232
libstdc++6 CVE-2022-27943 LOW 12.2.0-14+deb12u1 https://access.redhat.com/security/cve/CVE-2022-27943 https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105039 https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=1a770b01ef415e114164b6151d1e55acdee09371 https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=9234cdca6ee88badfc00297e72f13dac4e540c79 https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=fc968115a742d9e4674d9725ce9c2106b91b6ead https://gcc.gnu.org/pipermail/gcc-patches/2022-March/592244.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H424YXGW7OKXS2NCAP35OP6Y4P4AW6VG/ https://nvd.nist.gov/vuln/detail/CVE-2022-27943 https://sourceware.org/bugzilla/show_bug.cgi?id=28995 https://www.cve.org/CVERecord?id=CVE-2022-27943
libsystemd0 CVE-2013-4392 LOW 252.38-1~deb12u1 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725357 http://www.openwall.com/lists/oss-security/2013/10/01/9 https://access.redhat.com/security/cve/CVE-2013-4392 https://bugzilla.redhat.com/show_bug.cgi?id=859060 https://nvd.nist.gov/vuln/detail/CVE-2013-4392 https://www.cve.org/CVERecord?id=CVE-2013-4392
libsystemd0 CVE-2023-31437 LOW 252.38-1~deb12u1 https://github.com/kastel-security/Journald https://github.com/kastel-security/Journald/blob/main/journald-publication.pdf https://github.com/systemd/systemd/releases
libsystemd0 CVE-2023-31438 LOW 252.38-1~deb12u1 https://github.com/kastel-security/Journald https://github.com/kastel-security/Journald/blob/main/journald-publication.pdf https://github.com/systemd/systemd/pull/28886 https://github.com/systemd/systemd/releases
libsystemd0 CVE-2023-31439 LOW 252.38-1~deb12u1 https://github.com/kastel-security/Journald https://github.com/kastel-security/Journald/blob/main/journald-publication.pdf https://github.com/systemd/systemd/pull/28885 https://github.com/systemd/systemd/releases
libtinfo6 CVE-2023-50495 MEDIUM 6.4-4 https://access.redhat.com/security/cve/CVE-2023-50495 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/ https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00020.html https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00029.html https://nvd.nist.gov/vuln/detail/CVE-2023-50495 https://security.netapp.com/advisory/ntap-20240119-0008/ https://ubuntu.com/security/notices/USN-6684-1 https://www.cve.org/CVERecord?id=CVE-2023-50495
libtinfo6 CVE-2025-6141 LOW 6.4-4 https://access.redhat.com/security/cve/CVE-2025-6141 https://invisible-island.net/ncurses/NEWS.html#index-t20250329 https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00107.html https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00109.html https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00114.html https://nvd.nist.gov/vuln/detail/CVE-2025-6141 https://vuldb.com/?ctiid.312610 https://vuldb.com/?id.312610 https://vuldb.com/?submit.593000 https://www.cve.org/CVERecord?id=CVE-2025-6141 https://www.gnu.org/
libudev1 CVE-2013-4392 LOW 252.38-1~deb12u1 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725357 http://www.openwall.com/lists/oss-security/2013/10/01/9 https://access.redhat.com/security/cve/CVE-2013-4392 https://bugzilla.redhat.com/show_bug.cgi?id=859060 https://nvd.nist.gov/vuln/detail/CVE-2013-4392 https://www.cve.org/CVERecord?id=CVE-2013-4392
libudev1 CVE-2023-31437 LOW 252.38-1~deb12u1 https://github.com/kastel-security/Journald https://github.com/kastel-security/Journald/blob/main/journald-publication.pdf https://github.com/systemd/systemd/releases
libudev1 CVE-2023-31438 LOW 252.38-1~deb12u1 https://github.com/kastel-security/Journald https://github.com/kastel-security/Journald/blob/main/journald-publication.pdf https://github.com/systemd/systemd/pull/28886 https://github.com/systemd/systemd/releases
libudev1 CVE-2023-31439 LOW 252.38-1~deb12u1 https://github.com/kastel-security/Journald https://github.com/kastel-security/Journald/blob/main/journald-publication.pdf https://github.com/systemd/systemd/pull/28885 https://github.com/systemd/systemd/releases
libuuid1 CVE-2022-0563 LOW 2.38.1-5+deb12u3 https://access.redhat.com/security/cve/CVE-2022-0563 https://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline/ https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w%40ws.net.home/T/#u https://lore.kernel.org/util-linux/[email protected]/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.gentoo.org/glsa/202401-08 https://security.netapp.com/advisory/ntap-20220331-0002/ https://www.cve.org/CVERecord?id=CVE-2022-0563
libxtables12 CVE-2012-2663 LOW 1.8.9-2 http://www.spinics.net/lists/netfilter-devel/msg21248.html https://access.redhat.com/security/cve/CVE-2012-2663 https://bugzilla.redhat.com/show_bug.cgi?id=826702 https://nvd.nist.gov/vuln/detail/CVE-2012-2663 https://www.cve.org/CVERecord?id=CVE-2012-2663
login CVE-2007-5686 LOW 1:4.13+dfsg1-1+deb12u1 http://secunia.com/advisories/27215 http://www.securityfocus.com/archive/1/482129/100/100/threaded http://www.securityfocus.com/archive/1/482857/100/0/threaded http://www.securityfocus.com/bid/26048 http://www.vupen.com/english/advisories/2007/3474 https://issues.rpath.com/browse/RPL-1825
login CVE-2024-56433 LOW 1:4.13+dfsg1-1+deb12u1 https://access.redhat.com/security/cve/CVE-2024-56433 https://github.com/shadow-maint/shadow/blob/e2512d5741d4a44bdd81a8c2d0029b6222728cf0/etc/login.defs#L238-L241 https://github.com/shadow-maint/shadow/issues/1157 https://github.com/shadow-maint/shadow/releases/tag/4.4 https://nvd.nist.gov/vuln/detail/CVE-2024-56433 https://www.cve.org/CVERecord?id=CVE-2024-56433
login TEMP-0628843-DBAD28 LOW 1:4.13+dfsg1-1+deb12u1
mount CVE-2022-0563 LOW 2.38.1-5+deb12u3 https://access.redhat.com/security/cve/CVE-2022-0563 https://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline/ https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w%40ws.net.home/T/#u https://lore.kernel.org/util-linux/[email protected]/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.gentoo.org/glsa/202401-08 https://security.netapp.com/advisory/ntap-20220331-0002/ https://www.cve.org/CVERecord?id=CVE-2022-0563
ncurses-base CVE-2023-50495 MEDIUM 6.4-4 https://access.redhat.com/security/cve/CVE-2023-50495 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/ https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00020.html https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00029.html https://nvd.nist.gov/vuln/detail/CVE-2023-50495 https://security.netapp.com/advisory/ntap-20240119-0008/ https://ubuntu.com/security/notices/USN-6684-1 https://www.cve.org/CVERecord?id=CVE-2023-50495
ncurses-base CVE-2025-6141 LOW 6.4-4 https://access.redhat.com/security/cve/CVE-2025-6141 https://invisible-island.net/ncurses/NEWS.html#index-t20250329 https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00107.html https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00109.html https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00114.html https://nvd.nist.gov/vuln/detail/CVE-2025-6141 https://vuldb.com/?ctiid.312610 https://vuldb.com/?id.312610 https://vuldb.com/?submit.593000 https://www.cve.org/CVERecord?id=CVE-2025-6141 https://www.gnu.org/
ncurses-bin CVE-2023-50495 MEDIUM 6.4-4 https://access.redhat.com/security/cve/CVE-2023-50495 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/ https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00020.html https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00029.html https://nvd.nist.gov/vuln/detail/CVE-2023-50495 https://security.netapp.com/advisory/ntap-20240119-0008/ https://ubuntu.com/security/notices/USN-6684-1 https://www.cve.org/CVERecord?id=CVE-2023-50495
ncurses-bin CVE-2025-6141 LOW 6.4-4 https://access.redhat.com/security/cve/CVE-2025-6141 https://invisible-island.net/ncurses/NEWS.html#index-t20250329 https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00107.html https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00109.html https://lists.gnu.org/archive/html/bug-ncurses/2025-03/msg00114.html https://nvd.nist.gov/vuln/detail/CVE-2025-6141 https://vuldb.com/?ctiid.312610 https://vuldb.com/?id.312610 https://vuldb.com/?submit.593000 https://www.cve.org/CVERecord?id=CVE-2025-6141 https://www.gnu.org/
nginx CVE-2009-4487 LOW 1.22.1-9+deb12u2 http://www.securityfocus.com/archive/1/508830/100/0/threaded http://www.securityfocus.com/bid/37711 http://www.ush.it/team/ush/hack_httpd_escape/adv.txt https://access.redhat.com/security/cve/CVE-2009-4487 https://nvd.nist.gov/vuln/detail/CVE-2009-4487 https://www.cve.org/CVERecord?id=CVE-2009-4487
