OS security updates

  • Linux kernel and kernel package vulnerabilities.
  • Microsoft Windows vulnerabilities related to out-of-date versions, missing security updates or security patches.

OS packages

Workload scanner will report on packages provided by vendors (e.g. Ubuntu, RedHat) and OS package managers (e.g. yum, apk, dpkg, etc.).
Workload scanner does not report on self-compiled packages or binaries.
OSSecurity Advisory
AlmaLinuxAlmaLinux Product Errata
Alpine LinuxAlpine Security Database
Amazon LinuxAmazon Linux Security Center
Arch LinuxVulnerable issues - Arch Linux
Azure LinuxAzure Linux Vulnerability Data
Chainguard/Wolfi LinuxChainguard Security Advisories
DebianDebian Security Bug Tracker
Microsoft WindowsMicrosoft Security Update Guide
OpenSUSEOpenSUSE Security CVRF
Oracle LinuxOracle Linux Security
Photon OSPhoton Security Advisories
RHEL/CentOSRed Hat Security Data
Rocky LinuxRocky Enterprise Software Foundation Product Errata
UbuntuUbuntu Security CVE Reports

Programming language specific packages

Workload scanner will report on packages managed by language specific package managers (e.g. npm, yarn, pip, gem, etc.) and the related manifest files and post-build artifacts (e.g. package.json, package-lock.json, yarn.lock, Pipfile.lock, requirements.txt, Gemfile.lock, gemspec, etc.).
LanguageSecurity Advisory
C/C++GitLab Advisory Database Open Source Edition
DartGitHub Advisory Database (Pub)
ElixirGitHub Advisory Database (Erlang)
GoGo Vulnerability Database
JavaGitHub Advisory Database (Maven)
JuliaLangGitHub Advisory Database (JuliaLang)
.NETGitHub Advisory Database (NuGet)
Node.jsNode.js Ecosystem Security Working Group
PHPPHP Security Advisories Database
PythonPython Software Foundation Advisory Database
RubyRuby Security Advisory Database
RustRust Security Advisory Database
SwiftGitHub Advisory Database