Vendor Advisories

This category highlights official security advisories and bulletins from vendors, including patch notices, product-specific vulnerabilities, remediation guidance, and important updates affecting supported technologies and platforms.

CVE-2026-47270

Advisoryloom Editor May 27, 2026

Medium Severity Description pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, pam_usb...

CVE-2026-47269

Advisoryloom Editor May 27, 2026

High Severity Description pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, pam_usb’s...

CVE-2026-45137

Advisoryloom Editor May 27, 2026

High Severity Description Anchor is a framework providing several convenient developer tools for writing Solana programs. From...

RHSA-2026:21431: Important: fence-agents security update

Advisoryloom Editor May 27, 2026

An update for fence-agents is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red...

RHSA-2026:21468: Important: cockpit security update

Advisoryloom Editor May 27, 2026

An update for cockpit is now available for Red Hat Enterprise Linux 9. Red Hat Product Security...

Out of the Crypt: The Evolving Cyber Extortion Economy

Advisoryloom Editor May 27, 2026

Unit 42 explores trends in data theft and extortion, outlining key strategies for organizations as frontier AI...

RHSA-2026:21433: Important: httpd security update

Advisoryloom Editor May 27, 2026

An update for httpd is now available for Red Hat Enterprise Linux 10. Red Hat Product Security...

RHSA-2026:21398: Important: openssh security update

Advisoryloom Editor May 27, 2026

An update for openssh is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update...

RHSA-2026:21391: Important: httpd security update

Advisoryloom Editor May 27, 2026

An update for httpd is now available for Red Hat Enterprise Linux 9. Red Hat Product Security...

USN-8326-1: Foomuuri vulnerabilities

Advisoryloom Editor May 27, 2026

Matthias Gerstner discovered that Foomuuri’s D-Bus service did not properly enforce authorization. An unprivileged local attacker could...