Latest R-Cloud Hybrid Cloud edition download
This release contains fixes for the following vulnerabilities:
-
RHSA-2025:13315:
- CVE-2025-7345: gdk‑pixbuf: Heap‑buffer‑overflow in gdk‑pixbuf
-
RHSA-2025:14135:
- CVE-2025-5914: libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c
-
RHSA-2025:14553:
- CVE-2023-49083: python-cryptography: NULL-dereference when loading PKCS7 certificates
-
RHSA-2025:14557:
- CVE-2025-6020: linux-pam: Linux-pam directory Traversal
- CVE-2025-8941: linux-pam: Incomplete fix for CVE-2025-6020
-
RHSA-2025:14560:
- CVE-2025-8194: cpython: Cpython infinite loop when parsing a tarfile
-
RHSA-2025:15017:
- CVE-2025-8067: udisks: Out-of-bounds read in UDisks Daemon
-
RHSA-2025:15022:
- CVE-2025-4207: postgresql: PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation
- CVE-2025-8714: postgresql: PostgreSQL code execution in restore operation
- CVE-2025-8715: postgresql: PostgreSQL executes arbitrary code in restore operation
-
RHSA-2025:15702:
- CVE-2025-58060: cups: Authentication Bypass in CUPS Authorization Handling
-
RHSA-2025:16823:
- CVE-2025-26465: openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled
-
RHSA-2025:17415:
- CVE-2025-6395: gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite()
- CVE-2025-32988: gnutls: Vulnerability in GnuTLS otherName SAN export
- CVE-2025-32990: gnutls: Vulnerability in GnuTLS certtool template parsing
-
RHSA-2025:17509:
- CVE-2025-41244: open-vm-tools: Local privilege escalation in open-vm-tools
-
RHSA-2025:17715:
- CVE-2025-53905: vim: Vim path traversial
- CVE-2025-53906: vim: Vim path traversal
-
RHSA-2025:18286:
- CVE-2025-5318: libssh: out-of-bounds read in sftp_handle()
-
RHSA-2025:18815:
- CVE-2025-53057: openjdk: Enhance certificate handling (Oracle CPU 2025-10)
- CVE-2025-53066: openjdk: Enhance Path Factories (Oracle CPU 2025-10)
Comments
Please sign in to leave a comment.