CVE-2026-53143

CVE-2026-53143 affects the Linux kernel DRM/amdkfd path for SDMA queues on GFX11. The v11 MQD manager incorrectly reused the 2048-byte v11_compute_mqd path for SDMA queues, causing a 1536-byte overflow when checkpointing and restoring MQDs (CRIU context). This led to leaking adjacent GTT memory d...

CVE-2026-50129

Mastodon is a free, open-source social network server based on ActivityPub. Prior to 4.5.11, 4.4.18, and 4.3.24, a DoS can be triggered by Uncaught Exception vulerability, due to missing exception handling in the math sanitizer. Malformed nodes can result in a DoS of a whole server or targeted...

CVE-2026-50128

Mastodon is a free, open-source social network server based on ActivityPub. From 4.3.0 until 4.5.11 and 4.4.18, Mastodon has a feature to let websites credit authors of their articles. To prevent false attribution claims, Mastodon uses the attributionDomains JSON-LD term, however, an error in how...

CVE-2026-48793 Jellyfin: Potential FFmpeg argument injection via unescaped subtitle file path

Jellyfin is an open source self hosted media server. Prior to 10.11.10, a potential FFmpeg argument injection vulnerability exists in the subtitle conversion code path. SubtitleEncoder.ConvertTextSubtitleToSrtInternal SubtitleEncoder.cs, line 382 interpolates the subtitle file path into FFmpeg...

EUVD-2026-38779

A cross-site request forgery CSRF vulnerability in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allows attackers to have Jenkins connect to an attacker-specified URL using an attacker-specified username, API key, and service key...

ROOT-OS-DEBIAN-11-CVE-2020-0478 CVE-2020-0478 in rootio-aom - Patched by Root

Root has patched CVE-2020-0478 in the rootio-aom package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2023-6879 CVE-2023-6879 in rootio-aom - Patched by Root

Root has patched CVE-2023-6879 in the rootio-aom package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2026-56208 CVE-2026-56208 in rootio-aom - Patched by Root

Root has patched CVE-2026-56208 in the rootio-aom package for Root:Debian:11. Multiple fixed versions available...

EUVD-2026-38714

The Ultimate Member plugin for WordPress is vulnerable to Account Takeover via Password Reset Link Disclosure in all versions up to and including 2.11.4. This is due to a chain of three logic bugs: 1 an MD5 hash fallback in getdirectorybyhash that allows any post to be used as a member directory ...

EUVD-2026-38684

The WP Latest Posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via crafted image src attributes in post content in versions up to, and including, 5.0.11. This is due to insufficient output escaping in the field and loop functions, which extract the raw src attribute value...

CVE-2026-9620

CVE-2026-9620 concerns the WordPress plugin WP Latest Posts (≤ 5.0.11). It enables a Stored Cross-Site Scripting (XSS) via crafted image src attributes in post content. The root cause is insufficient output escaping in the plugin’s field() and loop() functions, which extract the raw src from img ...

ROOT-OS-DEBIAN-11-CVE-2026-43448 CVE-2026-43448 in rootio-linux - Patched by Root

Root has patched CVE-2026-43448 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2025-21682 CVE-2025-21682 in rootio-linux - Patched by Root

Root has patched CVE-2025-21682 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2025-40107 CVE-2025-40107 in rootio-linux - Patched by Root

Root has patched CVE-2025-40107 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2024-26607 CVE-2024-26607 in rootio-linux - Patched by Root

Root has patched CVE-2024-26607 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2024-53177 CVE-2024-53177 in rootio-linux - Patched by Root

Root has patched CVE-2024-53177 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2022-50068 CVE-2022-50068 in rootio-linux - Patched by Root

Root has patched CVE-2022-50068 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2022-49296 CVE-2022-49296 in rootio-linux - Patched by Root

Root has patched CVE-2022-49296 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2024-39490 CVE-2024-39490 in rootio-linux - Patched by Root

Root has patched CVE-2024-39490 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2025-38676 CVE-2025-38676 in rootio-linux - Patched by Root

Root has patched CVE-2025-38676 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...