Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

AlmaLinux

• ALSA-2024:8327: grafana security update (Important)
• ALSA-2024:8353: NetworkManager-libreswan security update (Important)
• ALSA-2024:8374: python3.11 security update (Moderate)
• ALSA-2024:8359: python39:3.9 and python39-devel:3.9 security update (Moderate)
• ALSA-2024:8162: kernel security update (Moderate)
• ALSA-2024:8447: python3.12 security update (Moderate)
• ALSA-2024:8446: python3.9 security update (Moderate)

Debian GNU/Linux

• ELA-1208-1 php5 security update
• ELA-1207-1 php7.0 security update
• ELA-1206-1 php7.3 security update
• [SECURITY] [DLA 3925-1] asterisk security update
• [SECURITY] [DSA 5793-1] chromium security update
• ELA-1209-1 libsepol security update
• ELA-1210-1 openjdk-11 security update
• [DLA 3931-1] ghostscript security update
• [DLA 3930-1] libsepol security update
• [DLA 3932-1] python-sql security update
• [DLA 3934-1] libheif security update
• [DLA 3933-1] dmitry security update
• ELA-1212-1 samba security update
• ELA-1213-1 shim new certificates
• [DLA 3935-1] distro-info-data database update
• ELA-1214-1 distro-info-data database update
• ELA-1211-1 libheif security update
• [DLA 3936-1] activemq security update
• [DSA 5797-1] twisted security update
• [DSA 5796-1] libheif security update
• ELA-1215-1 python-cryptography security update
• [SECURITY] [DSA 5798-1] activemq security update

Fedora Linux

• [SECURITY] Fedora 40 Update: suricata-7.0.7-1.fc40
• [SECURITY] Fedora 40 Update: wireshark-4.2.8-1.fc40
• Fedora 40 Update: python-starlette-0.40.0-1.fc40
• Fedora 40 Update: python-fastapi-0.111.1-7.fc40
• Fedora 40 Update: python-platformio-6.1.14-7.fc40
• Fedora 40 Update: python-openapi-core-0.19.4-3.fc40
• Fedora 40 Update: dotnet6.0-6.0.135-1.fc40
• Fedora 40 Update: yarnpkg-1.22.22-5.fc40
• Fedora 40 Update: rust-pyo3-ffi-0.22.4-1.fc40
• Fedora 40 Update: rust-pyo3-0.22.4-1.fc40
• Fedora 40 Update: rust-pyo3-macros-backend-0.22.4-1.fc40
• Fedora 40 Update: rust-pyo3-macros-0.22.4-1.fc40
• Fedora 40 Update: rust-pyo3-build-config-0.22.4-1.fc40
• Fedora 39 Update: dotnet6.0-6.0.135-1.fc39
• Fedora 39 Update: rust-pyo3-macros-backend-0.22.4-1.fc39
• Fedora 39 Update: rust-pyo3-ffi-0.22.4-1.fc39
• Fedora 39 Update: yarnpkg-1.22.22-5.fc39
• Fedora 39 Update: rust-pyo3-macros-0.22.4-1.fc39
• Fedora 39 Update: rust-pyo3-build-config-0.22.4-1.fc39
• Fedora 39 Update: rust-pyo3-0.22.4-1.fc39
• Fedora 39 Update: koji-1.35.1-1.fc39
• [SECURITY] Fedora 40 Update: libtiff-4.6.0-5.fc40.1
• Fedora 39 Update: dotnet8.0-8.0.110-1.fc39
• Fedora 40 Update: dotnet8.0-8.0.110-1.fc40
• Fedora 41 Update: thunderbird-128.3.3-1.fc41
• Fedora 41 Update: NetworkManager-libreswan-1.2.24-1.fc41
• Fedora 41 Update: chromium-130.0.6723.58-1.fc41
• Fedora 41 Update: dotnet8.0-8.0.110-1.fc41
• Fedora 41 Update: mbedtls3.6-3.6.2-1.fc41
• Fedora 41 Update: python-starlette-0.40.0-1.fc41
• Fedora 41 Update: python-fastapi-0.115.2-1.fc41
• Fedora 41 Update: python-openapi-core-0.19.4-4.fc41
• Fedora 41 Update: python-platformio-6.1.14-7.fc41
• Fedora 41 Update: yarnpkg-1.22.22-5.fc41
• Fedora 41 Update: rust-pyo3-macros-backend-0.22.4-1.fc41
• Fedora 41 Update: rust-pyo3-ffi-0.22.4-1.fc41
• Fedora 41 Update: rust-pyo3-build-config-0.22.4-1.fc41
• Fedora 41 Update: rust-pyo3-macros-0.22.4-1.fc41
• Fedora 41 Update: rust-pyo3-0.22.4-1.fc41
• Fedora 41 Update: suricata-7.0.7-1.fc41
• Fedora 41 Update: python-rpyc-6.0.1-1.fc41
• Fedora 41 Update: oath-toolkit-2.6.12-1.fc41
• Fedora 41 Update: libdigidocpp-4.0.0-1.fc41
• Fedora 41 Update: dnsdist-1.9.7-1.fc41