nginx CVE-2013-0337 LOW 1.22.1-9+deb12u2 http://secunia.com/advisories/55181 http://security.gentoo.org/glsa/glsa-201310-04.xml http://www.openwall.com/lists/oss-security/2013/02/21/15 http://www.openwall.com/lists/oss-security/2013/02/22/1 http://www.openwall.com/lists/oss-security/2013/02/24/1
nginx CVE-2023-44487 LOW 1.22.1-9+deb12u2 http://www.openwall.com/lists/oss-security/2023/10/10/6 http://www.openwall.com/lists/oss-security/2023/10/10/7 http://www.openwall.com/lists/oss-security/2023/10/13/4 http://www.openwall.com/lists/oss-security/2023/10/13/9 http://www.openwall.com/lists/oss-security/2023/10/18/4 http://www.openwall.com/lists/oss-security/2023/10/18/8 http://www.openwall.com/lists/oss-security/2023/10/19/6 http://www.openwall.com/lists/oss-security/2023/10/20/8 https://access.redhat.com/errata/RHSA-2024:1444 https://access.redhat.com/security/cve/CVE-2023-44487 https://access.redhat.com/security/cve/cve-2023-44487 https://akka.io/security/akka-http-cve-2023-44487.html https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/ https://aws.amazon.com/security/security-bulletins/AWS-2023-011 https://aws.amazon.com/security/security-bulletins/AWS-2023-011/ https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/ https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/ https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/ https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack https://blog.vespa.ai/cve-2023-44487 https://blog.vespa.ai/cve-2023-44487/ https://bugzilla.proxmox.com/show_bug.cgi?id=4988 https://bugzilla.redhat.com/2242803 https://bugzilla.redhat.com/2264574 https://bugzilla.redhat.com/show_bug.cgi?id=2242803 https://bugzilla.suse.com/show_bug.cgi?id=1216123 https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9 https://chaos.social/@icing/111210915918780532 https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/ https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487 https://devblogs.microsoft.com/dotnet/october-2023-updates/ https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715 https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve https://errata.almalinux.org/8/ALSA-2024-1444.html https://errata.rockylinux.org/RLSA-2023:5838 https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764 https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088 https://github.com/Azure/AKS/issues/3947 https://github.com/Kong/kong/discussions/11741 https://github.com/advisories/GHSA-qppj-fm5r-hxr3 https://github.com/advisories/GHSA-vx74-f528-fxqg https://github.com/advisories/GHSA-xpw8-rcwv-8f8p https://github.com/akka/akka-http/issues/4323 https://github.com/akka/akka-http/pull/4324 https://github.com/akka/akka-http/pull/4325 https://github.com/alibaba/tengine/issues/1872 https://github.com/apache/apisix/issues/10320 https://github.com/apache/httpd-site/pull/10 https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113 https://github.com/apache/tomcat/commit/944332bb15bd2f3bf76ec2caeb1ff0a58a3bc628 https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2 https://github.com/apache/trafficserver/pull/10564 https://github.com/apple/swift-nio-http2 https://github.com/apple/swift-nio-http2/security/advisories/GHSA-qppj-fm5r-hxr3 https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487 https://github.com/bcdannyboy/CVE-2023-44487 https://github.com/caddyserver/caddy/issues/5877 https://github.com/caddyserver/caddy/releases/tag/v2.7.5 https://github.com/dotnet/announcements/issues/277 https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73 https://github.com/eclipse/jetty.project/issues/10679 https://github.com/envoyproxy/envoy/pull/30055 https://github.com/etcd-io/etcd/issues/16740 https://github.com/facebook/proxygen/pull/466 https://github.com/golang/go/issues/63417 https://github.com/grpc/grpc-go/pull/6703 https://github.com/grpc/grpc-go/releases https://github.com/grpc/grpc/releases/tag/v1.59.2 https://github.com/h2o/h2o/pull/3291 https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf https://github.com/haproxy/haproxy/issues/2312 https://github.com/hyperium/hyper/issues/3337 https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244 https://github.com/junkurihara/rust-rpxy/issues/97 https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1 https://github.com/kazu-yamamoto/http2/issues/93 https://github.com/kubernetes/kubernetes/pull/121120 https://github.com/line/armeria/pull/5232 https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632 https://github.com/micrictor/http2-rst-stream https://github.com/microsoft/CBL-Mariner/pull/6381 https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61 https://github.com/nghttp2/nghttp2/pull/1961 https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0 https://github.com/ninenines/cowboy/issues/1615 https://github.com/nodejs/node/pull/50121 https://github.com/openresty/openresty/issues/930 https://github.com/opensearch-project/data-prepper/issues/3474 https://github.com/oqtane/oqtane.framework/discussions/3367 https://github.com/projectcontour/contour/pull/5826 https://github.com/tempesta-tech/tempesta/issues/1986 https://github.com/varnishcache/varnish-cache/issues/3996 https://go.dev/cl/534215 https://go.dev/cl/534235 https://go.dev/issue/63417 https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ https://istio.io/latest/news/security/istio-security-2023-004 https://istio.io/latest/news/security/istio-security-2023-004/ https://linkerd.io/2023/10/12/linkerd-cve-2023-44487 https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/ https://linux.oracle.com/cve/CVE-2023-44487.html https://linux.oracle.com/errata/ELSA-2024-1444.html https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/ https://lists.fedoraproject.org/archives/list/[email protected]/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI https://lists.fedoraproject.org/archives/list/[email protected]/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/ https://lists.fedoraproject.org/archives/list/[email protected]/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A https://lists.fedoraproject.org/archives/list/[email protected]/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/ https://lists.fedoraproject.org/archives/list/[email protected]/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ https://lists.fedoraproject.org/archives/list/[email protected]/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/ https://lists.fedoraproject.org/archives/list/[email protected]/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2 https://lists.fedoraproject.org/archives/list/[email protected]/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/ https://lists.fedoraproject.org/archives/list/[email protected]/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5 https://lists.fedoraproject.org/archives/list/[email protected]/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/ https://lists.fedoraproject.org/archives/list/[email protected]/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU https://lists.fedoraproject.org/archives/list/[email protected]/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/ https://lists.fedoraproject.org/archives/list/[email protected]/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ https://lists.fedoraproject.org/archives/list/[email protected]/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/ https://lists.fedoraproject.org/archives/list/[email protected]/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ https://lists.fedoraproject.org/archives/list/[email protected]/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/ https://lists.fedoraproject.org/archives/list/[email protected]/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY https://lists.fedoraproject.org/archives/list/[email protected]/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/ https://lists.fedoraproject.org/archives/list/[email protected]/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE https://lists.fedoraproject.org/archives/list/[email protected]/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/ https://lists.fedoraproject.org/archives/list/[email protected]/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG