AlmaLinux 9

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:9396 Related CVEs: CVE-2025-3891 CVE-2025-31492 CVE-2024-24814 CVE-2022-23527 CVE-2023-28625 Upstream summary: The mod_auth_openidc is an OpenID Connect authentication module for Apache HTTP Server. It enables an Apache HTTP Server to operate as an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:9330 Related CVEs: CVE-2025-40908 Upstream summary: Kirill Siminov's "libyaml" is arguably the best YAML implementation. The C library is written precisely to the YAML 1.1 specification. It was originally bound to Python […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:9114 Related CVEs: CVE-2025-48734 Upstream summary: The Apache Commons BeanUtils library provides utility methods for accessing and modifying properties of arbitrary JavaBeans. Security Fix(es): * commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:8837 Related CVEs: CVE-2025-47947 Upstream summary: ModSecurity is an open source intrusion detection and prevention engine for web applications. Security Fix(es): * modsecurity: ModSecurity Has Possible DoS Vulnerability (CVE-2025-47947) For more details […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:8635 Related CVEs: CVE-2025-40907 Upstream summary: FastCGI Perl bindings. Security Fix(es): * perl-fcgi: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka fcgi) library (CVE-2025-40907) […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:8337 Related CVEs: CVE-2025-47905 CVE-2024-30156 CVE-2023-44487 CVE-2022-45060 Upstream summary: Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:8136 Related CVEs: CVE-2025-47287 CVE-2024-52804 CVE-2026-31958 CVE-2026-35536 CVE-2023-28370 Upstream summary: Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:7937 Related CVEs: CVE-2023-0286 CVE-2025-69419 Upstream summary: The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:7410 Related CVEs: CVE-2024-55549 CVE-2025-24855 CVE-2023-40403 Upstream summary: libxslt is a library for transforming XML files into other textual formats (including HTML, plain text, and other XML representations of the underlying data) […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2025:7118 Related CVEs: CVE-2024-1394 CVE-2024-34158 CVE-2024-9355 Upstream summary: A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for […]