ROOT-OS-UBUNTU-2404-CVE-2025-37901 CVE-2025-37901 in rootio-linux - Patched by Root

Root has patched CVE-2025-37901 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

UBUNTU-CVE-2026-56131

libexpat before 2.8.2 lacks handler call depth tracking for calls to X...

UBUNTU-CVE-2026-56210

A heap-buffer-overflow read vulnerability was found in libaom, the ref...

UBUNTU-CVE-2026-52911

security update...

UBUNTU-CVE-2026-9265

Crypt::OpenSSL::PKCS12 versions before 1.96 for Perl permits a heap OO...

DEBIAN-CVE-2026-56210

A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC Scalable Video Coding layer ID control function allows setting a spatiallayerid exceeding the configured number of layers. This causes an out-of-bounds heap rea...

DEBIAN-CVE-2026-12706

A use-after-free vulnerability was found in FFmpeg's RASC video decoder. The decodemove function initializes a read pointer into a decompressed buffer, but a subsequent reallocation of that same buffer during move-table processing leaves the pointer dangling. An attacker could exploit this by...

DEBIAN-CVE-2026-56132

In libexpat before 2.8.2, there is a heap-based buffer overflow in doProlog in xmlparse.c because scaffold backing array reallocation is mishandled when there is data-structure sharing across parsers...

UBUNTU-CVE-2026-48979

PHP Standard Library PSL is set of APIs covering async, collections,...

ROOT-APP-GOBINARY-CVE-2026-33816 CVE-2026-33816 in rootio-github.com/jackc/pgx/v5 - Patched by Root

Root has patched CVE-2026-33816 in the rootio-github.com/jackc/pgx/v5 package for Root:Go. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2025-39957 CVE-2025-39957 in rootio-linux - Patched by Root

Root has patched CVE-2025-39957 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

UBUNTU-CVE-2026-46768

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza...

UBUNTU-CVE-2026-46974

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza...

UBUNTU-CVE-2026-46869

Vulnerability in the MySQL Shell product of Oracle MySQL component: S...

UBUNTU-CVE-2026-12310

Memory safety bug fixed in Thunderbird 152. This vulnerability was fix...

CVE-2026-4367

LibXpm vulnerability CVE-2026-4367: a local user can trigger an out-of-bounds read in xpmNextWord() while parsing XPM images, potentially crashing the process and causing DoS. Concrete details across connected docs show the flaw resides in libXpm, with impact limited to availability (I) and no co...

DEBIAN-CVE-2026-12295

Sandbox escape in the DOM: Navigation component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbird 152, and Thunderbird 140.12...

CVE-2026-12325

CVE-2026-12325 is a denial-of-service vulnerability in the Graphics: ImageLib component. Affected products include Mozilla Firefox and Thunderbird; root cause and impact are described as DoS in ImageLib. The vulnerability is fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbir...

UBUNTU-CVE-2025-55648

Unknown description...

UBUNTU-CVE-2026-6986

A security vulnerability has been detected in Cesanta Mongoose up to 7...