19800 |
dracut new security issue CVE-2016-4484 |
Mageia tools maintainers |
Cauldron, 8 |
Should be mitigated by the installer |
2016-11-16 |
1024 |
Bugzilla |
26629 |
python-beaker new security issue due to deserialization of untrusted data CVE-2013-7489 |
Philippe Makowski |
Cauldron, 8 |
No fix available as of end of 2020 |
2020-05-15 |
368 |
Bugzilla |
27131 |
Possible missing security fixes in several libraries used by PHP modules |
All Packagers |
Cauldron |
|
2020-08-18 |
38 |
|
27750 |
resteasy new security issue CVE-2020-25633 |
Java Stack Maintainers |
Cauldron, 8 |
No fix available as of end of 2020 |
2020-12-05 |
1024 |
Bugzilla |
27771 |
hdf5 new security issue CVE-2020-10812 |
Chris Denice |
Cauldron, 8 |
Possibly fixed in 1.10.8 |
2020-12-07 |
404 |
Bugzilla |
28478 |
containernetworking-plugins new security issues CVE-2021-20206 and CVE-2021-34558 |
Joseph Wang |
Cauldron, 8 |
|
2021-02-27 |
403 |
Bugzilla |
30309 |
tpm2-abrmd dbus service allows regular users to clear TPM |
Thierry Vignaud |
Cauldron, 8 |
|
2022-04-20 |
179 |
Bugzilla |
30467 |
libpng12 possible new security issues CVE-2017-12652, CVE-2018-14048 |
Rémi Verschelde |
Cauldron |
|
2022-05-23 |
698 |
Bugzilla |
31016 |
python-imageio downloads vulnerable freeimage library |
Python Stack Maintainers |
Cauldron, 8 |
|
2022-10-24 |
542 |
Bugzilla |
31123 |
xmlrpc-c new security issues CVE-2022-25236 CVE-2022-2531[345] CVE-2022-40674 CVE-2022-43680 |
All Packagers |
Cauldron, 8 |
|
2022-11-14 |
523 |
Bugzilla |
31458 |
python-py new security issue CVE-2022-42969 |
Python Stack Maintainers |
Cauldron, 8 |
|
2023-01-27 |
449 |
Bugzilla |
31677 |
ffmpeg new security issues CVE-2023-092[7-9], CVE-2023-093[0-3], CVE-2023-0941, CVE-2023-121[3-9], C[...] |
Stig-Ørjan Smelror |
Cauldron, 9 |
Fixed upstream in 6.0 |
2023-03-15 |
38 |
Bugzilla |
31791 |
pcre unfixed security issue CVE-2017-11164 |
All Packagers |
Cauldron |
|
2023-04-13 |
304 |
Bugzilla |
31804 |
golang-github-prometheus, golang-github-prometheus-exporter-toolkit new security issue CVE-2022-4614[...] |
Guillaume Rousse |
Cauldron |
Fixed upstream in golang-github-prometheus-exporter-toolkit 0.7.2 |
2023-04-17 |
341 |
Bugzilla |
31852 |
perl, perl-CPAN, perl-HTTP-Tiny new security issues CVE-2023-31484 and CVE-2023-31486 |
Perl Stack Maintainers |
Cauldron, 8 |
|
2023-05-01 |
305 |
Bugzilla |
32113 |
kanboard new security issue CVE-2023-36813 |
All Packagers |
Cauldron, 8 |
Fixed upstream in 1.2.31 |
2023-07-17 |
276 |
Bugzilla |
32272 |
erofs-utils new security issues CVE-2023-3355[12] |
Thierry Vignaud |
Cauldron, 8, 9 |
Fixed in v1.6.3 |
2023-09-11 |
221 |
Bugzilla |
32584 |
python-cryptography new security issues CVE-2023-49083, CVE-2023-50782 and CVE-2024-26130 |
Python Stack Maintainers |
Cauldron, 9 |
Patches available from Ubuntu and upstream |
2023-11-30 |
11 |
Bugzilla |
32641 |
[TRACKER] CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack) |
All Packagers |
Cauldron, 9 |
|
2023-12-20 |
92 |
|
32674 |
CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack) - golang-x-crypto |
All Packagers |
Cauldron, 9 |
|
2023-12-31 |
92 |
Bugzilla |
32675 |
CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack) -apache-sshd |
Nicolas Lécureuil |
Cauldron, 9 |
|
2023-12-31 |
63 |
Bugzilla |
32676 |
CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack) - trilead-ssh2 |
All Packagers |
Cauldron, 9 |
|
2023-12-31 |
29 |
Bugzilla |
32682 |
CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack) - ruby-net-ssh |
All Packagers |
Cauldron, 9 |
|
2024-01-02 |
92 |
Bugzilla |
33036 |
buildah and podman new security issue CVE-2024-1753 |
Joseph Wang |
Cauldron, 9 |
Fixed upstream in buildah 1.35.1 and podman 4.9.4 |
2024-03-29 |
20 |
Bugzilla |
33071 |
guava new security issues CVE-2020-8908 and CVE-2023-2976 |
All Packagers |
Cauldron, 9 |
Fixed upstream in 32.0.1 |
2024-04-09 |
11 |
Bugzilla |
33073 |
krb5 new security issues CVE-2024-26458 and CVE-2024-26461 |
All Packagers |
Cauldron, 9 |
Patches available from SUSE |
2024-04-09 |
11 |
Bugzilla |
33074 |
qemu new security issues CVE-2023-1544, CVE-2023-6693, CVE-2024-24474, CVE-2024-2632[78] |
Giuseppe Ghibò |
Cauldron, 9 |
Patches available from openSUSE |
2024-04-09 |
11 |
Bugzilla |
33081 |
freeimage new security issues CWE-121 (Stack-based Buffer Overflow), CWE-122 (Heap-based Buffer Over[...] |
All Packagers |
Cauldron, 9 |
|
2024-04-10 |
10 |
Bugzilla |
33086 |
edk2 new security issues CVE-2023-45229 and CVE-2023-4523[0-7] |
Thierry Vignaud |
Cauldron, 9 |
Patches available from Debian, CVE-2023-4523[67] unfixed |
2024-04-10 |
10 |
Bugzilla |