4033 matches found
CVE-2026-6757
Invalid pointer in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10...
CVE-2026-6753
Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10...
perl-xml-parser: XML::Parser for Perl: Heap corruption and denial of service from crafted XML input
A flaw was found in XML::Parser for Perl. This vulnerability allows an attacker to cause a heap corruption, which can lead to a denial of service DoS by crashing the application. The issue occurs when the software processes specially crafted XML input, causing an internal buffer to overflow. This...
CVE-2026-33947 affecting package jq for versions less than 1.7.1-5
CVE-2026-33947 affecting package jq for versions less than 1.7.1-5. A patched version of the package is available...
GHSA-29QV-4J9F-FJW5 vulnerabilities
Vulnerabilities for packages: librechat...
SUSE CVE-2026-34232
Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the xdrstatusvector function does not handle the iscargcstring type when decoding an opresponse packet, causing a server crash when one is encountered in the status vector. An...
CVE-2026-5450
Calling the scanf family of functions with a %mc malloc'd character match in the GNU C Library version 2.7 to version 2.43 with a format width specifier with an explicit width greater than 1024 could result in a one byte heap buffer overflow...
GHSA-95MQ-XWJ4-R47P vulnerabilities
Vulnerabilities for packages: dgraph...
CVE-2026-6654
Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero...
CVE-2026-31430
In the Linux kernel, the following vulnerability has been resolved: X.509: Fix out-of-bounds access when parsing extensions Leo reports an out-of-bounds access when parsing a certificate with empty Basic Constraints or Key Usage extension because the first byte of the extension is read before...
firefox: thunderbird: Incorrect boundary conditions in the Graphics: Canvas2D component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the Graphics: Canvas2D component...
ROS-20260420-73-0025
Vulnerability in python-aiohttp related to lack of service data protection. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...
ROS-20260420-73-0002
A vulnerability in the BIOflinebuffer function of the OpenSSL library is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260420-73-0024
Vulnerability in python-aiohttp related to execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
GHSA-QQX8-2XMM-JRV8 vulnerabilities
Vulnerabilities for packages: traefik-fips, traefik, sftpgo...
GHSA-7GW9-CF7V-778F vulnerabilities
Vulnerabilities for packages: open-webui, litellm, nemo...
CVE-2026-40260 vulnerabilities
Vulnerabilities for packages: open-webui, litellm, nemo...
GHSA-6W46-J5RX-G56G vulnerabilities
Vulnerabilities for packages: py3-cassandra-medusa, open-webui...
GHSA-X449-4QCH-5WJQ vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-M6Q7-P4C3-835R vulnerabilities
Vulnerabilities for packages: chromium...