VEX report

Run environment Kernel vulnerabilities summary Vulnerabilities (other than kernel) with known fixes Vulnerabilities (other than kernel) with no known fixes

Run environment

Distribution name
batz-2.0-update
Time of run
2026-05-16T08:26:39.678838

Kernel vulnerabilities summary

The kernel used in that image build is version 5.10.110. It is affected by 21 vulnerabilities with no known fix, and 5112 vulnerabilities which are fixed in later releases*. There tend to be a long list of kernel vulnerabilities, so only a summary is given here. For more details take a look at the accompanying vex_report.kernel.json file.

The following table gives an idea of how many vulnerabilities with a known fix would be fixed by upgrading to a given kernel version. The upgrade versions are the current kernel LTS versions and the highest known patch of the kernel branch used for this build.

Some vulnerabilities received a fix outside of these branches, which is why the total doesn't exactly add up.

Version to upgrade to CVEs fixed out of 5112*
5.10.2543791 (74.2%)
5.15.204 (LTS)390 (7.6%)
6.1.170 (LTS)359 (7.0%)
6.6.137 (LTS)226 (4.4%)
6.12.85 (LTS)96 (1.9%)
6.18.26 (LTS)21 (0.4%)

Vulnerabilities (other than kernel) with known fixes

Package VersionFixed in versionFixed CVEs (severity)
libbrotli0:1.0.9-7.baseos.rpbatz.aarch640:1.0.9-6.el9_2.1
openssl1:3.0.7-18.baseos.rpbatz.aarch641:3.0.7-27.el9
pam0:1.5.1-15.baseos.rpbatz.aarch640:1.5.1-19.el9
openssl-libs1:3.0.7-18.baseos.rpbatz.aarch641:3.0.7-27.el9
openssh0:8.7p1-30.apps.rpbatz.9.aarch640:8.7p1-45.el9
python30:3.9.16-1.apps.rpbatz.10.aarch640:3.9.21-2.el9
python3-libs0:3.9.16-1.apps.rpbatz.10.aarch640:3.9.21-2.el9
libarchive0:3.5.3-5.baseos.rpbatz.aarch640:3.5.3-5.el9_2.2
libnghttp20:1.43.0-5.baseos.rpbatz.3.aarch640:1.43.0-5.el9_2.4
krb5-libs0:1.20.1-9.baseos.rpbatz.aarch640:1.21.1-6.el9
libcurl0:7.76.1-23.baseos.rpbatz.7.aarch640:7.76.1-26.el9_3.3
curl0:7.76.1-23.baseos.rpbatz.7.aarch640:7.76.1-26.el9_3.3
openssh-clients0:8.7p1-30.apps.rpbatz.9.aarch640:8.7p1-45.el9
openssh-server0:8.7p1-30.apps.rpbatz.9.aarch640:8.7p1-45.el9
glibc-gconv-extra0:2.34-60.baseos.rpbatz.17.aarch640:2.34-100.el9
ncurses-libs0:6.2-8.20210508.baseos.rpbatz.2.aarch640:6.2-10.20210508.el9
glibc0:2.34-60.baseos.rpbatz.17.aarch640:2.34-100.el9
glibc-common0:2.34-60.baseos.rpbatz.17.aarch640:2.34-100.el9
glibc-langpack-en0:2.34-60.baseos.rpbatz.17.aarch640:2.34-100.el9
sqlite-libs0:3.34.1-6.baseos.rpbatz.2.aarch640:3.34.1-7.el9_3
libxml20:2.9.13-3.baseos.rpbatz.9.aarch640:2.9.13-5.el9_3
gmp1:6.2.0-10.el9.aarch641:6.2.0-13.el9
libgcrypt0:1.10.0-10.baseos.rpbatz.aarch640:1.10.0-11.el9
libtasn10:4.16.0-8.baseos.rpbatz.1.aarch640:4.16.0-9.el9
gnutls0:3.7.6-21.baseos.rpbatz.2.aarch640:3.8.3-6.el9
squashfs-tools0:4.4-8.git1.apps.rpbatz.aarch640:4.4-10.git1.el9
libmicrohttpd1:0.9.72-4.apps.rpbatz.aarch641:0.9.72-5.el9
libssh0:0.10.4-9.baseos.rpbatz.aarch640:0.10.4-13.el9
rpm-libs0:4.16.1.3-24.baseos.rpbatz.aarch640:4.16.1.3-27.el9_3
rpm0:4.16.1.3-24.baseos.rpbatz.aarch640:4.16.1.3-27.el9_3
tpm2-tss0:3.0.3-8.baseos.rpbatz.aarch640:3.2.2-2.el9
wpa_supplicant1:2.10-4.apps.rpbatz.aarch641:2.10-5.el9
rpm-build-libs0:4.16.1.3-24.baseos.rpbatz.aarch640:4.16.1.3-27.el9_3
ncurses0:6.2-8.20210508.baseos.rpbatz.2.aarch640:6.2-10.20210508.el9
perl-libs4:5.32.1-480.baseos.rpbatz.aarch644:5.32.1-481.el9
perl-interpreter4:5.32.1-480.baseos.rpbatz.aarch644:5.32.1-481.el9
rpm-sign-libs0:4.16.1.3-24.baseos.rpbatz.aarch640:4.16.1.3-27.el9_3
python3-rpm0:4.16.1.3-24.baseos.rpbatz.aarch640:4.16.1.3-27.el9_3
sudo0:1.9.5p2-9.apps.rpbatz.3.aarch640:1.9.5p2-10.el9_3
file-libs0:5.39-12.1.baseos.rpbatz.aarch640:5.39-16.el9
shadow-utils2:4.9-6.baseos.rpbatz.aarch642:4.9-15.el9
file0:5.39-12.1.baseos.rpbatz.aarch640:5.39-16.el9
glib20:2.68.4-7.baseos.rpbatz.4.aarch640:2.68.4-11.el9
procps-ng0:3.3.17-11.baseos.rpbatz.aarch640:3.3.17-13.el9

