2521 matches found
GHSA-W6C6-C85G-MMV6 vulnerabilities
Vulnerabilities for packages: kubescape, aactl, teleport...
GHSA-M578-W5VF-RFCM vulnerabilities
Vulnerabilities for packages: ruby3.2-fluentd-kubernetes-daemonset, ruby3.3-fluentd-kubernetes-daemonset, ruby3.4-fluentd-kubernetes-daemonset...
CVE-2026-30405 vulnerabilities
Vulnerabilities for packages: kube-vip...
CVE-2026-55686
Podman is a tool for managing OCI containers and pods. From 3.0.0 until 5.7.1, running a malicious container image where the WORKDIR path contains a symlink can create a directory or modify ownership on the host filesystem. Modified ownership is less likely to happen as that requires help from an...
CVE-2026-56412 vulnerabilities
Vulnerabilities for packages: expat...
CVE-2026-56411 vulnerabilities
Vulnerabilities for packages: expat...
CVE-2026-56403 vulnerabilities
Vulnerabilities for packages: expat...
GHSA-V3CW-2F3G-F38X vulnerabilities
Vulnerabilities for packages: expat...
CVE-2026-57454
Vim is an open source, command line text editor. From 9.2.0320 until 9.2.0679, a crafted undo or swap file can store a virtual-text property whose offset and length point outside the line's property data. When Vim restores or displays such a line it converts the offset into a pointer and reads th...
CVE-2026-53275
In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Fix use-after-free when processing MLD queries When processing an MLD query, a pointer to the multicast group address is retrieved when initially parsing the packet. This pointer is later dereferenced without being...
CVE-2026-53268
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrackirc: fix possible out-of-bounds read When parsing fails after we've matched the command string we should bail out instead of trying to match a different command. This helper should be deprecated, given...
CVE-2026-53237
In the Linux kernel, the following vulnerability has been resolved: gpio: mvebu: fix NULL pointer dereference in suspend/resume mvebupwmsuspend and mvebupwmresume are called for all GPIO banks during suspend/resume, but not all banks have PWM functionality. GPIO banks without PWM have mvchip-mvpw...
CVE-2026-53216
In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: limit XDP frame size to the RX buffer mvpp2 has short and long BM pools, and short pool buffers can be smaller than PAGESIZE. The XDP path nevertheless initializes every xdpbuff with PAGESIZE as frame size. XDP helper...
CVE-2026-53200
In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: nv: Fix handling of XN0 when !FEATXNX XN has already been extracted from its bitfield position so using FIELDPREP on the mask that clears XN0 is completely broken, having the effect of unconditionally granting execute...
CVE-2026-53131
In the Linux kernel, the following vulnerability has been resolved: netfilter: require Ethernet MAC header before using ethhdr ip6teui64, xtmac, the bitmap:ip,mac, hash:ip,mac, and hash:mac ipset types, and nflogsyslog access ethhdrskb after either assuming that the skb is associated with an...
CVE-2026-55388 vulnerabilities
Vulnerabilities for packages: kibana...
GHSA-J3RV-43J4-C7QM vulnerabilities
Vulnerabilities for packages: apache-tomee, akhq, nacos, request-9047-keycloak-fips, knative-kafka-broker-fips, s3proxy-fips, thingsboard, airbyte-server, geoserver, infinispan, apache-activemq-fips, strimzi-kafka-operator-fips, trino, ontop-fips, kafka-bridge, airbyte-server-fips,...
GHSA-J3RV-43J4-C7QM vulnerabilities
Vulnerabilities for packages: confluent-common-docker, trino, strimzi-kafka-operator, apicurio-registry, infinispan, spdx-tools-java, akhq, thingsboard...
CVE-2026-54512 vulnerabilities
Vulnerabilities for packages: confluent-common-docker, trino, strimzi-kafka-operator, apicurio-registry, infinispan, spdx-tools-java, akhq, thingsboard...
GHSA-WXXX-GVQV-XP7P vulnerabilities
Vulnerabilities for packages: airflow...