AlmaLinux 9

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:4708 Related CVEs: CVE-2023-3899 Upstream summary: The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the AlmaLinux entitlement platform. Security Fix(es): * subscription-manager: inadequate […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:4634 Related CVEs: CVE-2023-38497 Upstream summary: Rust Toolset provides the Rust programming language compiler rustc, the cargo build tool and dependency manager, and required libraries. Security Fix(es): * rust-cargo: cargo does not […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:4411 Related CVEs: CVE-2023-37464 Upstream summary: CJose is C library implementing the Javascript Object Signing and Encryption (JOSE). Security Fix(es): * cjose: AES GCM decryption uses the Tag length from the actual […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:3661 Related CVEs: CVE-2023-32700 Upstream summary: The texlive packages contain TeXLive, an implementation of TeX for Linux or UNIX systems. Security Fix(es): * texlive: arbitrary code execution allows document complied with older […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:3559 Related CVEs: CVE-2023-32067 CVE-2022-4904 CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 CVE-2024-25629 Upstream summary: The c-ares C library defines asynchronous DNS (Domain Name System) requests and provides name resolving API. Security Fix(es): * c-ares: 0-byte […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:3147 Related CVEs: CVE-2022-25147 Upstream summary: The Apache Portable Runtime (APR) is a portability library used by the Apache HTTP Server and other projects. apr-util is a library which provides additional utility […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:3148 Related CVEs: CVE-2023-2295 CVE-2024-3652 CVE-2024-2357 CVE-2023-38710 CVE-2023-38711 CVE-2023-38712 CVE-2023-23009 Upstream summary: Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:2127 Related CVEs: CVE-2022-38023 CVE-2022-2127 CVE-2023-34966 CVE-2023-34967 CVE-2023-34968 CVE-2023-3961 CVE-2023-4091 CVE-2023-42669  +3 more Upstream summary: Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:1368 Related CVEs: CVE-2023-0767 CVE-2023-6135 CVE-2023-5388 Upstream summary: Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Security Fix(es): * […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:1067 Related CVEs: CVE-2022-3560 Upstream summary: The pesign packages provide the pesign utility for signing UEFI binaries as well as other associated tools. Security Fix(es): * pesign: Local privilege escalation on pesign […]