485 matches found
GHSA-HGRR-935X-PQ79 vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2025-6075
If the value passed to os.path.expandvars is user-controlled a performance degradation is possible when expanding environment variables...
CVE-2021-20291 affecting package buildah for versions less than 1.41.4-2
CVE-2021-20291 affecting package buildah for versions less than 1.41.4-2. An upgraded version of the package is available that resolves this issue...
CVE-2025-1118 affecting package grub2 for versions less than 2.06-25
CVE-2025-1118 affecting package grub2 for versions less than 2.06-25. A patched version of the package is available...
CVE-2025-48039 affecting package erlang for versions less than 26.2.5.15-1
CVE-2025-48039 affecting package erlang for versions less than 26.2.5.15-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-58058 affecting package podman for versions less than 5.6.1-2
CVE-2025-58058 affecting package podman for versions less than 5.6.1-2. An upgraded version of the package is available that resolves this issue...
[SECURITY] Fedora 43 Update: yarnpkg-1.22.22-12.fc43
Fast, reliable, and secure dependency management...
CVE-2025-53067
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks ...
thunderbird: firefox: Use-after-free in MediaTrackGraphImpl::GetInstance()
A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in MediaTrackGraphImpl::GetInstance...
GHSA-RWVP-R38J-9RGG vulnerabilities
Vulnerabilities for packages: kots, grype-db, nuclei, cg, filebrowser, trufflehog-fips, mattermost-fips, gptscript, undock, kubescape, chainctl, k9s-fips, trufflehog, gitleaks, mattermost, grype, chezmoi, grype-fips, gotenberg, syft-fips, k9s, wolfictl, zarf, syft...
ROS-20250929-10
Intel processor firmware vulnerability is linked to information disclosure. Exploitation exploitation of the vulnerability could allow an intruder to gain unauthorized access to protected information...
CVE-2025-46152
In PyTorch before 2.7.0, bitwiserightshift produces incorrect output for certain out-of-bounds values of the "other" argument...
CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
CVE-2025-58364 affecting package cups for versions less than 2.4.13-1
CVE-2025-58364 affecting package cups for versions less than 2.4.13-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-1594 vulnerabilities
Vulnerabilities for packages: ffmpeg...
CVE-2025-5917 affecting package libarchive for versions less than 3.7.7-3
CVE-2025-5917 affecting package libarchive for versions less than 3.7.7-3. A patched version of the package is available...
CVE-2025-4598 affecting package kernel for versions less than 6.6.96.2-2
CVE-2025-4598 affecting package kernel for versions less than 6.6.96.2-2. A patched version of the package is available...
CVE-2025-10531
Mitigation bypass in the Web Compatibility: Tooling component. This vulnerability was fixed in Firefox 143 and Thunderbird 143...
USN-7749-1: Cpanel-JSON-XS vulnerability
It was discovered that Cpanel-JSON-XS incorrectly handled parsing certain JSON data. An attacker could possibly use this issue to cause Cpanel-JSON-XS to crash, resulting in a denial of service...
CVE-2023-53181
In the Linux kernel, the following vulnerability has been resolved: dma-buf/dma-resv: Stop leaking on krealloc failure Currently dmaresvgetfences will leak the previously allocated array if the fence iteration got restarted and the kreallocarray fails. Free the old array by hand, and make sure we...