CVE-2026-23231 affecting package kernel for versions less than 6.6.130.1-1

CVE-2026-23231 affecting package kernel for versions less than 6.6.130.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-71233 affecting package kernel for versions less than 6.6.130.1-1

CVE-2025-71233 affecting package kernel for versions less than 6.6.130.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2026-23409 affecting package kernel for versions less than 6.6.130.1-1

CVE-2026-23409 affecting package kernel for versions less than 6.6.130.1-1. A patched version of the package is available...

CVE-2026-4519 affecting package python3 for versions less than 3.12.9-10

CVE-2026-4519 affecting package python3 for versions less than 3.12.9-10. A patched version of the package is available...

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component...

GHSA-2J22-PR5W-6GQ8 vulnerabilities

Vulnerabilities for packages: ruby3.4-rails...

GHSA-W7PP-M8WF-VJ6R vulnerabilities

Vulnerabilities for packages: mitmproxy...

GHSA-P9FM-F462-GGRG vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-rails-ce, ruby3.4-rails...

CVE-2026-3945

An integer overflow vulnerability in the HTTP chunked transfer encoding parser in tinyproxy up to and including version 1.11.3 allows an unauthenticated remote attacker to cause a denial of service DoS. The issue occurs because chunk size values are parsed using strtol without properly validating...

CVE-2026-33985

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched in version 3.24.2...

CVE-2018-25224

Removed by vendor...

CVE-2018-25223

Removed by vendor...

CVE-2017-20229

Removed by vendor...

CVE-2017-20225

TiEmu 2.08 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting inadequate boundary checks on user-supplied input. Attackers can trigger the overflow through command-line arguments passed to the application, leveraging ROP...

CVE-2016-20048

Removed by vendor...

GHSA-X744-4WPC-V9H2 vulnerabilities

Vulnerabilities for packages: nerdctl, zarf, zot, nuclei, newrelic-infrastructure-agent, buildah, goreleaser, opentelemetry-collector-contrib, pulumi, apko, skopeo, buf, traefik, splunk-otel-collector, portieris, grafana, gatekeeper, openfga, opentelemetry-collector, cluster-api, teleport,...

GHSA-C2C7-RCM5-VVQJ vulnerabilities

Vulnerabilities for packages: prism, rancher-api-ui, code-server, opensearch-dashboards, renovate, kubeflow-pipelines, npm, vite, vitess, lerna, saf, tileserver-gl, pulumi, node-gyp, argo-workflows...

GHSA-3V7F-55P6-F55P vulnerabilities

Vulnerabilities for packages: opensearch-dashboards-fips, wazuh-dashboard, graalvm, rancher-api-ui, tileserver-gl-fips, actions-runner, prism, code-server, vitess, pulumi, kubeflow-pipelines, tileserver-gl, node-gyp, saf, renovate, lerna, langfuse-fips, gemini-cli, vite, langfuse, npm,...

GHSA-2QVQ-RJWJ-GVW9 vulnerabilities

Vulnerabilities for packages: prism, opensearch-dashboards-fips, rancher-api-ui, wazuh-dashboard, tileserver-gl, kibana, pelias-api, opensearch-dashboards, lerna, ts-patch, tileserver-gl-fips...

[SECURITY] Fedora 44 Update: rust-reqsign-aws-v4-3.0.0-1.fc44

AWS SigV4 signing implementation for reqsign...