AlmaLinux 10

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:13643 Related CVEs: CVE-2026-25679 CVE-2025-61726 CVE-2025-61728 CVE-2025-61729 CVE-2025-68121 CVE-2025-58183 Upstream summary: A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:13498 Related CVEs: CVE-2025-59032 CVE-2026-27857 CVE-2026-27858 Upstream summary: Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:13380 Related CVEs: CVE-2026-35385 CVE-2026-35386 CVE-2026-35387 CVE-2026-35388 CVE-2026-35414 CVE-2026-3497 CVE-2025-61984 CVE-2025-61985  +1 more Upstream summary: OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:12423 Related CVEs: CVE-2026-4878 Upstream summary: Libcap is a library for getting and setting POSIX.1e (formerly POSIX 6) draft 15 capabilities. Security Fix(es): * libcap: libcap: Privilege escalation via TOCTOU race condition […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:12265 Related CVEs: CVE-2026-4775 CVE-2025-9900 CVE-2023-52356 Upstream summary: The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * libtiff: libtiff: Arbitrary code execution […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:12285 Related CVEs: CVE-2026-6746 CVE-2026-6747 CVE-2026-6748 CVE-2026-6749 CVE-2026-6750 CVE-2026-6751 CVE-2026-6752 CVE-2026-6753  +12 more Upstream summary: Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fix(es): * firefox: thunderbird: Incorrect boundary conditions […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:11389 Related CVEs: CVE-2026-34982 CVE-2026-28417 CVE-2026-28421 CVE-2026-33412 CVE-2026-25749 CVE-2025-53905 CVE-2025-53906 Upstream summary: Vim (Vi IMproved) is an updated and improved version of the vi editor. Security Fix(es): * vim: arbitrary command execution […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:11352 Related CVEs: CVE-2026-33999 CVE-2026-34001 CVE-2026-34003 CVE-2025-62229 CVE-2025-62230 CVE-2025-62231 Upstream summary: Xwayland is an X server for running X clients under Wayland. Security Fix(es): * xorg: xwayland: X.Org X server: Denial of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:11412 Related CVEs: CVE-2026-25679 CVE-2025-61726 Upstream summary: yggdrasil-worker-package-manager is a simple package manager yggd worker. It knows how to install and remove packages, add, remove, enable and disable repositories, and does rudimentary […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 10 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2026:10767 Related CVEs: CVE-2026-6746 CVE-2026-6747 CVE-2026-6748 CVE-2026-6749 CVE-2026-6750 CVE-2026-6751 CVE-2026-6752 CVE-2026-6753  +12 more Upstream summary: Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fix(es): * […]