Redhat ≫ Enterprise Linux

The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An...

A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Driver.

PyXML: Hash table collisions CPU usage Denial of Service

libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files

redhat-upgrade-tool: Does not check GPG signatures when upgrading versions

MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information.

MediaWiki before 1.19.4 and 1.20.x before 1.20.3 allows remote attackers to cause a denial of service (application crash) by sending a specially crafted request.

tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes.

tog-Pegasus has a package hash collision DoS vulnerability

Trusted Boot (tboot) before 1.8.2 has a 'loader.c' Security Bypass Vulnerability