https://lists.fedoraproject.org/archives/list/[email protected]/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/ https://lists.fedoraproject.org/archives/list/[email protected]/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL https://lists.fedoraproject.org/archives/list/[email protected]/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/ https://lists.fedoraproject.org/archives/list/[email protected]/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU https://lists.fedoraproject.org/archives/list/[email protected]/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/ https://lists.fedoraproject.org/archives/list/[email protected]/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK https://lists.fedoraproject.org/archives/list/[email protected]/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/ https://lists.fedoraproject.org/archives/list/[email protected]/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX https://lists.fedoraproject.org/archives/list/[email protected]/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/ https://lists.fedoraproject.org/archives/list/[email protected]/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH https://lists.fedoraproject.org/archives/list/[email protected]/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/ https://lists.fedoraproject.org/archives/list/[email protected]/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y https://lists.fedoraproject.org/archives/list/[email protected]/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/ https://lists.fedoraproject.org/archives/list/[email protected]/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2 https://lists.fedoraproject.org/archives/list/[email protected]/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/ https://lists.fedoraproject.org/archives/list/[email protected]/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT https://lists.fedoraproject.org/archives/list/[email protected]/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/ https://lists.fedoraproject.org/archives/list/[email protected]/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3 https://lists.fedoraproject.org/archives/list/[email protected]/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/ https://lists.fedoraproject.org/archives/list/[email protected]/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4 https://lists.fedoraproject.org/archives/list/[email protected]/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/ https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2 https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/ https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487 https://my.f5.com/manage/s/article/K000137106 https://netty.io/news/2023/10/10/4-1-100-Final.html https://news.ycombinator.com/item?id=37830987 https://news.ycombinator.com/item?id=37830998 https://news.ycombinator.com/item?id=37831062 https://news.ycombinator.com/item?id=37837043 https://nodejs.org/en/blog/vulnerability/october-2023-security-releases https://nvd.nist.gov/vuln/detail/CVE-2023-44487 https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/ https://pkg.go.dev/vuln/GO-2023-2102 https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ https://security.gentoo.org/glsa/202311-09 https://security.netapp.com/advisory/ntap-20231016-0001 https://security.netapp.com/advisory/ntap-20231016-0001/ https://security.netapp.com/advisory/ntap-20240426-0007 https://security.netapp.com/advisory/ntap-20240426-0007/ https://security.netapp.com/advisory/ntap-20240621-0006 https://security.netapp.com/advisory/ntap-20240621-0006/ https://security.netapp.com/advisory/ntap-20240621-0007 https://security.netapp.com/advisory/ntap-20240621-0007/ https://security.paloaltonetworks.com/CVE-2023-44487 https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14 https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.0-M12 https://tomcat.apache.org/security-8.html https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.94 https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.81 https://ubuntu.com/security/CVE-2023-44487 https://ubuntu.com/security/notices/USN-6427-1 https://ubuntu.com/security/notices/USN-6427-2 https://ubuntu.com/security/notices/USN-6438-1 https://ubuntu.com/security/notices/USN-6505-1 https://ubuntu.com/security/notices/USN-6574-1 https://ubuntu.com/security/notices/USN-6754-1 https://ubuntu.com/security/notices/USN-6994-1 https://ubuntu.com/security/notices/USN-7067-1 https://ubuntu.com/security/notices/USN-7410-1 https://ubuntu.com/security/notices/USN-7469-1 https://ubuntu.com/security/notices/USN-7469-2 https://ubuntu.com/security/notices/USN-7469-3 https://ubuntu.com/security/notices/USN-7469-4 https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/ https://www.cisa.gov/known-exploited-vulnerabilities-catalog https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487 https://www.cve.org/CVERecord?id=CVE-2023-44487 https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event https://www.debian.org/security/2023/dsa-5521 https://www.debian.org/security/2023/dsa-5522 https://www.debian.org/security/2023/dsa-5540 https://www.debian.org/security/2023/dsa-5549 https://www.debian.org/security/2023/dsa-5558 https://www.debian.org/security/2023/dsa-5570 https://www.eclipse.org/lists/jetty-announce/msg00181.html https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487 https://www.mail-archive.com/[email protected]/msg44134.html https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487 https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/ https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/ https://www.openwall.com/lists/oss-security/2023/10/10/6 https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/ https://www.vicarius.io/vsociety/posts/rapid-reset-cve-2023-44487-dos-in-http2-understanding-the-root-cause
nginx CVE-2025-53859 LOW 1.22.1-9+deb12u2 1.22.1-9+deb12u3 https://access.redhat.com/security/cve/CVE-2025-53859 https://my.f5.com/manage/s/article/K000152786 https://nginx.org/download/patch.2025.smtp.txt https://nvd.nist.gov/vuln/detail/CVE-2025-53859 https://ubuntu.com/security/notices/USN-7715-1 https://www.cve.org/CVERecord?id=CVE-2025-53859 https://www.openwall.com/lists/oss-security/2025/08/13/5
nginx-common CVE-2009-4487 LOW 1.22.1-9+deb12u2 http://www.securityfocus.com/archive/1/508830/100/0/threaded http://www.securityfocus.com/bid/37711 http://www.ush.it/team/ush/hack_httpd_escape/adv.txt https://access.redhat.com/security/cve/CVE-2009-4487 https://nvd.nist.gov/vuln/detail/CVE-2009-4487 https://www.cve.org/CVERecord?id=CVE-2009-4487
nginx-common CVE-2013-0337 LOW 1.22.1-9+deb12u2 http://secunia.com/advisories/55181 http://security.gentoo.org/glsa/glsa-201310-04.xml http://www.openwall.com/lists/oss-security/2013/02/21/15 http://www.openwall.com/lists/oss-security/2013/02/22/1 http://www.openwall.com/lists/oss-security/2013/02/24/1
nginx-common CVE-2023-44487 LOW 1.22.1-9+deb12u2 http://www.openwall.com/lists/oss-security/2023/10/10/6 http://www.openwall.com/lists/oss-security/2023/10/10/7 http://www.openwall.com/lists/oss-security/2023/10/13/4 http://www.openwall.com/lists/oss-security/2023/10/13/9 http://www.openwall.com/lists/oss-security/2023/10/18/4 http://www.openwall.com/lists/oss-security/2023/10/18/8 http://www.openwall.com/lists/oss-security/2023/10/19/6 http://www.openwall.com/lists/oss-security/2023/10/20/8 https://access.redhat.com/errata/RHSA-2024:1444 https://access.redhat.com/security/cve/CVE-2023-44487 https://access.redhat.com/security/cve/cve-2023-44487 https://akka.io/security/akka-http-cve-2023-44487.html https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/ https://aws.amazon.com/security/security-bulletins/AWS-2023-011 https://aws.amazon.com/security/security-bulletins/AWS-2023-011/ https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/ https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/ https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/ https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack https://blog.vespa.ai/cve-2023-44487 https://blog.vespa.ai/cve-2023-44487/ https://bugzilla.proxmox.com/show_bug.cgi?id=4988 https://bugzilla.redhat.com/2242803 https://bugzilla.redhat.com/2264574 https://bugzilla.redhat.com/show_bug.cgi?id=2242803 https://bugzilla.suse.com/show_bug.cgi?id=1216123 