Oracle Linux

• ELBA-2024-12719 Oracle Linux 8 ipmctl bug fix update
• ELSA-2024-12794 Moderate: Oracle Linux 7 edk2 security update (aarch64)
• ELSA-2024-8117 Moderate: Oracle Linux 9 java-1.8.0-openjdk security update
• ELSA-2024-8162 Moderate: Oracle Linux 9 kernel security update
• ELSA-2024-8127 Moderate: Oracle Linux 9 java-21-openjdk security update
• ELSA-2024-8180 Important: Oracle Linux 9 webkit2gtk3 security update
• ELSA-2024-8124 Moderate: Oracle Linux 9 java-17-openjdk security update
• ELSA-2024-8121 Moderate: Oracle Linux 9 java-11-openjdk security update
• ELSA-2024-8112 Important: Oracle Linux 9 buildah security update
• ELSA-2024-8111 Important: Oracle Linux 9 skopeo security update
• ELSA-2024-8110 Important: Oracle Linux 9 containernetworking-plugins security update
• ELBA-2024-12790 Oracle Linux 8 btrfs-progs bug fix update
• ELBA-2024-12789 Oracle Linux 8 xfsprogs bug fix update
• ELSA-2024-8127 Moderate: Oracle Linux 8 java-21-openjdk security update
• ELSA-2024-8124 Moderate: Oracle Linux 8 java-17-openjdk security update
• ELSA-2024-8121 Moderate: Oracle Linux 8 java-11-openjdk security update
• ELSA-2024-8117 Moderate: Oracle Linux 8 java-1.8.0-openjdk security update
• ELSA-2024-7434 Moderate: Oracle Linux 7 389-ds-base security update (aarch64)
• ELSA-2024-7101 Important: Oracle Linux 7 httpd security update (aarch64)
• ELSA-2024-6662 Important: Oracle Linux 7 python-setuptools security update (aarch64)
• ELSA-2024-7101 Important: Oracle Linux 7 httpd security update
• ELSA-2024-7434 Moderate: Oracle Linux 7 389-ds-base security update
• ELSA-2024-6662 Important: Oracle Linux 7 python-setuptools security update
• ELSA-2024-12796 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update
• ELSA-2024-12796 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update
• ELSA-2024-12796 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
• ELSA-2024-12797 Moderate: Oracle Linux 9 linux-firmware security update
• ELSA-2024-12797 Moderate: Oracle Linux 7 linux-firmware security update
• ELSA-2024-12797 Moderate: Oracle Linux 7 linux-firmware security update (aarch64)
• ELSA-2024-8374 Moderate: Oracle Linux 9 python3.11 security update
• ELSA-2024-8327 Important: Oracle Linux 8 grafana security update
• ELSA-2024-8353 Important: Oracle Linux 8 NetworkManager-libreswan security update
• ELSA-2024-12797 Moderate: Oracle Linux 8 linux-firmware security update
• ELSA-2024-8447 Moderate: Oracle Linux 9 python3.12 security update
• ELBA-2024-8454 Oracle Linux 9 rpm-ostree bug fix update
• ELSA-2024-8446 Moderate: Oracle Linux 9 python3.9 security update
• ELSA-2024-8359 Moderate: Oracle Linux 8 python39:3.9 and python39-devel:3.9 security update
• ELSA-2024-8034 Important: Oracle Linux 7 firefox security update (aarch64)
• ELSA-2024-7702 Important: Oracle Linux 7 firefox security update (aarch64)
• ELSA-2024-6838 Important: Oracle Linux 7 firefox update (aarch64)
• ELSA-2024-6838 Important: Oracle Linux 7 firefox update
• ELSA-2024-8034 Important: Oracle Linux 7 firefox security update
• ELSA-2024-7702 Important: Oracle Linux 7 firefox security update

