RHSA-2026:6191 Red Hat Security Advisory: container-tools:rhel8 security update

Bulletin has no description...

Ransomware in 2025: Blending in is the strategy

Ransomware attacks aren't smash-and-grab anymore. They're built on access that already looks legitimate -- closer to positioning chess pieces than breaking the door down. That's the big trend that comes through in the ransomware data from the Talos 2025 Year in Review. Once attackers have initial...

CVE-2026-33762 vulnerabilities

Vulnerabilities for packages: pulumi, argocd-image-updater, nuclei, pulumi-language-java, gitaly, rancher-fleet, kyverno, pulumi-kubernetes-operator, flux, xeol, snyk-cli, steampipe, trivy, gomplate, melange, chezmoi, kubescape, gptscript, pulumi-language-yaml, trivy-operator, trufflehog,...

[SECURITY] Fedora 44 Update: xen-4.21.1-1.fc44

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 44 Update: bind-9.18.47-1.fc44

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

PT-2026-29398

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a defect in LUT dump/iteration logic affecting CIccCLUT::Iterate and output produced by CIccMBB::Describe via CLUT dumping. This issue has been patched in version 2.3.1....

Claude SDK for Python 安全漏洞

Claude SDK for Python is an open-source Python software development toolkit developed by Anthropic for calling the Claude API. Versions of Claude SDK for Python prior to 0.87.0 contained a security vulnerability. This vulnerability stemmed from improper file permission settings created by memory...

Linux Distros Unpatched Vulnerability : CVE-2025-66037

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzzpkcs15reader harness causes OpenSC to...

CVE-2025-66215

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

CVE-2025-49010

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

Wave Browser Brings Gaming Tools and Ocean Cleanup into the Same Tab

Wave Browser for gaming: built for multitasking, streaming, and tabs, with tools for gamers plus ocean cleanup support tied to everyday browsing activity...

crewai-geolocate (=0.1.0) potentially affected by CVE-2026-2286 via crewai-tools (=1.11.0)

crewai-tools PYPI version =1.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on crewai-tools and may be impacted: - crewai-geolocate =0.1.0 Source cves: CVE-2026-2286 Source advisory: SNYK:PYTHON-CREWAITOOLS-15922658...

Server-side Request Forgery (SSRF)

Overview crewai-tools is a Set of tools for the crewAI framework Affected versions of this package are vulnerable to Server-side Request Forgery SSRF due to the RAG search tools not properly validating user-supplied URLs at runtime. An attacker can access internal or cloud resources by supplying...

crewai-geolocate (=0.1.0) potentially affected by CVE-2026-2287 via crewai-tools (=1.11.0)

crewai-tools PYPI version =1.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on crewai-tools and may be impacted: - crewai-geolocate =0.1.0 Source cves: CVE-2026-2287 Source advisory: SNYK:PYTHON-CREWAITOOLS-15922651...

crewai-geolocate (=0.1.0) potentially affected by CVE-2026-2275 via crewai-tools (=1.11.0)

crewai-tools PYPI version =1.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on crewai-tools and may be impacted: - crewai-geolocate =0.1.0 Source cves: CVE-2026-2275 Source advisory: SNYK:PYTHON-CREWAITOOLS-15922544...

Exposed Dangerous Method or Function

Overview crewai-tools is a Set of tools for the crewAI framework Affected versions of this package are vulnerable to Exposed Dangerous Method or Function via the CodeInterpreter tool that fallbacks to SandboxPython when Docker is unreachable. An attacker can execute arbitrary code by invoking...

agentic-ai-vass-tools (>=0.1.0 <=0.4.0), agenticos (>=0.0.1 <=0.0.3.155020) +24 more potentially affected by CVE-2026-2285 via crewai-tools (>=0.12.1 <=1.11.0)

crewai-tools PYPI version =0.12.1, =0.1.0, =0.0.1, =0.2.0, =0.1.7, =0.2.6, =0.1.0, =0.5.42, =0.74.0, =0.0.6, =0.0.2, =0.1.0.dev7, =0.1.1.dev6 and more Source cves: CVE-2026-2285 Source advisory: SNYK:PYTHON-CREWAITOOLS-15922426...

CVE-2025-66215 OpenSC: Stack-buffer-overflow WRITE in card-oberthur

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

CVE-2025-66215 OpenSC: Stack-buffer-overflow WRITE in card-oberthur

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

EUVD-2025-209124

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...