https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9 https://chaos.social/@icing/111210915918780532 https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/ https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487 https://devblogs.microsoft.com/dotnet/october-2023-updates/ https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715 https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve https://errata.almalinux.org/8/ALSA-2024-1444.html https://errata.rockylinux.org/RLSA-2023:5838 https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764 https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088 https://github.com/Azure/AKS/issues/3947 https://github.com/Kong/kong/discussions/11741 https://github.com/advisories/GHSA-qppj-fm5r-hxr3 https://github.com/advisories/GHSA-vx74-f528-fxqg https://github.com/advisories/GHSA-xpw8-rcwv-8f8p https://github.com/akka/akka-http/issues/4323 https://github.com/akka/akka-http/pull/4324 https://github.com/akka/akka-http/pull/4325 https://github.com/alibaba/tengine/issues/1872 https://github.com/apache/apisix/issues/10320 https://github.com/apache/httpd-site/pull/10 https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113 https://github.com/apache/tomcat/commit/944332bb15bd2f3bf76ec2caeb1ff0a58a3bc628 https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2 https://github.com/apache/trafficserver/pull/10564 https://github.com/apple/swift-nio-http2 https://github.com/apple/swift-nio-http2/security/advisories/GHSA-qppj-fm5r-hxr3 https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487 https://github.com/bcdannyboy/CVE-2023-44487 https://github.com/caddyserver/caddy/issues/5877 https://github.com/caddyserver/caddy/releases/tag/v2.7.5 https://github.com/dotnet/announcements/issues/277 https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73 https://github.com/eclipse/jetty.project/issues/10679 https://github.com/envoyproxy/envoy/pull/30055 https://github.com/etcd-io/etcd/issues/16740 https://github.com/facebook/proxygen/pull/466 https://github.com/golang/go/issues/63417 https://github.com/grpc/grpc-go/pull/6703 https://github.com/grpc/grpc-go/releases https://github.com/grpc/grpc/releases/tag/v1.59.2 https://github.com/h2o/h2o/pull/3291 https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf https://github.com/haproxy/haproxy/issues/2312 https://github.com/hyperium/hyper/issues/3337 https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244 https://github.com/junkurihara/rust-rpxy/issues/97 https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1 https://github.com/kazu-yamamoto/http2/issues/93 https://github.com/kubernetes/kubernetes/pull/121120 https://github.com/line/armeria/pull/5232 https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632 https://github.com/micrictor/http2-rst-stream https://github.com/microsoft/CBL-Mariner/pull/6381 https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61 https://github.com/nghttp2/nghttp2/pull/1961 https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0 https://github.com/ninenines/cowboy/issues/1615 https://github.com/nodejs/node/pull/50121 https://github.com/openresty/openresty/issues/930 https://github.com/opensearch-project/data-prepper/issues/3474 https://github.com/oqtane/oqtane.framework/discussions/3367 https://github.com/projectcontour/contour/pull/5826 https://github.com/tempesta-tech/tempesta/issues/1986 https://github.com/varnishcache/varnish-cache/issues/3996 https://go.dev/cl/534215 https://go.dev/cl/534235 https://go.dev/issue/63417 https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ https://istio.io/latest/news/security/istio-security-2023-004 https://istio.io/latest/news/security/istio-security-2023-004/ https://linkerd.io/2023/10/12/linkerd-cve-2023-44487 https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/ https://linux.oracle.com/cve/CVE-2023-44487.html https://linux.oracle.com/errata/ELSA-2024-1444.html https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/ https://lists.fedoraproject.org/archives/list/[email protected]/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI https://lists.fedoraproject.org/archives/list/[email protected]/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/ https://lists.fedoraproject.org/archives/list/[email protected]/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A https://lists.fedoraproject.org/archives/list/[email protected]/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/ https://lists.fedoraproject.org/archives/list/[email protected]/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ https://lists.fedoraproject.org/archives/list/[email protected]/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/ https://lists.fedoraproject.org/archives/list/[email protected]/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2 https://lists.fedoraproject.org/archives/list/[email protected]/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/ https://lists.fedoraproject.org/archives/list/[email protected]/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5 https://lists.fedoraproject.org/archives/list/[email protected]/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/ https://lists.fedoraproject.org/archives/list/[email protected]/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU https://lists.fedoraproject.org/archives/list/[email protected]/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/ https://lists.fedoraproject.org/archives/list/[email protected]/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ https://lists.fedoraproject.org/archives/list/[email protected]/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/ https://lists.fedoraproject.org/archives/list/[email protected]/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ https://lists.fedoraproject.org/archives/list/[email protected]/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/ https://lists.fedoraproject.org/archives/list/[email protected]/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY https://lists.fedoraproject.org/archives/list/[email protected]/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/ https://lists.fedoraproject.org/archives/list/[email protected]/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE https://lists.fedoraproject.org/archives/list/[email protected]/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/ https://lists.fedoraproject.org/archives/list/[email protected]/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG https://lists.fedoraproject.org/archives/list/[email protected]/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/ https://lists.fedoraproject.org/archives/list/[email protected]/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL https://lists.fedoraproject.org/archives/list/[email protected]/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/ https://lists.fedoraproject.org/archives/list/[email protected]/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU https://lists.fedoraproject.org/archives/list/[email protected]/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/ https://lists.fedoraproject.org/archives/list/[email protected]/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK https://lists.fedoraproject.org/archives/list/[email protected]/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/ https://lists.fedoraproject.org/archives/list/[email protected]/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX https://lists.fedoraproject.org/archives/list/[email protected]/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/ https://lists.fedoraproject.org/archives/list/[email protected]/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH https://lists.fedoraproject.org/archives/list/[email protected]/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/ https://lists.fedoraproject.org/archives/list/[email protected]/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y https://lists.fedoraproject.org/archives/list/[email protected]/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/ https://lists.fedoraproject.org/archives/list/[email protected]/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2 https://lists.fedoraproject.org/archives/list/[email protected]/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/ https://lists.fedoraproject.org/archives/list/[email