Red Hat Enterprise Linux

• RHSA-2024:7725: Important: Red Hat OpenShift Service Mesh Containers for 2.5.5
• RHSA-2024:7726: Important: Red Hat OpenShift Service Mesh Containers for 2.6.2
• RHSA-2024:7724: Important: Red Hat OpenShift Service Mesh Containers for 2.4.11
• RHSA-2024:7705: Moderate: systemd security update
• RHSA-2024:7700: Important: firefox security update
• RHSA-2024:7699: Important: thunderbird security update
• RHSA-2024:7702: Important: firefox security update
• RHSA-2024:7704: Important: firefox security update
• RHSA-2024:7703: Important: firefox security update
• RHSA-2024:7701: Important: git security update
• RHSA-2024:7706: Moderate: Red Hat build of Cryostat security update
• RHSA-2024:7323: Moderate: Logging for Red Hat OpenShift - 5.6.24
• RHSA-2024:7769: Important: container-tools:rhel8 security update
• RHSA-2024:7744: Moderate: Red Hat OpenShift Data Foundation 4.13.12 security, enhancement & bug fix update
• RHSA-2024:7736: Important: Red Hat JBoss Enterprise Application Platform 7.4 Security update
• RHSA-2024:7735: Important: Red Hat JBoss Enterprise Application Platform 7.4 security update
• RHSA-2024:7785: Important: python-gevent security update
• RHSA-2024:7793: Important: buildah security update
• RHSA-2024:7794: Important: skopeo security update
• RHSA-2024:7792: Important: containernetworking-plugins security update
• RHSA-2024:7791: Important: podman security update
• RHSA-2024:7820: Important: podman security update
• RHSA-2024:7819: Important: buildah security update
• RHSA-2024:7821: Important: skopeo security update
• RHSA-2024:7822: Important: container-tools:rhel8 security update
• RHSA-2024:7818: Important: containernetworking-plugins security update
• RHSA-2024:7811: Critical: Red Hat JBoss Enterprise Application Platform 7.4 Security update
• RHSA-2024:7812: Critical: Red Hat JBoss Enterprise Application Platform 7.4 security update
• RHSA-2024:7599: Important: OpenShift Container Platform 4.16.16 bug fix and security update
• RHSA-2024:7590: Important: OpenShift Container Platform 4.12.67 bug fix and security update
• RHSA-2024:7848: Low: openssl security update
• RHSA-2024:7851: Important: .NET 6.0 security update
• RHSA-2024:7853: Important: thunderbird security update
• RHSA-2024:7855: Important: thunderbird security update
• RHSA-2024:7847: Low: openssl security update
• RHSA-2024:7846: Low: openssl security update
• RHSA-2024:7842: Important: firefox security update
• RHSA-2024:7594: Important: OpenShift Container Platform 4.15.36 security update
• RHSA-2024:7875: Moderate: net-snmp security update
• RHSA-2024:7869: Important: .NET 8.0 security update
• RHSA-2024:7868: Important: .NET 8.0 security update
• RHSA-2024:7867: Important: .NET 6.0 security update
• RHSA-2024:7861: Critical: Apicurio Registry (container images) release and security update [ 2.6.5 GA ]
• RHSA-2024:7854: Important: thunderbird security update
• RHSA-2024:7852: Important: container-tools:rhel8 security update
• RHSA-2024:7856: Important: thunderbird security update
• RHSA-2024:7958: Important: firefox security update
• RHSA-2024:7987: Moderate: Satellite 6.15.4 Security Update
• RHSA-2024:7977: Important: firefox security update
• RHSA-2024:7759: Moderate: Multicluster Engine for Kubernetes 2.6.3 security updates
• RHSA-2024:7972: Critical: Red Hat Build of Apache Camel 4.4 for Quarkus 3.8 update is now available (RHBQ 3.8.6.SP1)
• RHSA-2024:7676: Critical: Red Hat build of Quarkus 3.2.12.SP1 Security Update
• RHSA-2024:7994: Important: Red Hat Advanced Cluster Management 2.11.3 bug fixes and container updates
• RHSA-2024:8037: Moderate: OpenIPMI security update
• RHSA-2024:8033: Important: firefox security update
