Coordinated Vendor Patch Advisories for Enterprise Software and Linux Kernel
The Canadian Centre for Cyber Security issued multiple alerts and advisories urging organizations to apply vendor patches for newly disclosed vulnerabilities across widely deployed enterprise platforms, including Splunk (Enterprise, Cloud Platform, Universal Forwarder, and DB Connect prior to 4.2.0), GitHub Enterprise Server (patched releases 3.19.2, 3.18.5, 3.17.11, 3.16.14, 3.15.18, 3.14.23), Jenkins (Weekly 2.550 and prior; LTS 2.541.1 and prior), and Atlassian products (Bamboo, Confluence, and Crowd Data Center/Server across multiple versions). The advisories are framed as patch-and-mitigate guidance rather than incident reporting, emphasizing rapid update adoption to reduce exposure.
Additional vendor guidance highlighted kernel-level risk and security tooling exposure. Tenable released a critical update for Tenable Security Center (6.7.2 and prior) via stand-alone patches, and Red Hat published multiple advisories (Feb 9–15) including Linux kernel fixes across several RHEL-related offerings (e.g., Red Hat Enterprise Linux and CodeReady Linux Builder). Separately, F5 tracked a Linux kernel vulnerability identified as CVE-2025-22026 in its product advisory, reinforcing the need to prioritize kernel patching where affected components are present.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
7 events from the most recent confirmed update back to the earliest known activity.
F5 publishes advisory for Linux kernel CVE-2025-22026
On February 19, 2026, F5 published product advisory K000160079 regarding Linux kernel vulnerability CVE-2025-22026. No additional synopsis details were provided in the reference.
Splunk publishes advisories for multiple product vulnerabilities
On February 18, 2026, Splunk released security advisories for vulnerabilities affecting Splunk Enterprise, Splunk Cloud Platform, Splunk Universal Forwarder, and Splunk DB Connect versions prior to 4.2.0.
Jenkins releases security advisory for Weekly and LTS versions
On February 18, 2026, Jenkins published a security advisory covering vulnerabilities affecting Jenkins Weekly 2.550 and earlier and Jenkins LTS 2.541.1 and earlier.
Atlassian publishes advisories for Bamboo, Confluence, and Crowd
On February 17, 2026, Atlassian released security advisories addressing vulnerabilities in multiple versions of Bamboo Data Center and Server, Confluence Data Center and Server, and Crowd Data Center and Server.
Tenable issues critical Security Center update
On February 17, 2026, Tenable published a security advisory for vulnerabilities in Tenable Security Center, affecting version 6.7.2 and earlier. Stand-alone patches were made available for versions 6.5.1, 6.6.0, and 6.7.2 under SC-202602.1 and SC-202602.2.
GitHub discloses GitHub Enterprise Server vulnerabilities
On February 10, 2026, GitHub published security advisories for vulnerabilities affecting GitHub Enterprise Server release trains 3.14.x through 3.19.x, with patched versions identified for each train.
Red Hat publishes multiple product security advisories
Between February 9 and 15, 2026, Red Hat released security advisories covering vulnerabilities across multiple products, including the Linux kernel, Red Hat Enterprise Linux, and CodeReady Linux Builder.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
7 references tracked. Mallory keeps watching after this page renders.
Splunk security advisory (AV26-147) - Canadian Centre for Cyber Security
cyber.gc.ca
Open sourceGitHub security advisory (AV26-146) - Canadian Centre for Cyber Security
cyber.gc.ca
Open sourceLinux kernel vulnerability CVE-2025-22026
my.f5.com
Open sourceJenkins security advisory (AV26-142) - Canadian Centre for Cyber Security
cyber.gc.ca
Open sourceAtlassian security advisory (AV26-141) - Canadian Centre for Cyber Security
cyber.gc.ca
Open sourceTenable security advisory (AV26-137) - Canadian Centre for Cyber Security
cyber.gc.ca
Open sourceRed Hat security advisory (AV26-135) - Canadian Centre for Cyber Security
cyber.gc.ca
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
Canadian Cyber Centre Advisories Highlight Linux Kernel and Other Vendor Patch Updates
The Canadian Centre for Cyber Security issued multiple advisories urging organizations to apply vendor patches released between **February 16–22, 2026**, including updates addressing **Linux kernel vulnerabilities** impacting **Ubuntu** (16.04 LTS through 25.10) and **Red Hat** platforms (including *RHEL* and related offerings). The advisories emphasize routine but potentially high-impact exposure from unpatched kernel flaws across widely deployed enterprise and server environments, and direct administrators to review upstream vendor notices and deploy the corresponding updates. Separate Cyber Centre advisories also flagged patch requirements outside the Linux kernel: Microsoft released an update for **Microsoft Edge Stable** to remediate vulnerabilities in versions prior to `145.0.3800.70`, IBM published security advisories covering multiple products (including *Aspera Enterprise WebApps*, *Cloud Pak System*, *Storage Defender*, and others), and CISA issued ICS advisories for vulnerabilities across several industrial and IoT/OT products (including **Delta Electronics**, **GE Vernova**, **Honeywell CCTV**, **Siemens Simcenter**, and others) with recommended mitigations and updates where available. A Linux 7.0 release-candidate feature article is not a security advisory and does not materially relate to the patch/vulnerability notices in the other items.
