CentOS Stream

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:9195 Related CVEs: CVE-2024-34055 Upstream summary: The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and SIEVE support. Security Fix(es): * cyrus-imapd: unbounded memory allocation by sending many […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:6757 Related CVEs: CVE-2024-7383 CVE-2023-5215 CVE-2023-5871 Upstream summary: Network Block Device (NBD) is a protocol for accessing Block Devices (hard disks and disk-like devices) over a Network. The libnbd is a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2023:6369 Related CVEs: CVE-2023-32573 CVE-2023-33285 CVE-2023-34410 CVE-2023-37369 CVE-2023-38197 CVE-2022-25255 Upstream summary: Qt is a software toolkit for developing applications. Security Fix(es): * qt: buffer over-read via a crafted reply from a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:2217 Related CVEs: CVE-2023-43788 CVE-2023-43789 Upstream summary: The motif packages include the Motif shared libraries needed to run applications which are dynamically linked against Motif, as well as MWM, the Motif […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2022:7968 Related CVEs: CVE-2022-2211 Upstream summary: The virt-v2v package provides a tool for converting virtual machines to use the KVM (Kernel-based Virtual Machine) hypervisor or AlmaLinux Enterprise Virtualization. The tool modifies […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:9181 Related CVEs: CVE-2023-50967 CVE-2024-28176 Upstream summary: Jose is a C-language implementation of the Javascript Object Signing and Encryption standards. The jose package is a dependency of the clevis and tang […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:9277 Related CVEs: CVE-2024-24788 Upstream summary: OCI Hook to generate seccomp json files based on EBF syscalls used by container oci-seccomp-bpf-hook provides a library for applications looking to use the Container […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:9194 Related CVEs: CVE-2024-36039 Upstream summary: This package contains a pure-Python MySQL client library. The goal of PyMySQL is to be a drop-in replacement for MySQLdb and work on CPython, PyPy, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2023:6542 Related CVEs: CVE-2023-31486 Upstream summary: HTTP::Tiny is a small and simple HTTP/1.1 client written in Perl. Security Fix(es): * http-tiny: insecure TLS cert default (CVE-2023-31486) For more details about the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2024:2437 Related CVEs: CVE-2023-45897 Upstream summary: The exfatprogs package contains utilities for formatting and repairing exFAT filesystems. Security Fix(es): * exfatprogs: exfatprogs allows out-of-bounds memory access (CVE-2023-45897) For more details about […]