protected]/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT https://lists.fedoraproject.org/archives/list/[email protected]/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/ https://lists.fedoraproject.org/archives/list/[email protected]/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3 https://lists.fedoraproject.org/archives/list/[email protected]/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/ https://lists.fedoraproject.org/archives/list/[email protected]/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4 https://lists.fedoraproject.org/archives/list/[email protected]/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/ https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2 https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/ https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487 https://my.f5.com/manage/s/article/K000137106 https://netty.io/news/2023/10/10/4-1-100-Final.html https://news.ycombinator.com/item?id=37830987 https://news.ycombinator.com/item?id=37830998 https://news.ycombinator.com/item?id=37831062 https://news.ycombinator.com/item?id=37837043 https://nodejs.org/en/blog/vulnerability/october-2023-security-releases https://nvd.nist.gov/vuln/detail/CVE-2023-44487 https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/ https://pkg.go.dev/vuln/GO-2023-2102 https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ https://security.gentoo.org/glsa/202311-09 https://security.netapp.com/advisory/ntap-20231016-0001 https://security.netapp.com/advisory/ntap-20231016-0001/ https://security.netapp.com/advisory/ntap-20240426-0007 https://security.netapp.com/advisory/ntap-20240426-0007/ https://security.netapp.com/advisory/ntap-20240621-0006 https://security.netapp.com/advisory/ntap-20240621-0006/ https://security.netapp.com/advisory/ntap-20240621-0007 https://security.netapp.com/advisory/ntap-20240621-0007/ https://security.paloaltonetworks.com/CVE-2023-44487 https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14 https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.0-M12 https://tomcat.apache.org/security-8.html https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.94 https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.81 https://ubuntu.com/security/CVE-2023-44487 https://ubuntu.com/security/notices/USN-6427-1 https://ubuntu.com/security/notices/USN-6427-2 https://ubuntu.com/security/notices/USN-6438-1 https://ubuntu.com/security/notices/USN-6505-1 https://ubuntu.com/security/notices/USN-6574-1 https://ubuntu.com/security/notices/USN-6754-1 https://ubuntu.com/security/notices/USN-6994-1 https://ubuntu.com/security/notices/USN-7067-1 https://ubuntu.com/security/notices/USN-7410-1 https://ubuntu.com/security/notices/USN-7469-1 https://ubuntu.com/security/notices/USN-7469-2 https://ubuntu.com/security/notices/USN-7469-3 https://ubuntu.com/security/notices/USN-7469-4 https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/ https://www.cisa.gov/known-exploited-vulnerabilities-catalog https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487 https://www.cve.org/CVERecord?id=CVE-2023-44487 https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event https://www.debian.org/security/2023/dsa-5521 https://www.debian.org/security/2023/dsa-5522 https://www.debian.org/security/2023/dsa-5540 https://www.debian.org/security/2023/dsa-5549 https://www.debian.org/security/2023/dsa-5558 https://www.debian.org/security/2023/dsa-5570 https://www.eclipse.org/lists/jetty-announce/msg00181.html https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487 https://www.mail-archive.com/[email protected]/msg44134.html https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487 https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/ https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/ https://www.openwall.com/lists/oss-security/2023/10/10/6 https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/ https://www.vicarius.io/vsociety/posts/rapid-reset-cve-2023-44487-dos-in-http2-understanding-the-root-cause
nginx-common CVE-2025-53859 LOW 1.22.1-9+deb12u2 1.22.1-9+deb12u3 https://access.redhat.com/security/cve/CVE-2025-53859 https://my.f5.com/manage/s/article/K000152786 https://nginx.org/download/patch.2025.smtp.txt https://nvd.nist.gov/vuln/detail/CVE-2025-53859 https://ubuntu.com/security/notices/USN-7715-1 https://www.cve.org/CVERecord?id=CVE-2025-53859 https://www.openwall.com/lists/oss-security/2025/08/13/5
openssh-client CVE-2025-61984 MEDIUM 1:9.2p1-2+deb12u7 https://access.redhat.com/security/cve/CVE-2025-61984 https://dgl.cx/2025/10/bash-a-newline-ssh-proxycommand-cve-2025-61984 https://marc.info/?l=openssh-unix-dev&m=175974522032149&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-61984 https://www.cve.org/CVERecord?id=CVE-2025-61984 https://www.openssh.com/releasenotes.html#10.1p1 https://www.openwall.com/lists/oss-security/2025/10/06/1
openssh-client CVE-2025-61985 MEDIUM 1:9.2p1-2+deb12u7 https://access.redhat.com/security/cve/CVE-2025-61985 https://marc.info/?l=openssh-unix-dev&m=175974522032149&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-61985 https://www.cve.org/CVERecord?id=CVE-2025-61985 https://www.openssh.com/releasenotes.html#10.1p1 https://www.openwall.com/lists/oss-security/2025/10/06/1
openssh-client CVE-2007-2243 LOW 1:9.2p1-2+deb12u7 http://lists.grok.org.uk/pipermail/full-disclosure/2007-April/053906.html http://lists.grok.org.uk/pipermail/full-disclosure/2007-April/053951.html http://securityreason.com/securityalert/2631 http://www.osvdb.org/34600 http://www.securityfocus.com/bid/23601 https://exchange.xforce.ibmcloud.com/vulnerabilities/33794 https://security.netapp.com/advisory/ntap-20191107-0003/
openssh-client CVE-2007-2768 LOW 1:9.2p1-2+deb12u7 http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html http://www.osvdb.org/34601 https://nvd.nist.gov/vuln/detail/CVE-2007-2768 https://security.netapp.com/advisory/ntap-20191107-0002/
openssh-client CVE-2008-3234 LOW 1:9.2p1-2+deb12u7 http://www.securityfocus.com/bid/30276 https://exchange.xforce.ibmcloud.com/vulnerabilities/44037 https://www.exploit-db.com/exploits/6094
openssh-client CVE-2016-20012 LOW 1:9.2p1-2+deb12u7 https://access.redhat.com/security/cve/CVE-2016-20012 https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265 https://github.com/openssh/openssh-portable/pull/270 https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097 https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185 https://nvd.nist.gov/vuln/detail/CVE-2016-20012 https://rushter.com/blog/public-ssh-keys/ https://security.netapp.com/advisory/ntap-20211014-0005/ https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak https://www.cve.org/CVERecord?id=CVE-2016-20012 https://www.openwall.com/lists/oss-security/2018/08/24/1
openssh-client CVE-2018-15919 LOW 1:9.2p1-2+deb12u7 http://seclists.org/oss-sec/2018/q3/180 http://www.securityfocus.com/bid/105163 https://access.redhat.com/security/cve/CVE-2018-15919 https://nvd.nist.gov/vuln/detail/CVE-2018-15919 https://security.netapp.com/advisory/ntap-20181221-0001/ https://www.cve.org/CVERecord?id=CVE-2018-15919
openssh-client CVE-2019-6110 LOW 1:9.2p1-2+deb12u7 https://access.redhat.com/security/cve/CVE-2019-6110 https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf https://cvsweb.openbsd.org/src/usr.bin/ssh/progressmeter.c https://cvsweb.openbsd.org/src/usr.bin/ssh/scp.c https://nvd.nist.gov/vuln/detail/CVE-2019-6110 https://security.gentoo.org/glsa/201903-16 https://security.netapp.com/advisory/ntap-20190213-0001/ https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt https://www.cve.org/CVERecord?id=CVE-2019-6110 https://www.exploit-db.com/exploits/46193/
openssh-client CVE-2020-14145 LOW 1:9.2p1-2+deb12u7 http://www.openwall.com/lists/oss-security/2020/12/02/1 https://access.redhat.com/security/cve/CVE-2020-14145 https://anongit.mindrot.org/openssh.git/commit/?id=b3855ff053f5078ec3d3c653cdaedefaa5fc362d https://docs.ssh-mitm.at/CVE-2020-14145.html https://github.com/openssh/openssh-portable/compare/V_8_3_P1...V_8_4_P1 https://github.com/ssh-mitm/ssh-mitm/blob/master/ssh_proxy_server/plugins/session/cve202014145.py https://linux.oracle.com/cve/CVE-2020-14145.html https://linux.oracle.com/errata/ELSA-2021-4368.html https://nvd.nist.gov/vuln/detail/CVE-2020-14145 https://security.gentoo.org/glsa/202105-35 https://security.netapp.com/advisory/ntap-20200709-0004/ https://www.cve.org/CVERecord?id=CVE-2020-14145 https://www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/
