Open Source Security Advisories
Indices
Alma Linux Advisories
AlmaLinux is a popular community-driven Linux distribution that is built as a replacement for CentOS, which was recently discontinued by Red Hat. Like any other operating system, AlmaLinux is not immune to vulnerabilities and security flaws. Errata vulnerabilities refer to security issues that have been identified in a software system and require a patch or update to fix them. AlmaLinux has a dedicated team that constantly monitors for errata vulnerabilities and releases patches and updates to ensure that the system remains secure.
Alpine Linux Advisories
The Alpine Linux Security Database is a public repository that maintains a comprehensive list of security vulnerabilities that have been identified in the Alpine Linux distribution. This database is an essential resource for Alpine Linux users who want to stay informed about potential security threats and vulnerabilities. The database provides detailed information about each security issue, including its severity level, affected components, and recommended fixes. Additionally, the Alpine Linux Security Team regularly updates the database with new vulnerabilities and patches, ensuring that users have access to the latest information and recommendations for securing their systems. The Alpine Linux Security Database is a critical component of the distribution's security infrastructure, and its transparency and accessibility reflect the project's commitment to ensuring the safety and reliability of its users' systems.
Apache ActiveMQ Security Advisories
Apache ActiveMQ security advisories are official notifications released by the open source Apache ActiveMQ project to address security vulnerabilities and updates in the open source Apache ActiveMQ project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-activemq index
Apache Archiva Security Vulnerabilities
Apache Archiva security vulnerabilities are official notifications released by the open source Apache Archiva project to address security vulnerabilities and updates in the open source Apache Archiva project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-archiva index
Apache Arrow Security Issues
Apache Arrow security issues are official notifications released by the open source Apache Arrow project to address security vulnerabilities and updates in the open source Apache Arrow project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Apache Camel Security Advisories
Apache Camel security advisories are official notifications released by the open source Apache Camel project to address security vulnerabilities and updates in the open source Apache Camel project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Apache Commons Known Security Vulnerabilities
Apache Commons security vulnerabilities are official notifications released by the open source Apache Commons project to address security vulnerabilities and updates in the open source Apache Commons project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-commons index
Apache CouchDB Security Issues
Apache CouchDB security issues are official notifications released by the open source Apache CouchDB project to address security vulnerabilities and updates in the open source Apache CouchDB project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-couchdb index
Apache Flink Security Updates
Apache Flink security updates are official notifications released by the open source Apache Flink project to address security vulnerabilities and updates in the open source Apache Flink project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Apache Guacamole Security Reports
Apache Guacamole security reports are official notifications released by the open source Apache Guacamole project to address security vulnerabilities and updates in the open source Apache Guacamole project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-guacamole index
Apache Hadoop CVEs
Apache Hadoop CVEs are official notifications released by the open source Apache Hadoop project to address security vulnerabilities and updates in the open source Apache Hadoop project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-hadoop index
Apache HTTP Security Vulnerabilities
Apache HTTP security vulnerabilities are official notifications released by the open source Apache project to address security vulnerabilities and updates in the open source Apache HTTP project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Apache JSPWiki CVEs
Apache JSPWiki CVEs are official notifications released by the open source Apache JSPWiki project to address security vulnerabilities and updates in the open source Apache OpenMeetings project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-jspwiki index
Apache Kafka Security Vulnerabilities
Apache Kafka security vulnerabilities are official notifications released by the open source Apache Kafka project to address security vulnerabilities and updates in the open source Apache Kafka project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Apache Logging Services Known Vulnerabilities
Apache Logging Services known vulnerabilities are official notifications released by the open source Apache Logging Services project to address security vulnerabilities and updates in the open source Apache Logging Services project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-loggingservices index
Apache NiFi Security Vulnerabilities
Apache NiFi security vulnerabilities are official notifications released by the open source Apache NiFi project to address security vulnerabilities and updates in the open source Apache NiFi project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Apache OFBiz Security Vulnerabilities
Apache OFBiz security vulnerabilities are official notifications released by the open source Apache OFBiz project to address security vulnerabilities and updates in the open source Apache OFBiz project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Apache OpenMeetings Security Vulnerabilities
Apache OpenMeetings security vulnerabilities are official notifications released by the open source Apache OpenMeetings project to address security vulnerabilities and updates in the open source Apache OpenMeetings project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-openmeetings index
Apache OpenOffice Security Bulletins
Apache OpenOffice security bulletins are official notifications released by the open source Apache OpenOffice project to address security vulnerabilities and updates in the open source Apache OpenOffice project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-openoffice index
Apache Pulsar Security Advisories
Apache Pulsar security advisories are official notifications released by the open source Apache Pulsar project to address security vulnerabilities and updates in the open source Apache Pulsar project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-pulsar index
Apache Shiro Vulnerability Reports
Apache Shiro vulnerability reports are official notifications released by the open source Apache Shiro project to address security vulnerabilities and updates in the open source Apache Shiro project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Apache Spark Known Security Issues
Apache Spark cves are official notifications released by the open source Apache Spark project to address security vulnerabilities and updates in the open source Apache Spark project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Apache Struts Security Bulletins
Apache Struts security bulletins are official notifications released by the open source Apache Struts project to address security vulnerabilities and updates in the open source Apache Struts project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-struts index
Apache Subversion Security Advisories
Apache Subversion security advisories are official notifications released by the open source Apache Subversion project to address security vulnerabilities and updates in the open source Apache Subversion project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-subversion index
Apache Superset CVEs
Apache Superset cves are official notifications released by the open source Apache Superset project to address security vulnerabilities and updates in the open source Apache Superset project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-superset index
Apache Tomcat Security Vunlnerabilities
Apache Tomcat security vunlnerabilities are official notifications released by the open source Apache Struts project to address security vulnerabilities and updates in the open source Apache Strus project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-tomcat index
Apache ZooKeeper Vulnerability Reports
Apache ZooKeeper vulnerability reports are official notifications released by the open source Apache ZooKeeper project to address vulnerabilities and updates in the open source Apache ZooKeeper project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the apache-zookeeper index
Arch Linux
Arch Linux's rolling-release model ensures that security patches are promptly released and distributed to users, minimizing the exposure to known vulnerabilities and providing a relatively secure system when kept up to date.