• RHSA-2024:8036: Important: .NET 6.0 security update
• RHSA-2024:8038: Important: container-tools:rhel8 security update
• RHSA-2024:8035: Moderate: python3.11-urllib3 security update
• RHSA-2024:8039: Important: podman security update
• RHSA-2024:8034: Important: firefox security update
• RHSA-2024:8025: Important: thunderbird security update
• RHSA-2024:8024: Important: thunderbird security update
• RHSA-2024:8032: Important: firefox security update
• RHSA-2024:8031: Important: firefox security update
• RHSA-2024:8028: Important: thunderbird security update
• RHSA-2024:8029: Important: thunderbird security update
• RHSA-2024:8040: Moderate: Cluster Observability Operator 0.4.1
• RHSA-2024:8026: Important: thunderbird security update
• RHSA-2024:8030: Important: thunderbird security update
• RHSA-2024:8027: Important: thunderbird security update
• RHSA-2024:8023: Important: Release of OpenShift Serverless Logic 1.34.0 security update & enhancements
• RHSA-2024:8047: Important: .NET 6.0 security update
• RHSA-2024:8048: Important: .NET 6.0 security update
• RHSA-2024:8093: Important: Red Hat JBoss Enterprise Application Platform 7.4 security update
• RHSA-2024:8081: Moderate: OpenIPMI security update
• RHSA-2024:8082: Important: .NET 6.0 security update
• RHSA-2024:8083: Important: grafana security update
• RHSA-2024:8080: Important: Red Hat JBoss Enterprise Application Platform 7.4.19 Security update
• RHSA-2024:8075: Important: Red Hat JBoss Enterprise Application Platform 7.4.19 Security update
• RHSA-2024:8076: Important: Red Hat JBoss Enterprise Application Platform 7.4.19 Security update
• RHSA-2024:8077: Important: Red Hat JBoss Enterprise Application Platform 7.4.19 Security update
• RHSA-2024:8064: Critical: Red Hat Build of Apache Camel 4.4.3 for Spring Boot security update.
• RHSA-2024:8103: Moderate: python39:3.9 security update
• RHSA-2024:8107: Moderate: kernel security update
• RHSA-2024:8104: Moderate: edk2 security update
• RHSA-2024:8102: Important: python-gevent security update
• RHSA-2024:8105: Important: python-gevent security update
• RHSA-2024:8131: Important: firefox security update
• RHSA-2024:8130: Moderate: python3.9 security update
• RHSA-2024:8111: Important: skopeo security update
• RHSA-2024:8113: Important: Red Hat OpenShift Data Foundation 4.16.3 security and bug fix update
• RHSA-2024:8110: Important: containernetworking-plugins security update
• RHSA-2024:7925: Moderate: OpenShift Container Platform 4.17.1 packages and security update
• RHSA-2024:8112: Important: buildah security update
• RHSA-2024:7921: Moderate: OpenShift Container Platform 4.17.1 security and extras update
• RHSA-2024:8132: Moderate: libuv security update
• RHSA-2024:7922: Important: OpenShift Container Platform 4.17.1 bug fix and security update
• RHSA-2024:8162: Moderate: kernel security update
• RHSA-2024:8161: Moderate: kernel security update
• RHSA-2024:7548: Moderate: Run Once Duration Override Operator for Red Hat OpenShift 1.2.0 for RHEL 9
• RHSA-2024:8157: Moderate: kernel security update
• RHSA-2024:8158: Moderate: kernel-rt security update
• RHSA-2024:8120: Moderate: java-11-openjdk security update
• RHSA-2024:8176: Important: firefox security update
• RHSA-2024:8168: Important: fence-agents security update
• RHSA-2024:8171: Important: fence-agents security update
• RHSA-2024:8170: Important: fence-agents security update
• RHSA-2024:8166: Important: thunderbird security update
• RHSA-2024:8169: Important: thunderbird security update
• RHSA-2024:8167: Important: firefox security update
• RHSA-2024:8172: Important: resource-agents security update
• RHSA-2024:8173: Important: resource-agents security update
