Vendor Advisories

This category highlights official security advisories and bulletins from vendors, including patch notices, product-specific vulnerabilities, remediation guidance, and important updates affecting supported technologies and platforms.

RHSA-2026:17790: Critical: nginx security update

Advisoryloom Editor May 15, 2026

An update for nginx is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red...

RHSA-2026:17791: Critical: nginx security update

Advisoryloom Editor May 15, 2026

An update for nginx is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP...

RHSA-2026:17753: Critical: nginx:1.26 security update

Advisoryloom Editor May 15, 2026

An update for the nginx:1.26 module is now available for Red Hat Enterprise Linux 9.6 Extended Update...

RHSA-2026:17752: Critical: nginx:1.24 security update

Advisoryloom Editor May 15, 2026

An update for the nginx:1.24 module is now available for Red Hat Enterprise Linux 9.6 Extended Update...

RHSA-2026:17751: Critical: nginx security update

Advisoryloom Editor May 15, 2026

An update for nginx is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP...

Gremlin Stealer’s Evolved Tactics: Hiding in Plain Sight With Resource Files

Advisoryloom Editor May 15, 2026

Unit 42 analyzes the evolution of Gremlin stealer. This variant uses advanced obfuscation, crypto clipping and session...

Kazuar: Anatomy of a nation-state botnet Fig1-Kazuar-delivery

Kazuar: Anatomy of a nation-state botnet

Advisoryloom Editor May 14, 2026

In this article Delivery Module types Botnet operations Who is Secret Blizzard? Mitigation and protection guidance Microsoft...

Defense in depth for autonomous AI agents

Defense in depth for autonomous AI agents

Advisoryloom Editor May 14, 2026

Designing Secure Autonomous AI Agents with Defense in Depth AI agents are moving beyond assistance and into...

When configuration becomes a vulnerability: Exploitable misconfigurations in AI apps

When configuration becomes a vulnerability: Exploitable misconfigurations in AI apps

Advisoryloom Editor May 14, 2026

In this article Background What is an exploitable misconfiguration? Exploitable misconfigurations in popular AI applications Minimizing the...

DSA-6272-1 nodejs – security update

Advisoryloom Editor May 14, 2026

https://security-tracker.debian.org/tracker/DSA-6272-1