Asterisk Security Advisories
Asterisk security advisories are official notifications released by the open source Asterisk project to address security vulnerabilities and updates in the open source Asterisk project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
CBL-Mariner Vulnerabilities
CBL-Mariner contains vulnerabilities detected in the Microsoft CBL Mariner linux distribution.
CentOS Security Advisories
CentOS Security Advisories are official notifications issued by the CentOS project, a popular open-source Linux distribution. These advisories provide information on security vulnerabilities, patches, and updates relevant to CentOS operating systems. They help CentOS users stay informed about potential risks, recommended actions, and available fixes to maintain the security and stability of their CentOS-based systems. CentOS Security Advisories play a vital role in assisting system administrators and users in effectively managing and securing their CentOS deployments.
ChainGuard Security Advisories
ChainGuard is an enterprise Linux undistribution based on Wolfi that combines the best aspects of existing container base images with default security measures that will include software signatures powered by Sigstore, provenance, and software bills of material (SBOM).
Curl CVEs
Curl CVEs are official notifications released by the Curl open source project to address security vulnerabilities and updates in curl. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Debian Security Advisories
Debian Security Tracker - debian-security-tracker index is a service that provides information and updates on security vulnerabilities and issues affecting Debian packages and software. The Debian Security Tracker is a centralized repository for security-related information about Debian packages, including vulnerability reports, security advisories, and security updates. The tracker is designed to help users and administrators maintain the security of their Debian-based systems.
Debian Security Advisories
Debian DSA (Debian Security Advisory) - debian-dsa index is a series of security advisories published by the Debian Project, a non-profit organization that develops and distributes the Debian operating system. These advisories provide information and guidance on security vulnerabilities and issues affecting Debian packages and software.
Django Security Issues
Django security issues are official notifications released by the Django team to address security vulnerabilities and updates in their software products. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Fedora Security Advisories
Fedora security advisories are official notifications released by Fedora to address security vulnerabilities and updates in their software products. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
FreeBSD Security Advisories
FreeBSD security advisories are official notifications released by the FreeBSD security team to address security vulnerabilities and updates in the open source FreeBSD operating system. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
GnuTLS Security Advisories
GnuTLS security advisories are official notifications released by the GnuTLS open source project to address security vulnerabilities and updates in curl. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Haskell Security Advisory DB
The Haskell Security Advisory Database is a repository of security advisories filed against packages published via Hackage.