• RHSA-2024:7941: Important: OpenShift Container Platform 4.13.z security update
• RHSA-2024:7939: Important: OpenShift Container Platform 4.13.52 security update
• RHSA-2024:8117: Moderate: java-1.8.0-openjdk security update
• RHSA-2024:7944: Moderate: OpenShift Container Platform 4.16.17 security update
• RHSA-2024:8124: Moderate: java-17-openjdk security update
• RHSA-2024:8129: Moderate: OpenJDK 21.0.5 Security Update for Windows Builds
• RHSA-2024:8128: Moderate: OpenJDK 21.0.5 Security Update for Portable Linux Builds
• RHSA-2024:8126: Moderate: OpenJDK 17.0.13 Security Update for Windows Builds
• RHSA-2024:8125: Moderate: OpenJDK 17.0.13 Security Update for Portable Linux Builds
• RHSA-2024:8119: Moderate: OpenJDK 8u432 Windows Security Update
• RHSA-2024:8122: Moderate: OpenJDK 11.0.25 Security Update for Portable Linux Builds
• RHSA-2024:8123: Moderate: OpenJDK 11.0.25 Security Update for Windows Builds
• RHSA-2024:8118: Moderate: OpenJDK 8u432 Security Update for Portable Linux Builds
• RHSA-2024:8127: Moderate: java-21-openjdk security update
• RHSA-2024:8180: Important: webkit2gtk3 security update
• RHSA-2024:8121: Moderate: java-11-openjdk security update
• RHSA-2024:8179: Important: resource-agents security update
• RHSA-2024:8116: Moderate: java-1.8.0-openjdk security update
• RHSA-2024:8014: Important: Network Observability 1.7.0 for OpenShift
• RHSA-2024:6341: Moderate: Kube Descheduler Operator for Red Hat OpenShift 5.1.0 for RHEL 9
• RHSA-2024:8228: Low: OpenShift Container Platform 4.17.2 security and extras update
• RHSA-2024:8339: Important: Red Hat Integration Camel K 1.10.8 release and security update.
• RHSA-2024:8338: Important: NetworkManager-libreswan security update
• RHSA-2024:8329: Important: Red Hat build of Cryostat security update
• RHSA-2024:8327: Important: grafana security update
• RHSA-2024:8312: Important: NetworkManager-libreswan security update
• RHSA-2024:8359: Moderate: python39:3.9 and python39-devel:3.9 security update
• RHSA-2024:8352: Important: NetworkManager-libreswan:1.2.14 security update
• RHSA-2024:8355: Important: NetworkManager-libreswan security update
• RHSA-2024:8354: Important: NetworkManager-libreswan security update
• RHSA-2024:8353: Important: NetworkManager-libreswan security update
• RHSA-2024:8351: Important: grafana:7.3.6 security update
• RHSA-2024:8357: Important: NetworkManager-libreswan security update
• RHSA-2024:8356: Important: NetworkManager-libreswan security update
• RHSA-2024:8358: Important: NetworkManager-libreswan security update
• RHSA-2024:8232: Important: OpenShift Container Platform 4.17.2 packages and security update
• RHSA-2024:8229: Important: OpenShift Container Platform 4.17.2 bug fix and security update
• RHSA-2024:8317: Important: Logging for Red Hat OpenShift - 5.8.14
• RHSA-2024:8314: Important: Logging for Red Hat OpenShift - 6.0.1
• RHSA-2024:8318: Important: Logging for Red Hat OpenShift - 5.6.25
• RHSA-2024:8315: Important: Logging for Red Hat OpenShift - 5.9.8
• RHSA-2024:8238: Moderate: OpenShift Container Platform 4.14.39 security update
• RHSA-2024:8374: Moderate: python3.11 security update
• RHSA-2024:8235: Important: OpenShift Container Platform 4.14.39 security update
• RHSA-2024:8365: Moderate: python-idna security update
• RHSA-2024:8461: Important: krb5 security update
• RHSA-2024:8455: Important: edk2 security update
• RHSA-2024:8446: Moderate: python3.9 security update
• RHSA-2024:8447: Moderate: python3.12 security update
• RHSA-2024:8449: Important: edk2 security update
• RHSA-2024:8263: Important: OpenShift Container Platform 4.16.18 packages and security update
• RHSA-2024:8260: Important: OpenShift Container Platform 4.16.18 bug fix and security update

