CentOS Stream

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:9555 Related CVEs: CVE-2024-9050 Upstream summary: This package contains software for integrating the libreswan VPN software with NetworkManager and the GNOME desktop Security Fix(es): * NetworkManager-libreswan: Local privilege escalation via leftupdown […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2025:15874 Related CVEs: CVE-2023-49083 CVE-2023-23931 Upstream summary: Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:5533 Related CVEs: CVE-2024-6345 CVE-2025-47273 Upstream summary: Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2025:9434 Related CVEs: CVE-2024-10306 CVE-2023-41081 CVE-2023-6710 Upstream summary: The mod_proxy_cluster module is a plugin for the Apache HTTP Server that provides load-balancer functionality. Security Fix(es): * mod_proxy_cluster: mod_proxy_cluster unauthorized MCMP requests […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:4165 Related CVEs: CVE-2023-4727 CVE-2022-2414 CVE-2022-2393 Upstream summary: The Public Key Infrastructure (PKI) Core contains fundamental packages required by AlmaLinux Certificate System. Security Fix(es): * dogtag ca: token authentication bypass vulnerability […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2025:1671 Related CVEs: CVE-2024-11053 CVE-2024-21193 CVE-2024-21194 CVE-2024-21196 CVE-2024-21197 CVE-2024-21198 CVE-2024-21199 CVE-2024-21201  +12 more Upstream summary: MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2025:7313 Related CVEs: CVE-2025-24898 Upstream summary: Rust agent for Keylime Security Fix(es): * rust-openssl: rust openssl ssl::select_next_proto use after free (CVE-2025-24898) For more details about the security issue(s), including the impact, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2022:5099 Related CVEs: CVE-2021-3695 CVE-2021-3696 CVE-2021-3697 CVE-2022-28733 CVE-2022-28734 CVE-2022-28735 CVE-2022-28736 CVE-2022-28737 Upstream summary: The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2023:7712 Related CVEs: CVE-2023-5557 Upstream summary: Tracker is a powerful desktop-neutral first class object database, tag/metadata database and search tool. This package contains various miners and metadata extractors for tracker. Security […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:5640 Related CVEs: CVE-2026-21936 CVE-2026-21937 CVE-2026-21941 CVE-2026-21948 CVE-2026-21964 CVE-2026-21968 CVE-2025-53040 CVE-2025-53042  +12 more Upstream summary: MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) […]