Security advisories.

Software flaws found by Qualys.

The Qualys Vulnerability and Malware Research Labs (VMRL) is tasked with the investigation of software packages to find new flaws. Once found, we work with the software owner to get the flaw registered (CVEs), and then we assist with the quickest resolution possible by providing detailed technical information, including proof of concept code.

This list of advisories provides insight into the specific vulnerabilities reported.

Browse Security Advisories

2025
2024
2023
2022
2021
All

Jun 16, 2025
Chained LPE: SUSE 15 PAM to Full Root via libblockdev/udisks
Read the advisory
May 28, 2025
Local information disclosure in apport and systemd-coredump (CVE-2025-5054 and CVE-2025-4598)
Read the advisory
Mar 26, 2025
Three bypasses of Ubuntu's unprivileged user namespace restrictions
Read the advisory
Feb 17, 2025
CVE-2025-26465: MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client
Read the advisory
Feb 17, 2025
CVE-2025-26466: DoS attack against OpenSSH's client and server
Read the advisory

Security advisories.

Software flaws found by Qualys.

Browse Security Advisories

Chained LPE: SUSE 15 PAM to Full Root via libblockdev/udisks

Local information disclosure in apport and systemd-coredump (CVE-2025-5054 and CVE-2025-4598)

Three bypasses of Ubuntu's unprivileged user namespace restrictions

CVE-2025-26465: MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client

CVE-2025-26466: DoS attack against OpenSSH's client and server