Rocky Linux

• RLSA-2024:8180: Important: webkit2gtk3 security update
• RLSA-2024:8025: Important: thunderbird security update
• RLSA-2024:8111: Important: skopeo security update
• RLSA-2024:8039: Important: podman security update
• RLBA-2024:7457: mod_jk bug fix update
• RLSA-2024:8110: Important: containernetworking-plugins security update
• RLBA-2024:8454: rpm-ostree bug fix update
• RLSA-2024:7550: Moderate: golang security update
• RLSA-2024:7958: Important: firefox security update
• RLSA-2024:8374: Moderate: python3.11 security update
• RLSA-2024:8447: Moderate: python3.12 security update
• RLSA-2024:7867: Important: .NET 6.0 security update
• RLSA-2024:7869: Important: .NET 8.0 security update
• RLSA-2024:8037: Moderate: OpenIPMI security update
• RLBA-2024:7448: glibc bug fix and enhancement update
• RLEA-2024:7620: microcode_ctl bug fix and enhancement update
• RLSA-2024:8446: Moderate: python3.9 security update
• RLSA-2024:8162: Moderate: kernel security update
• RLSA-2024:8359: Moderate: python39:3.9 and python39-devel:3.9 security update
• RLSA-2024:7502: Moderate: go-toolset:rhel8 security update

Slackware Linux

• openssl (SSA:2024-295-01)
• php81 (SSA:2024-297-01)

SUSE Linux

• openSUSE-SU-2024:14414-1: moderate: chromedriver-130.0.6723.58-1.1 on GA media
• openSUSE-SU-2024:14417-1: moderate: python310-starlette-0.41.0-1.1 on GA media
• openSUSE-SU-2024:14416-1: moderate: libopenssl-3-devel-3.1.4-15.1 on GA media
• openSUSE-SU-2024:14415-1: moderate: MozillaFirefox-131.0.3-1.1 on GA media
• SUSE-SU-2024:3741-1: moderate: Security update for podman
• SUSE-SU-2024:3742-1: important: Security update for apache2
• openSUSE-SU-2024:14419-1: moderate: libeverest-3.6.2-1.1 on GA media
• SUSE-SU-2024:3747-1: important: Security update for protobuf
• SUSE-SU-2024:3745-1: important: Security update for protobuf
• SUSE-SU-2024:3746-1: important: Security update for protobuf
• SUSE-SU-2024:3748-1: moderate: Security update for cargo-c
• openSUSE-SU-2024:14420-1: moderate: podman-5.2.4-3.1 on GA media
• SUSE-SU-2024:3752-1: important: Security update for webkit2gtk3
• SUSE-SU-2024:3753-1: moderate: Security update for podman
• SUSE-SU-2024:3754-1: moderate: Security update for buildah
• SUSE-SU-2024:3755-1: important: Security update for go1.21-openssl
• openSUSE-SU-2024:14422-1: moderate: NetworkManager-applet-libreswan-1.2.24-1.1 on GA media
• openSUSE-SU-2024:14428-1: moderate: python39-3.9.20-4.1 on GA media
• openSUSE-SU-2024:14425-1: moderate: nodejs-electron-31.7.2-1.1 on GA media
• openSUSE-SU-2024:14427-1: moderate: python310-3.10.15-2.1 on GA media

Ubuntu Linux

• [USN-7077-1] AMD Microcode vulnerability
• [USN-7042-3] cups-browsed vulnerability
• [USN-7062-2] libgsf vulnerabilities
• [USN-7072-2] Linux kernel (GKE) vulnerabilities
• [USN-7078-1] Firefox vulnerability
• [USN-7080-1] Unbound vulnerability
• [USN-7079-1] WebKitGTK vulnerabilities
• [USN-7082-1] libheif vulnerability
• [USN-7081-1] Go vulnerabilities