Mar 21, 2026
Canadian Cyber Centre Flags Broad Vendor Patch Wave Across Enterprise and ICS Products
The Canadian Centre for Cyber Security issued a series of advisories highlighting a broad patch wave from major technology vendors, spanning enterprise infrastructure, operating systems, and industrial environments. IBM released updates for products including **AIX**, **MQ**, **QRadar Suite Software**, **Cloud Pak for Security**, multiple **IBM Verify** offerings, and other middleware and cloud components, while Dell published fixes affecting **Avamar Data Store Gen5A**, **Connectrix B-Series FOS and SANnav**, **PowerSwitch E3200-ON Series**, **PowerSwitch Z9664F-ON**, and **Secure Connect Gateway**. Red Hat and Ubuntu also pushed Linux kernel-related updates, with Red Hat covering several **RHEL** and **CodeReady Linux Builder** variants and Ubuntu addressing kernel issues in **Ubuntu 22.04 LTS** and **24.04 LTS**, including NVIDIA-related vulnerabilities referenced in `USN-8060-7` and `USN-8059-8`. Industrial and telecom systems were also affected. CISA advisories cited vulnerabilities across products from **Apeman, Ceragon, Honeywell, Inductive Automation, Lantronix, Siemens,** and **Trane**, impacting industrial control systems, building management platforms, EV chargers, networking devices, and industrial software. Separately, HPE disclosed a **remote buffer overflow** in **HPE Telco Service Orchestrator** affecting versions prior to `v4.2.12` under bulletin `HPESBNW05029` revision 1. The Cyber Centre urged organizations to review vendor guidance, implement recommended mitigations, and apply updates promptly to reduce exposure across both IT and OT environments.
Jun 22, 2026
Early March 2026 Vendor Security Advisories and Patch Releases Across Enterprise, Mobile, and ICS Products
Multiple vendors issued security advisories and patch releases in late February and early March 2026, prompting coordinated update guidance from national and regional CERTs. The Canadian Centre for Cyber Security highlighted updates for **Django** (fixed in `4.2.29`, `5.2.12`, `6.0.3`), **Samsung mobile devices** (March 2026 security update), **Qualcomm** (March 2026 monthly bulletin), **Veeam Kasten for Kubernetes / Kasten K10**, **VMware Tanzu** components (including *Greenplum* and *RabbitMQ on Kubernetes*), and **Red Hat** advisories including **Linux kernel** updates across multiple RHEL-related platforms. Industrial and infrastructure-facing products were also covered via **CISA ICS** advisories spanning a broad set of vendors and solutions (including EV charging ecosystems, building management, cameras, and DCS/SCADA platforms such as **Schneider Electric EcoStruxure Building Operation Workstation** and **Yokogawa CENTUM VP**), with guidance to apply mitigations and updates where available. Additional enterprise patch guidance included **Dell** advisories affecting *PowerStore T* and *PowerEdge* server lines (including AMD-based models and NVIDIA networking/DOCA-related components), and **IBM** advisories across a wide portfolio (including *App Connect Enterprise*, *CICS TX*, *License Metric Tool*, *Maximo*, *Sterling Secure Proxy*, *Terracotta*, *QRadar*, and others). HKCERT separately summarized **Samsung** vulnerabilities impacting Android devices and Exynos chipsets, listing multiple CVEs (e.g., `CVE-2024-31328` and numerous 2025-series CVEs) with potential impacts including **RCE**, **EoP**, **information disclosure**, and **DoS**.
Mar 21, 2026