CentOS Stream

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 10 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:3887 Related CVEs: CVE-2026-2004 CVE-2026-2005 CVE-2026-2006 CVE-2025-8714 CVE-2025-8715 CVE-2025-12818 Upstream summary: PostgreSQL is an advanced Object-Relational database management system (DBMS). The base postgresql package contains the client programs that you'll need […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:7679 Related CVEs: CVE-2006-10002 CVE-2006-10003 Upstream summary: This module provides ways to parse XML documents. It is built on top of XML::Parser::Expat, which is a lower level interface to James Clark's […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 10 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:4174 Related CVEs: CVE-2025-61726 CVE-2025-68121 CVE-2025-61729 CVE-2025-68156 Upstream summary: Collector with the supported components for a AlmaLinux build of OpenTelemetry Security Fix(es): * golang: net/url: Memory exhaustion in query parameter parsing […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:7896 Related CVEs: CVE-2026-21710 CVE-2026-26996 CVE-2026-27135 CVE-2026-27904 CVE-2026-1525 CVE-2026-1526 CVE-2026-1527 CVE-2026-1528  +12 more Upstream summary: Node.js is a software development platform for building fast and scalable network applications in the JavaScript […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 10 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:4453 Related CVEs: CVE-2026-26127 CVE-2026-26130 Upstream summary: .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:7896 Related CVEs: CVE-2026-21710 CVE-2026-26996 CVE-2026-27135 CVE-2026-27904 CVE-2026-1525 CVE-2026-1526 CVE-2026-1527 CVE-2026-1528  +12 more Upstream summary: Node.js is a software development platform for building fast and scalable network applications in the JavaScript […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 10 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:4629 Related CVEs: CVE-2026-2447 Upstream summary: The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:7896 Related CVEs: CVE-2026-21710 CVE-2026-26996 CVE-2026-27135 CVE-2026-27904 CVE-2026-1525 CVE-2026-1526 CVE-2026-1527 CVE-2026-1528  +12 more Upstream summary: Node.js is a software development platform for building fast and scalable network applications in the JavaScript […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 10 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:5941 Related CVEs: CVE-2025-61731 CVE-2026-25679 CVE-2025-61726 CVE-2025-61728 CVE-2025-61732 CVE-2025-68121 CVE-2025-61729 CVE-2025-4674  +3 more Upstream summary: The golang packages provide the Go programming language compiler. Security Fix(es): * cmd/go: cmd/go: Arbitrary file […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: CentOS Stream 9 📖 ~4 min read  •  Source: AlmaLinux/RHEL advisory ALSA-2026:7668 Related CVEs: CVE-2026-27135 CVE-2023-44487 CVE-2024-28182 Upstream summary: libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C. Security Fix(es): * nghttp2: nghttp2: Denial of Service […]