Jenkins Security Advisories
Jenkins security advisories are official notifications released by Jenkins to address security vulnerabilities and updates in their software products. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Kubernetes Security Issues
Kubernetes security issues are official notifications released by the Kubernetes Security Response Committee to address security vulnerabilities and updates in their software products. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Libre Office Security Advisories
Libre Office security advisories are official notifications released by the open source Libre Office project to address security vulnerabilities and updates in the open source Libre Office project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Linux Kernel Security Advisories
Linux kernel security advisories are official notifications released by the Linux security team to address security vulnerabilities and updates in the open source Linux operating system. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Mbed TLS Security Advisories
Mbed TLS security advisories are official notifications released by the open source Mbed TLS project to address security vulnerabilities and updates in the open source Mbed TLS project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Node.js Security Working Group Advisories
Node.js security working group advisories are official notifications released by the Node.js Security Working Group to address security vulnerabilities and updates in the node and npm software ecosystems. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Browse the node-security index
NodeJS Security Advisories
NodeJS security release notices are official notifications released by NodeJS to address security vulnerabilities and updates in their software products. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
NTP Security Issues
NTP security issues are official notifications released by the NTP project to address security vulnerabilities and updates in the open source NTP project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
OpenBSD Security Fixes
OpenBSD security advisories are official notifications released by the OpenBSD security team to address security vulnerabilities and updates in the open source OpenBSD operating system. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
OpenSSH Security Advisories
OpenSSH security advisories are official notifications released by the OpenSSH security team to address security vulnerabilities and updates in the open source OpenSSH project. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
OpenSSL Security Advisories
OpenSSL Security Advisories are official communications issued by the OpenSSL project, an open-source software library that provides cryptographic functions to protect communications over computer networks. These advisories are designed to provide information and guidance on potential security vulnerabilities and threats affecting OpenSSL software. OpenSSL Security Advisories typically include technical details about the vulnerability or issue, as well as recommended remediation and risk mitigation steps. They may also include severity ratings and CVSS scores to help organizations prioritize their response to potential security incidents. The OpenSSL security team works closely with the community to identify and address security concerns, and is committed to providing timely and effective security advisories to help protect user data and sensitive information. OpenSSL Security Advisories cover a wide range of topics, including vulnerabilities related to key management, cryptographic weaknesses, and protocol issues. By providing regular updates and guidance on potential security threats, OpenSSL helps to ensure the ongoing security and reliability of its software for its users. Additionally, OpenSSL encourages open and transparent collaboration with the community to help identify and address potential security concerns, making it an important component of secure communications infrastructure.
Browse the openssl-secadv index
OpenStack Security Advisories
OpenStack security advisories are official notifications released by the open source OpenStack project to address security vulnerabilities and updates in the open source OpenStack project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
OpenWrt Security Advisories
OpenWRT security advisories are official notifications released by the OpenWRT team to address security vulnerabilities and updates in the open source OpenWRT operating system. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
phpMyAdmin Security Advisories
phpMyAdmin security advisories are official notifications released by phpMyAdmin to address security vulnerabilities and updates in their software products. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
PostgresSQL Security Vulnerabilities
PostgresSQL security vulnerabilities are official notifications released by the open source PostgresSQL project to address security vulnerabilities and updates in the open source PostgresSQL project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
PyPA Security Advisories
The Python Package Advisories index holds community maintained collection of security advisories for PyPI packages.
Browse the pypa-advisories index
Rocky Linux Advisories
The Rocky Linux community and development team work diligently to identify and address vulnerabilities by providing regular security updates and advisories, helping to maintain a more secure environment for Rocky Linux users.
Rocky Errata
Rocky Errata is a collection of official notifications released by Rocky Linux to address security vulnerabilities and updates. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
RustSec Advisories
RustSec Advisories are security advisories filed against crates published via crates.io and are maintained by the Rust Secure Code Working Group.
Browse the rustsec-advisories index
Samba Security Releases
Samba security releases are official notifications released by the Samba open source project to address security vulnerabilities and updates in the open source Samba project. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Slackware Security Advisories
Slackware security advisories are official notifications released by the open source Slackware project to address security vulnerabilities and updates in the open source Slackware project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Solr CVE Reports
Solr cve reports are official notifications released by the open source Solr project to address vulnerabilities and updates in the open source Solr project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Sudo Security Advisories
Sudo security advisories are official notifications released by the open source sudo project to address security vulnerabilities and updates in their software products. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
SUSE Security Advisories
SUSE Security Advisories are official notifications from SUSE, a prominent open-source software company, that inform users about security vulnerabilities and provide guidance on mitigating risks in their Linux-based products and solutions. These advisories play a crucial role in helping SUSE users maintain the security and integrity of their systems.
Symfony Security Advisories
Symfony security advisories are official notifications released by the open source Symfony project to address security vulnerabilities and updates in the open source Symfony project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Ubuntu Security Notices
Ubuntu security advisories are official notifications released by Ubuntu to address security vulnerabilities and updates in their software products. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Wireshark Security Advisories
Wireshark security advisories are official notifications released by the open source Wireshark project to address security vulnerabilities and updates in the open source Wireshark project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Wolfi Security Advisories
Wolfi is a new community Linux undistribution that combines the best aspects of existing container base images with default security measures that will include software signatures powered by Sigstore, provenance, and software bills of material (SBOM).
Wordfence Vulnerabilities
Wordfence vulnerabilities are official notifications released by Wordfence to address security vulnerabilities and updates in open source WordPress plugins. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Xen Advisories
Xen advisories are official notifications released by the open source Xen project to address vulnerabilities and updates in the open source Apache ZooKeeper project. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Government Security Advisories
Official security advisories from government entities, offering authoritative information on national and international cybersecurity concerns.
Open Source Package Managers
Integration with various open-source package managers to track and report vulnerabilities in software dependencies.
