golang-github-openprinting-ipp-usb security update

0.9.27-4 - rebuild to fix CVE-2025-61729...

CVE-2025-36098

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an authenticated user to cause a denial of service due to improper allocation of resources...

GHSA-RW66-G8V8-WCWH vulnerabilities

Vulnerabilities for packages: chromium...

GHSA-JQ9G-GJ4G-Q8W7 vulnerabilities

Vulnerabilities for packages: chromium...

GHSA-4HF5-R2XH-WQ7Q vulnerabilities

Vulnerabilities for packages: chromium...

GHSA-P5WG-G6QR-C7CG vulnerabilities

Vulnerabilities for packages: vitess, argo-workflows, prism...

GHSA-39VC-R5GW-MF5W vulnerabilities

Vulnerabilities for packages: chromium...

GHSA-FGJ7-39V4-XHP5 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-0905 vulnerabilities

Vulnerabilities for packages: chromium...

EUVD-2025-206565

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic...

CVE-2025-36442

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query with XML columns...

CVE-2025-36366

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service by executing a query that invokes the JSONObject scalar function, which may trigger an unhandled exception leading to abnormal server termination...

CVE-2025-62348

Salt's junos execution module contained an unsafe YAML decode/load usage. A specially crafted YAML payload processed by the junos module could lead to unintended code execution under the context of the Salt process...

CVE-2026-25210

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...

GHSA-XFHX-R7WW-5995 vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines-visualization-server, tensorflow-cpu-jupyter, tensorflow-gpu-jupyter...

GHSA-XM59-RQC7-HHVF vulnerabilities

Vulnerabilities for packages: py3-nbconvert...

SUSE CVE-2026-0818

When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text section of an email that was formatted and styled with HTML and CSS, then the decrypted contents were rendered in a context in which the CSS styles from the outer messages were active. If...

GHSA-WV3H-X6C4-R867 vulnerabilities

Vulnerabilities for packages: keycloak...

GHSA-597G-3PHW-6986 vulnerabilities

Vulnerabilities for packages: py3-cassandra-medusa, request-1276...

CVE-2026-25068

alsa-lib versions 1.2.2 up to and including 1.2.15.2, prior to commit 5f7fe33, contain a heap-based buffer overflow in the topology mixer control decoder. The tplgdecodecontrolmixer1 function reads the numchannels field from untrusted .tplg data and uses it as a loop bound without validating it...