openssh-client CVE-2020-15778 LOW 1:9.2p1-2+deb12u7 https://access.redhat.com/articles/5284081 https://access.redhat.com/errata/RHSA-2024:3166 https://access.redhat.com/security/cve/CVE-2020-15778 https://bugzilla.redhat.com/1860487 https://bugzilla.redhat.com/show_bug.cgi?id=1860487 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15778 https://errata.almalinux.org/8/ALSA-2024-3166.html https://errata.rockylinux.org/RLSA-2024:3166 https://github.com/cpandya2909/CVE-2020-15778 https://github.com/cpandya2909/CVE-2020-15778/ https://linux.oracle.com/cve/CVE-2020-15778.html https://linux.oracle.com/errata/ELSA-2024-3166.html https://news.ycombinator.com/item?id=25005567 https://nvd.nist.gov/vuln/detail/CVE-2020-15778 https://security.gentoo.org/glsa/202212-06 https://security.netapp.com/advisory/ntap-20200731-0007/ https://www.cve.org/CVERecord?id=CVE-2020-15778 https://www.openssh.com/security.html
openssl CVE-2025-9230 MEDIUM 3.0.17-1~deb12u1 3.0.17-1~deb12u3 https://access.redhat.com/security/cve/CVE-2025-9230 https://github.com/openssl/openssl/commit/5965ea5dd6960f36d8b7f74f8eac67a8eb8f2b45 https://github.com/openssl/openssl/commit/9e91358f365dee6c446dcdcdb01c04d2743fd280 https://github.com/openssl/openssl/commit/a79c4ce559c6a3a8fd4109e9f33c1185d5bf2def https://github.com/openssl/openssl/commit/b5282d677551afda7d20e9c00e09561b547b2dfd https://github.com/openssl/openssl/commit/bae259a211ada6315dc50900686daaaaaa55f482 https://github.openssl.org/openssl/extended-releases/commit/c2b96348bfa662f25f4fabf81958ae822063dae3 https://github.openssl.org/openssl/extended-releases/commit/dfbaf161d8dafc1132dd88cd48ad990ed9b4c8ba https://nvd.nist.gov/vuln/detail/CVE-2025-9230 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9230
openssl CVE-2025-27587 LOW 3.0.17-1~deb12u1 https://github.com/openssl/openssl/issues/24253 https://minerva.crocs.fi.muni.cz https://www.cve.org/CVERecord?id=CVE-2025-27587
openssl CVE-2025-9232 LOW 3.0.17-1~deb12u1 3.0.17-1~deb12u3 https://access.redhat.com/security/cve/CVE-2025-9232 https://github.com/openssl/openssl/commit/2b4ec20e47959170422922eaff25346d362dcb35 https://github.com/openssl/openssl/commit/654dc11d23468a74fc8ea4672b702dd3feb7be4b https://github.com/openssl/openssl/commit/7cf21a30513c9e43c4bc3836c237cf086e194af3 https://github.com/openssl/openssl/commit/89e790ac431125a4849992858490bed6b225eadf https://github.com/openssl/openssl/commit/bbf38c034cdabd0a13330abcc4855c866f53d2e0 https://nvd.nist.gov/vuln/detail/CVE-2025-9232 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9232
passwd CVE-2007-5686 LOW 1:4.13+dfsg1-1+deb12u1 http://secunia.com/advisories/27215 http://www.securityfocus.com/archive/1/482129/100/100/threaded http://www.securityfocus.com/archive/1/482857/100/0/threaded http://www.securityfocus.com/bid/26048 http://www.vupen.com/english/advisories/2007/3474 https://issues.rpath.com/browse/RPL-1825
passwd CVE-2024-56433 LOW 1:4.13+dfsg1-1+deb12u1 https://access.redhat.com/security/cve/CVE-2024-56433 https://github.com/shadow-maint/shadow/blob/e2512d5741d4a44bdd81a8c2d0029b6222728cf0/etc/login.defs#L238-L241 https://github.com/shadow-maint/shadow/issues/1157 https://github.com/shadow-maint/shadow/releases/tag/4.4 https://nvd.nist.gov/vuln/detail/CVE-2024-56433 https://www.cve.org/CVERecord?id=CVE-2024-56433
passwd TEMP-0628843-DBAD28 LOW 1:4.13+dfsg1-1+deb12u1
patch CVE-2010-4651 LOW 2.7.6-7 http://git.savannah.gnu.org/cgit/patch.git/commit/?id=685a78b6052f4df6eac6d625a545cfb54a6ac0e1 http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.html http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055241.html http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055246.html http://lists.gnu.org/archive/html/bug-patch/2010-12/msg00000.html http://openwall.com/lists/oss-security/2011/01/05/10 http://openwall.com/lists/oss-security/2011/01/06/19 http://openwall.com/lists/oss-security/2011/01/06/20 http://openwall.com/lists/oss-security/2011/01/06/21 http://secunia.com/advisories/43663 http://secunia.com/advisories/43677 http://support.apple.com/kb/HT4723 http://www.securityfocus.com/bid/46768 http://www.vupen.com/english/advisories/2011/0600 https://access.redhat.com/security/cve/CVE-2010-4651 https://bugzilla.redhat.com/show_bug.cgi?id=667529 https://nvd.nist.gov/vuln/detail/CVE-2010-4651 https://ubuntu.com/security/notices/USN-2651-1 https://www.cve.org/CVERecord?id=CVE-2010-4651
patch CVE-2018-6951 LOW 2.7.6-7 http://www.securityfocus.com/bid/103044 https://access.redhat.com/security/cve/CVE-2018-6951 https://git.savannah.gnu.org/cgit/patch.git/commit/?id=f290f48a621867084884bfff87f8093c15195e6a https://nvd.nist.gov/vuln/detail/CVE-2018-6951 https://savannah.gnu.org/bugs/index.php?53132 https://security.gentoo.org/glsa/201904-17 https://ubuntu.com/security/notices/USN-3624-1 https://usn.ubuntu.com/3624-1/ https://www.cve.org/CVERecord?id=CVE-2018-6951
patch CVE-2018-6952 LOW 2.7.6-7 http://www.securityfocus.com/bid/103047 https://access.redhat.com/errata/RHSA-2019:2033 https://access.redhat.com/security/cve/CVE-2018-6952 https://linux.oracle.com/cve/CVE-2018-6952.html https://linux.oracle.com/errata/ELSA-2019-2033.html https://nvd.nist.gov/vuln/detail/CVE-2018-6952 https://savannah.gnu.org/bugs/index.php?53133 https://security.gentoo.org/glsa/201904-17 https://www.cve.org/CVERecord?id=CVE-2018-6952
patch CVE-2021-45261 LOW 2.7.6-7 https://access.redhat.com/security/cve/CVE-2021-45261 https://nvd.nist.gov/vuln/detail/CVE-2021-45261 https://savannah.gnu.org/bugs/?61685 https://www.cve.org/CVERecord?id=CVE-2021-45261
perl CVE-2023-31484 HIGH 5.36.0-7+deb12u2 5.36.0-7+deb12u3 http://www.openwall.com/lists/oss-security/2023/04/29/1 http://www.openwall.com/lists/oss-security/2023/05/03/3 http://www.openwall.com/lists/oss-security/2023/05/03/5 http://www.openwall.com/lists/oss-security/2023/05/07/2 https://access.redhat.com/errata/RHSA-2024:3094 https://access.redhat.com/security/cve/CVE-2023-31484 https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/ https://bugzilla.redhat.com/2218667 https://bugzilla.redhat.com/show_bug.cgi?id=2218667 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31484 https://errata.almalinux.org/8/ALSA-2024-3094.html https://errata.rockylinux.org/RLSA-2023:6539 https://github.com/andk/cpanpm/commit/9c98370287f4e709924aee7c58ef21c85289a7f0 (2.35-TRIAL) https://github.com/andk/cpanpm/pull/175 https://linux.oracle.com/cve/CVE-2023-31484.html https://linux.oracle.com/errata/ELSA-2024-3094.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BM6UW55CNFUTNGD5ZRKGUKKKFDJGMFHL/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LEGCEOKFJVBJ2QQ6S2H4NAEWTUERC7SB/ https://metacpan.org/dist/CPAN/changes https://nvd.nist.gov/vuln/detail/CVE-2023-31484 https://security.netapp.com/advisory/ntap-20240621-0007/ https://ubuntu.com/security/notices/USN-6112-1 https://ubuntu.com/security/notices/USN-6112-2 https://www.cve.org/CVERecord?id=CVE-2023-31484 https://www.openwall.com/lists/oss-security/2023/04/18/14
perl CVE-2025-40909 MEDIUM 5.36.0-7+deb12u2 5.36.0-7+deb12u3 http://www.openwall.com/lists/oss-security/2025/05/23/1 http://www.openwall.com/lists/oss-security/2025/05/30/4 http://www.openwall.com/lists/oss-security/2025/06/02/2 http://www.openwall.com/lists/oss-security/2025/06/02/5 http://www.openwall.com/lists/oss-security/2025/06/02/6 http://www.openwall.com/lists/oss-security/2025/06/02/7 http://www.openwall.com/lists/oss-security/2025/06/03/1 https://access.redhat.com/errata/RHSA-2025:11805 https://access.redhat.com/security/cve/CVE-2025-40909 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098226 https://bugzilla.redhat.com/2369407 https://bugzilla.redhat.com/show_bug.cgi?id=2369407 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-40909 https://errata.almalinux.org/8/ALSA-2025-11805.html https://errata.rockylinux.org/RLSA-2025:11805 https://github.com/Perl/perl5/commit/11a11ecf4bea72b17d250cfb43c897be1341861e https://github.com/Perl/perl5/commit/918bfff86ca8d6d4e4ec5b30994451e0bd74aba9.patch https://github.com/Perl/perl5/issues/10387 https://github.com/Perl/perl5/issues/23010 https://linux.oracle.com/cve/CVE-2025-40909.html https://linux.oracle.com/errata/ELSA-2025-12056.html https://lists.security.metacpan.org/cve-announce/msg/30017499/ https://nvd.nist.gov/vuln/detail/CVE-2025-40909 https://perldoc.perl.org/5.14.0/perl5136delta#Directory-handles-not-copied-to-threads https://ubuntu.com/security/notices/USN-7678-1 https://www.cve.org/CVERecord?id=CVE-2025-40909 https://www.openwall.com/lists/oss-security/2025/05/22/2
