CentOS Stream

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2025:7313 Related CVEs: CVE-2025-24898 Upstream summary: Rust agent for Keylime Security Fix(es): * rust-openssl: rust openssl ssl::select_next_proto use after free (CVE-2025-24898) For more details about the security issue(s), including the impact, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2022:5099 Related CVEs: CVE-2021-3695 CVE-2021-3696 CVE-2021-3697 CVE-2022-28733 CVE-2022-28734 CVE-2022-28735 CVE-2022-28736 CVE-2022-28737 Upstream summary: The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2023:7712 Related CVEs: CVE-2023-5557 Upstream summary: Tracker is a powerful desktop-neutral first class object database, tag/metadata database and search tool. This package contains various miners and metadata extractors for tracker. Security […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:5640 Related CVEs: CVE-2026-21936 CVE-2026-21937 CVE-2026-21941 CVE-2026-21948 CVE-2026-21964 CVE-2026-21968 CVE-2025-53040 CVE-2025-53042  +12 more Upstream summary: MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2023:4634 Related CVEs: CVE-2023-38497 Upstream summary: Rust Toolset provides the Rust programming language compiler rustc, the cargo build tool and dependency manager, and required libraries. Security Fix(es): * rust-cargo: cargo does […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:0605 Related CVEs: CVE-2025-14242 Upstream summary: The vsftpd packages include a Very Secure File Transfer Protocol (FTP) daemon, which is used to serve files over a network. Security Fix(es): * vsftpd: […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2023:1067 Related CVEs: CVE-2022-3560 Upstream summary: The pesign packages provide the pesign utility for signing UEFI binaries as well as other associated tools. Security Fix(es): * pesign: Local privilege escalation on […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2025:0210 Related CVEs: CVE-2024-11614 CVE-2021-3839 CVE-2022-2132 CVE-2022-28199 Upstream summary: The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:1903 Related CVEs: CVE-2023-40546 CVE-2023-40547 CVE-2023-40548 CVE-2023-40549 CVE-2023-40550 CVE-2023-40551 CVE-2021-3695 CVE-2021-3696  +6 more Upstream summary: The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:7346 Related CVEs: CVE-2024-47076 CVE-2024-47175 CVE-2024-47176 CVE-2023-24805 Upstream summary: The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) […]