Vulnerabilities (other than kernel) with no known fixes

Package Version CVEs (severity)
qt5-srpm-macros 0:5.15.3-1.el9.noarch
linux-firmware-whence 0:20230310-137.apps.rpbatz.noarch
linux-firmware 0:20230310-137.apps.rpbatz.noarch
libssh-config 0:0.10.4-9.baseos.rpbatz.noarch
coreutils-common 0:8.32-35.baseos.rpbatz.aarch64
xz-libs 0:5.2.5-8.baseos.rpbatz.aarch64
libuuid 0:2.37.4-11.baseos.rpbatz.aarch64
expat 0:2.5.0-1.baseos.rpbatz.3.aarch64
libsmartcols 0:2.37.4-11.baseos.rpbatz.aarch64
xz 0:5.2.5-8.baseos.rpbatz.aarch64
tar 2:1.34-6.apps.rpbatz.1.aarch64
systemd-rpm-macros 0:252-14.baseos.rpbatz.8.2r.noarch
cpio 0:2.13-16.baseos.rpbatz.aarch64
systemd-libs 0:252-14.baseos.rpbatz.8.2r.aarch64
libblkid 0:2.37.4-11.baseos.rpbatz.aarch64
libmount 0:2.37.4-11.baseos.rpbatz.aarch64
libfdisk 0:2.37.4-11.baseos.rpbatz.aarch64
util-linux-core 0:2.37.4-11.baseos.rpbatz.aarch64
util-linux 0:2.37.4-11.baseos.rpbatz.aarch64
NetworkManager-libnm 1:1.42.2-32.apps.rpbatz.aarch64
polkit-libs 0:0.117-11.apps.rpbatz.1.aarch64
python3-pip-wheel 0:21.2.3-6.baseos.rpbatz.noarch
libsss_idmap 0:2.8.2-5.apps.rpbatz.6.aarch64
libsss_nss_idmap 0:2.8.2-5.apps.rpbatz.6.aarch64
systemd-pam 0:252-14.baseos.rpbatz.8.2r.aarch64
systemd 0:252-14.baseos.rpbatz.8.2r.aarch64
systemd-udev 0:252-14.baseos.rpbatz.8.2r.aarch64
NetworkManager 1:1.42.2-32.apps.rpbatz.aarch64
polkit 0:0.117-11.apps.rpbatz.1.aarch64
go-srpm-macros 0:3.2.0-2.apps.rpbatz.noarch
gnupg2 0:2.3.3-2.baseos.rpbatz.1.aarch64
NetworkManager-wifi 1:1.42.2-32.apps.rpbatz.aarch64
sssd-client 0:2.8.2-5.apps.rpbatz.6.aarch64
wget 0:1.21.1-7.apps.rpbatz.1.aarch64
libgcc 0:11.3.1-4.4.baseos.rpbatz.aarch64
pcre2-syntax 0:10.40-2.baseos.rpbatz.noarch
ncurses-base 0:6.2-8.20210508.baseos.rpbatz.2.noarch
zlib 0:1.2.11-39.baseos.rpbatz.aarch64
libstdc++ 0:11.3.1-4.4.baseos.rpbatz.aarch64
pcre2 0:10.40-2.baseos.rpbatz.aarch64
gawk 0:5.1.0-6.baseos.rpbatz.aarch64
unzip 0:6.0-56.apps.rpbatz.aarch64
libgomp 0:11.3.1-4.4.baseos.rpbatz.aarch64