perl CVE-2011-4116 LOW 5.36.0-7+deb12u2 http://www.openwall.com/lists/oss-security/2011/11/04/2 http://www.openwall.com/lists/oss-security/2011/11/04/4 https://access.redhat.com/security/cve/CVE-2011-4116 https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14 https://nvd.nist.gov/vuln/detail/CVE-2011-4116 https://rt.cpan.org/Public/Bug/Display.html?id=69106 https://seclists.org/oss-sec/2011/q4/238 https://www.cve.org/CVERecord?id=CVE-2011-4116
perl CVE-2023-31486 LOW 5.36.0-7+deb12u2 http://www.openwall.com/lists/oss-security/2023/04/29/1 http://www.openwall.com/lists/oss-security/2023/05/03/3 http://www.openwall.com/lists/oss-security/2023/05/03/5 http://www.openwall.com/lists/oss-security/2023/05/07/2 https://access.redhat.com/errata/RHSA-2023:7174 https://access.redhat.com/security/cve/CVE-2023-31486 https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/ https://bugzilla.redhat.com/2228392 https://errata.almalinux.org/8/ALSA-2023-7174.html https://github.com/chansen/p5-http-tiny/pull/153 https://hackeriet.github.io/cpan-http-tiny-overview/ https://linux.oracle.com/cve/CVE-2023-31486.html https://linux.oracle.com/errata/ELSA-2023-7174.html https://nvd.nist.gov/vuln/detail/CVE-2023-31486 https://security.netapp.com/advisory/ntap-20241129-0011/ https://www.cve.org/CVERecord?id=CVE-2023-31486 https://www.openwall.com/lists/oss-security/2023/04/18/14 https://www.openwall.com/lists/oss-security/2023/05/03/4 https://www.reddit.com/r/perl/comments/111tadi/psa_httptiny_disabled_ssl_verification_by_default/
perl-base CVE-2023-31484 HIGH 5.36.0-7+deb12u2 5.36.0-7+deb12u3 http://www.openwall.com/lists/oss-security/2023/04/29/1 http://www.openwall.com/lists/oss-security/2023/05/03/3 http://www.openwall.com/lists/oss-security/2023/05/03/5 http://www.openwall.com/lists/oss-security/2023/05/07/2 https://access.redhat.com/errata/RHSA-2024:3094 https://access.redhat.com/security/cve/CVE-2023-31484 https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/ https://bugzilla.redhat.com/2218667 https://bugzilla.redhat.com/show_bug.cgi?id=2218667 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31484 https://errata.almalinux.org/8/ALSA-2024-3094.html https://errata.rockylinux.org/RLSA-2023:6539 https://github.com/andk/cpanpm/commit/9c98370287f4e709924aee7c58ef21c85289a7f0 (2.35-TRIAL) https://github.com/andk/cpanpm/pull/175 https://linux.oracle.com/cve/CVE-2023-31484.html https://linux.oracle.com/errata/ELSA-2024-3094.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BM6UW55CNFUTNGD5ZRKGUKKKFDJGMFHL/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LEGCEOKFJVBJ2QQ6S2H4NAEWTUERC7SB/ https://metacpan.org/dist/CPAN/changes https://nvd.nist.gov/vuln/detail/CVE-2023-31484 https://security.netapp.com/advisory/ntap-20240621-0007/ https://ubuntu.com/security/notices/USN-6112-1 https://ubuntu.com/security/notices/USN-6112-2 https://www.cve.org/CVERecord?id=CVE-2023-31484 https://www.openwall.com/lists/oss-security/2023/04/18/14
perl-base CVE-2025-40909 MEDIUM 5.36.0-7+deb12u2 5.36.0-7+deb12u3 http://www.openwall.com/lists/oss-security/2025/05/23/1 http://www.openwall.com/lists/oss-security/2025/05/30/4 http://www.openwall.com/lists/oss-security/2025/06/02/2 http://www.openwall.com/lists/oss-security/2025/06/02/5 http://www.openwall.com/lists/oss-security/2025/06/02/6 http://www.openwall.com/lists/oss-security/2025/06/02/7 http://www.openwall.com/lists/oss-security/2025/06/03/1 https://access.redhat.com/errata/RHSA-2025:11805 https://access.redhat.com/security/cve/CVE-2025-40909 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098226 https://bugzilla.redhat.com/2369407 https://bugzilla.redhat.com/show_bug.cgi?id=2369407 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-40909 https://errata.almalinux.org/8/ALSA-2025-11805.html https://errata.rockylinux.org/RLSA-2025:11805 https://github.com/Perl/perl5/commit/11a11ecf4bea72b17d250cfb43c897be1341861e https://github.com/Perl/perl5/commit/918bfff86ca8d6d4e4ec5b30994451e0bd74aba9.patch https://github.com/Perl/perl5/issues/10387 https://github.com/Perl/perl5/issues/23010 https://linux.oracle.com/cve/CVE-2025-40909.html https://linux.oracle.com/errata/ELSA-2025-12056.html https://lists.security.metacpan.org/cve-announce/msg/30017499/ https://nvd.nist.gov/vuln/detail/CVE-2025-40909 https://perldoc.perl.org/5.14.0/perl5136delta#Directory-handles-not-copied-to-threads https://ubuntu.com/security/notices/USN-7678-1 https://www.cve.org/CVERecord?id=CVE-2025-40909 https://www.openwall.com/lists/oss-security/2025/05/22/2
perl-base CVE-2011-4116 LOW 5.36.0-7+deb12u2 http://www.openwall.com/lists/oss-security/2011/11/04/2 http://www.openwall.com/lists/oss-security/2011/11/04/4 https://access.redhat.com/security/cve/CVE-2011-4116 https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14 https://nvd.nist.gov/vuln/detail/CVE-2011-4116 https://rt.cpan.org/Public/Bug/Display.html?id=69106 https://seclists.org/oss-sec/2011/q4/238 https://www.cve.org/CVERecord?id=CVE-2011-4116
perl-base CVE-2023-31486 LOW 5.36.0-7+deb12u2 http://www.openwall.com/lists/oss-security/2023/04/29/1 http://www.openwall.com/lists/oss-security/2023/05/03/3 http://www.openwall.com/lists/oss-security/2023/05/03/5 http://www.openwall.com/lists/oss-security/2023/05/07/2 https://access.redhat.com/errata/RHSA-2023:7174 https://access.redhat.com/security/cve/CVE-2023-31486 https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/ https://bugzilla.redhat.com/2228392 https://errata.almalinux.org/8/ALSA-2023-7174.html https://github.com/chansen/p5-http-tiny/pull/153 https://hackeriet.github.io/cpan-http-tiny-overview/ https://linux.oracle.com/cve/CVE-2023-31486.html https://linux.oracle.com/errata/ELSA-2023-7174.html https://nvd.nist.gov/vuln/detail/CVE-2023-31486 https://security.netapp.com/advisory/ntap-20241129-0011/ https://www.cve.org/CVERecord?id=CVE-2023-31486 https://www.openwall.com/lists/oss-security/2023/04/18/14 https://www.openwall.com/lists/oss-security/2023/05/03/4 https://www.reddit.com/r/perl/comments/111tadi/psa_httptiny_disabled_ssl_verification_by_default/
perl-modules-5.36 CVE-2023-31484 HIGH 5.36.0-7+deb12u2 5.36.0-7+deb12u3 http://www.openwall.com/lists/oss-security/2023/04/29/1 http://www.openwall.com/lists/oss-security/2023/05/03/3 http://www.openwall.com/lists/oss-security/2023/05/03/5 http://www.openwall.com/lists/oss-security/2023/05/07/2 https://access.redhat.com/errata/RHSA-2024:3094 https://access.redhat.com/security/cve/CVE-2023-31484 https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/ https://bugzilla.redhat.com/2218667 https://bugzilla.redhat.com/show_bug.cgi?id=2218667 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31484 https://errata.almalinux.org/8/ALSA-2024-3094.html https://errata.rockylinux.org/RLSA-2023:6539 https://github.com/andk/cpanpm/commit/9c98370287f4e709924aee7c58ef21c85289a7f0 (2.35-TRIAL) https://github.com/andk/cpanpm/pull/175 https://linux.oracle.com/cve/CVE-2023-31484.html https://linux.oracle.com/errata/ELSA-2024-3094.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BM6UW55CNFUTNGD5ZRKGUKKKFDJGMFHL/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LEGCEOKFJVBJ2QQ6S2H4NAEWTUERC7SB/ https://metacpan.org/dist/CPAN/changes https://nvd.nist.gov/vuln/detail/CVE-2023-31484 https://security.netapp.com/advisory/ntap-20240621-0007/ https://ubuntu.com/security/notices/USN-6112-1 https://ubuntu.com/security/notices/USN-6112-2 https://www.cve.org/CVERecord?id=CVE-2023-31484 https://www.openwall.com/lists/oss-security/2023/04/18/14
