4467 matches found
DEBIAN-CVE-2026-55379
Pillow is a Python imaging library. Prior to 12.3.0, PIL/BdfFontFile.py bdfchar read the BBX width and height field from a BDF font file and passed attacker-controlled dimensions to Image.new without calling Image.decompressionbombcheck, bypassing Pillow's documented decompression bomb protection...
DEBIAN-CVE-2026-13122
OpenVPN version 2.6.0 through 2.6.20 and 2.7alpha1 through 2.7.4 allows remote attackers to cause a denial of service via a malformed authentication token that triggers a reachable assertion when external-auth is enabled...
BELL-CVE-2026-53336
Bulletin has no description...
BELL-CVE-2026-53335
Bulletin has no description...
MINI-4CRM-R2RM-FFPR
Bulletin has no description...
DEBIAN-CVE-2026-10536
A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...
MINI-VQ3X-VX25-RV39
Bulletin has no description...
DEBIAN-CVE-2026-11771
Bulletin has no description...
MINI-5H5G-6G95-P5W6
Bulletin has no description...
MINI-4FX3-46R7-9RWX
Bulletin has no description...
MINI-C55F-R88F-28RP
Bulletin has no description...
BELL-CVE-2026-11586
Bulletin has no description...
DEBIAN-CVE-2026-54887
Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...
DEBIAN-CVE-2026-54891
Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in Erlang/OTP ssl tlsgenconnection module allows a network-positioned attacker to inject unauthenticated plaintext that the TLS client application later treats as authenticated server data. The...
MINI-535M-C8PH-V5PX
Bulletin has no description...
CGA-9F2F-GX28-G784
Bulletin has no description...
RHSA-2026:34476 Red Hat Security Advisory: vim security update
Bulletin has no description...
BELL-CVE-2026-53354
Bulletin has no description...
BELL-CVE-2026-53331
Bulletin has no description...
BELL-CVE-2026-53327
Bulletin has no description...