🔴 Critical ⏱ 15–90 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-18197 Upstream summary: In mxGraphViewImageReader.java in mxGraph before 3.7.6, the SAXParserFactory instance in convert() is missing flags to prevent XML External Entity (XXE) attacks, as […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: AlmaLinux 8 📖 ~4 min read • Source: AlmaLinux ALSA ALBA-2022:2067 Upstream summary: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read • Source: Amazon Linux advisory ALAS2023NVIDIA-2025-217 Related CVEs: CVE-2025-23272 CVE-2025-23247 Upstream summary: NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A […]
🔴 Critical ⏱ 15–90 min Last verified: 25 May 2026 Affected versions: Windows Server 2019 📖 ~4 min read • Source: Microsoft KB5041585 • MSRC update-guide entry Related CVEs: CVE-2024-38063 CVE-2024-38140 CVE-2022-3775 CVE-2024-38178 CVE-2024-38193 CVE-2024-38196 CVE-2024-38198 CVE-2024-38199 +12 more Affected components: Windows Server 2019 (Server Core installation) Table of contents Symptom & Impact Environment […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Alpine Linux 3.19 / fixed in 2.14.2-r0 📖 ~4 min read • Source: Alpine secdb entry — py3-asyncssh 2.14.2-r0 Related CVEs: CVE-2023-48795 Upstream summary: Alpine community repository for vv3.19 ships py3-asyncssh 2.14.2-r0 which addresses CVE-2023-48795. Table of contents Symptom & Impact Environment […]
🔴 Critical ⏱ 15–90 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE advisory TID7022775 (see also SUSE bugzilla) Related CVEs: CVE-2018-7489 CVE-2018-1288 Upstream summary: FasterXML jackson-databind before 2.7.9.3, 2.8.x before 2.8.11.1 and 2.9.x before 2.9.5 allows unauthenticated remote code execution because of an incomplete fix […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: AlmaLinux 8 📖 ~4 min read • Source: AlmaLinux ALSA ALBA-2022:2062 Upstream summary: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read • Source: Amazon Linux advisory ALAS2023NVIDIA-2025-216 Related CVEs: CVE-2025-23272 CVE-2025-23247 Upstream summary: NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A […]
🔴 Critical ⏱ 15–90 min Last verified: 25 May 2026 Affected versions: Windows Server 2019 📖 ~4 min read • Source: Microsoft KB5041592 • MSRC update-guide entry Related CVEs: CVE-2023-40547 CVE-2024-38140 CVE-2022-3775 CVE-2022-2601 CVE-2024-38178 CVE-2024-38193 CVE-2024-38196 CVE-2024-38198 +12 more Affected components: Windows Server 2019 (Server Core installation) Table of contents Symptom & Impact Environment […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Alpine Linux 3.19 / fixed in 2.9.1-r0 📖 ~4 min read • Source: Alpine secdb entry — py3-babel 2.9.1-r0 Related CVEs: CVE-2021-42771 Upstream summary: Alpine main repository for vv3.19 ships py3-babel 2.9.1-r0 which addresses CVE-2021-42771. Table of contents Symptom & Impact Environment […]
Progressive Robot: Your Gateway to Comprehensive IT Solutions — Specializing in Web Development, Mobile App Development, and Expert IT Services.
© All Copyright by Progressiverobot.com
VAT Number ( 506152326 )