perl-modules-5.36 CVE-2025-40909 MEDIUM 5.36.0-7+deb12u2 5.36.0-7+deb12u3 http://www.openwall.com/lists/oss-security/2025/05/23/1 http://www.openwall.com/lists/oss-security/2025/05/30/4 http://www.openwall.com/lists/oss-security/2025/06/02/2 http://www.openwall.com/lists/oss-security/2025/06/02/5 http://www.openwall.com/lists/oss-security/2025/06/02/6 http://www.openwall.com/lists/oss-security/2025/06/02/7 http://www.openwall.com/lists/oss-security/2025/06/03/1 https://access.redhat.com/errata/RHSA-2025:11805 https://access.redhat.com/security/cve/CVE-2025-40909 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098226 https://bugzilla.redhat.com/2369407 https://bugzilla.redhat.com/show_bug.cgi?id=2369407 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-40909 https://errata.almalinux.org/8/ALSA-2025-11805.html https://errata.rockylinux.org/RLSA-2025:11805 https://github.com/Perl/perl5/commit/11a11ecf4bea72b17d250cfb43c897be1341861e https://github.com/Perl/perl5/commit/918bfff86ca8d6d4e4ec5b30994451e0bd74aba9.patch https://github.com/Perl/perl5/issues/10387 https://github.com/Perl/perl5/issues/23010 https://linux.oracle.com/cve/CVE-2025-40909.html https://linux.oracle.com/errata/ELSA-2025-12056.html https://lists.security.metacpan.org/cve-announce/msg/30017499/ https://nvd.nist.gov/vuln/detail/CVE-2025-40909 https://perldoc.perl.org/5.14.0/perl5136delta#Directory-handles-not-copied-to-threads https://ubuntu.com/security/notices/USN-7678-1 https://www.cve.org/CVERecord?id=CVE-2025-40909 https://www.openwall.com/lists/oss-security/2025/05/22/2
perl-modules-5.36 CVE-2011-4116 LOW 5.36.0-7+deb12u2 http://www.openwall.com/lists/oss-security/2011/11/04/2 http://www.openwall.com/lists/oss-security/2011/11/04/4 https://access.redhat.com/security/cve/CVE-2011-4116 https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14 https://nvd.nist.gov/vuln/detail/CVE-2011-4116 https://rt.cpan.org/Public/Bug/Display.html?id=69106 https://seclists.org/oss-sec/2011/q4/238 https://www.cve.org/CVERecord?id=CVE-2011-4116
perl-modules-5.36 CVE-2023-31486 LOW 5.36.0-7+deb12u2 http://www.openwall.com/lists/oss-security/2023/04/29/1 http://www.openwall.com/lists/oss-security/2023/05/03/3 http://www.openwall.com/lists/oss-security/2023/05/03/5 http://www.openwall.com/lists/oss-security/2023/05/07/2 https://access.redhat.com/errata/RHSA-2023:7174 https://access.redhat.com/security/cve/CVE-2023-31486 https://blog.hackeriet.no/perl-http-tiny-insecure-tls-default-affects-cpan-modules/ https://bugzilla.redhat.com/2228392 https://errata.almalinux.org/8/ALSA-2023-7174.html https://github.com/chansen/p5-http-tiny/pull/153 https://hackeriet.github.io/cpan-http-tiny-overview/ https://linux.oracle.com/cve/CVE-2023-31486.html https://linux.oracle.com/errata/ELSA-2023-7174.html https://nvd.nist.gov/vuln/detail/CVE-2023-31486 https://security.netapp.com/advisory/ntap-20241129-0011/ https://www.cve.org/CVERecord?id=CVE-2023-31486 https://www.openwall.com/lists/oss-security/2023/04/18/14 https://www.openwall.com/lists/oss-security/2023/05/03/4 https://www.reddit.com/r/perl/comments/111tadi/psa_httptiny_disabled_ssl_verification_by_default/
sysvinit-utils TEMP-0517018-A83CE6 LOW 3.06-4
tar CVE-2005-2541 LOW 1.34+dfsg-1.2+deb12u1 http://marc.info/?l=bugtraq&m=112327628230258&w=2 https://access.redhat.com/security/cve/CVE-2005-2541 https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E https://nvd.nist.gov/vuln/detail/CVE-2005-2541 https://www.cve.org/CVERecord?id=CVE-2005-2541
tar TEMP-0290435-0B57B5 LOW 1.34+dfsg-1.2+deb12u1
util-linux CVE-2022-0563 LOW 2.38.1-5+deb12u3 https://access.redhat.com/security/cve/CVE-2022-0563 https://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline/ https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w%40ws.net.home/T/#u https://lore.kernel.org/util-linux/[email protected]/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.gentoo.org/glsa/202401-08 https://security.netapp.com/advisory/ntap-20220331-0002/ https://www.cve.org/CVERecord?id=CVE-2022-0563
util-linux-extra CVE-2022-0563 LOW 2.38.1-5+deb12u3 https://access.redhat.com/security/cve/CVE-2022-0563 https://blog.trailofbits.com/2023/02/16/suid-logic-bug-linux-readline/ https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w%40ws.net.home/T/#u https://lore.kernel.org/util-linux/[email protected]/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.gentoo.org/glsa/202401-08 https://security.netapp.com/advisory/ntap-20220331-0002/ https://www.cve.org/CVERecord?id=CVE-2022-0563
zlib1g CVE-2023-45853 CRITICAL 1:1.2.13.dfsg-1 http://www.openwall.com/lists/oss-security/2023/10/20/9 http://www.openwall.com/lists/oss-security/2024/01/24/10 https://access.redhat.com/security/cve/CVE-2023-45853 https://chromium.googlesource.com/chromium/src/+/d709fb23806858847131027da95ef4c548813356 https://chromium.googlesource.com/chromium/src/+/de29dd6c7151d3cd37cb4cf0036800ddfb1d8b61 https://github.com/madler/zlib/blob/ac8f12c97d1afd9bafa9c710f827d40a407d3266/contrib/README.contrib#L1-L4 https://github.com/madler/zlib/commit/73331a6a0481067628f065ffe87bb1d8f787d10c https://github.com/madler/zlib/pull/843 https://github.com/smihica/pyminizip https://github.com/smihica/pyminizip/blob/master/zlib-1.2.11/contrib/minizip/zip.c https://lists.debian.org/debian-lts-announce/2023/11/msg00026.html https://nvd.nist.gov/vuln/detail/CVE-2023-45853 https://pypi.org/project/pyminizip/#history https://security.gentoo.org/glsa/202401-18 https://security.netapp.com/advisory/ntap-20231130-0009 https://security.netapp.com/advisory/ntap-20231130-0009/ https://ubuntu.com/security/notices/USN-7107-1 https://www.cve.org/CVERecord?id=CVE-2023-45853 https://www.winimage.com/zLibDll/minizip.html
No Misconfigurations found
python-pkg
Package Vulnerability ID Severity Installed Version Fixed Version Links
Django CVE-2025-57833 HIGH 5.2.4 4.2.24, 5.1.12, 5.2.6 https://access.redhat.com/security/cve/CVE-2025-57833 https://docs.djangoproject.com/en/dev/releases/security https://docs.djangoproject.com/en/dev/releases/security/ https://github.com/django/django https://github.com/django/django/commit/102965ea93072fe3c39a30be437c683ec1106ef5 https://github.com/django/django/commit/31334e6965ad136a5e369993b01721499c5d1a92 https://github.com/django/django/commit/4c044fcc866ec226f612c475950b690b0139d243 https://groups.google.com/g/django-announce https://medium.com/@EyalSec/django-unauthenticated-0-click-rce-and-sql-injection-using-default-configuration-059964f3f898 https://nvd.nist.gov/vuln/detail/CVE-2025-57833 https://ubuntu.com/security/notices/USN-7736-1 https://www.cve.org/CVERecord?id=CVE-2025-57833 https://www.djangoproject.com/weblog/2025/sep/03/security-releases https://www.djangoproject.com/weblog/2025/sep/03/security-releases/
Django CVE-2025-59681 HIGH 5.2.4 4.2.25, 5.1.13, 5.2.7 https://access.redhat.com/security/cve/CVE-2025-59681 https://docs.djangoproject.com/en/dev/releases/security https://docs.djangoproject.com/en/dev/releases/security/ https://github.com/django/django https://github.com/django/django/commit/41b43c74bda19753c757036673ea9db74acf494a https://github.com/django/django/commit/43d84aef04a9e71164c21a74885996981857e66e https://groups.google.com/g/django-announce https://nvd.nist.gov/vuln/detail/CVE-2025-59681 https://ubuntu.com/security/notices/USN-7794-1 https://www.cve.org/CVERecord?id=CVE-2025-59681 https://www.djangoproject.com/weblog/2025/oct/01/security-releases https://www.djangoproject.com/weblog/2025/oct/01/security-releases/
Django CVE-2025-59682 LOW 5.2.4 4.2.25, 5.1.13, 5.2.7 https://access.redhat.com/security/cve/CVE-2025-59682 https://docs.djangoproject.com/en/dev/releases/security https://docs.djangoproject.com/en/dev/releases/security/ https://github.com/django/django https://github.com/django/django/commit/43d84aef04a9e71164c21a74885996981857e66e https://github.com/django/django/commit/924a0c092e65fa2d0953fd1855d2dc8786d94de2 https://groups.google.com/g/django-announce https://nvd.nist.gov/vuln/detail/CVE-2025-59682 https://ubuntu.com/security/notices/USN-7794-1 https://www.cve.org/CVERecord?id=CVE-2025-59682 https://www.djangoproject.com/weblog/2025/oct/01/security-releases https://www.djangoproject.com/weblog/2025/oct/01/security-releases/
pip CVE-2025-8869 MEDIUM 25.0.1 https://access.redhat.com/security/cve/CVE-2025-8869 https://github.com/pypa/pip https://github.com/pypa/pip/commit/f2b92314da012b9fffa36b3f3e67748a37ef464a https://github.com/pypa/pip/pull/13550 https://mail.python.org/archives/list/[email protected]/thread/IF5A3GCJY3VH7BVHJKOWOJFKTW7VFQEN https://mail.python.org/archives/list/[email protected]/thread/IF5A3GCJY3VH7BVHJKOWOJFKTW7VFQEN/ https://nvd.nist.gov/vuln/detail/CVE-2025-8869 https://pip.pypa.io/en/stable/news/#v25-2 https://www.cve.org/CVERecord?id=CVE-2025-8869
No Misconfigurations found