UBUNTU-CVE-2026-44061

Netatalk 1.5.0 through 4.4.2 uses DES-ECB for authentication with a timing side channel, which allows a remote attacker to recover authentication credentials via timing analysis...

BELL-CVE-2026-43457

Bulletin has no description...

BELL-CVE-2026-43430

Bulletin has no description...

BELL-CVE-2026-43317

Bulletin has no description...

BELL-CVE-2026-43327

Bulletin has no description...

BELL-CVE-2025-71300

Bulletin has no description...

DEBIAN-CVE-2026-45069

Bulletin has no description...

DEBIAN-CVE-2026-45755

Bulletin has no description...

DEBIAN-CVE-2026-45074

Bulletin has no description...

UBUNTU-CVE-2026-47166

Unknown description...

MINI-Q49P-FPXH-J4FQ

Bulletin has no description...

MINI-XHFJ-QH2P-F3PF

Bulletin has no description...

BELL-CVE-2026-43491

Bulletin has no description...

CGA-53VW-7PPX-3W7X

Bulletin has no description...

UBUNTU-CVE-2026-46433

Heap OOB Read in VLAN Decapsulation memmove...

MINI-QRCM-QP25-3J3V

Bulletin has no description...

MINI-98HG-69R9-HW3F

Bulletin has no description...

DEBIAN-CVE-2026-8974

Memory safety bugs present in Firefox ESR 140.10 and Firefox 150. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11,...

UBUNTU-CVE-2026-23557

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

UBUNTU-CVE-2026-23558

The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in parallel with mapping the status pages via XENMEMaddtophysmap. Some of the status pages may then be freed while...