2493 matches found
GHSA-6R32-H5RG-9M59 vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-6R32-H5RG-9M59 vulnerabilities
Vulnerabilities for packages: chromium...
CVE-2026-9112 vulnerabilities
Vulnerabilities for packages: chromium...
CVE-2026-44705 vulnerabilities
Vulnerabilities for packages: renovate, prism, saf, vitess, opensearch-dashboards, lerna, pulumi...
GHSA-G857-HHFV-J68W vulnerabilities
Vulnerabilities for packages: truffleruby...
CVE-2026-39827 vulnerabilities
Vulnerabilities for packages: spire-server, terragrunt, cert-manager, buildkitd, rancher, gomplate, loki, rootlesskit, zot, zarf, external-secrets-operator, gitlab-runner, gptscript, osv-scanner, teleport, fscrypt, kots, syft, opentelemetry-collector, podman, melange, istio,...
CVE-2026-46595 vulnerabilities
Vulnerabilities for packages: kyverno, gitlab-rails-ce, nemo, rancher-agent, cloudbeat-fips, argo-cd-fips, knative-eventing-fips, helm, traefik-fips, argocd-image-updater-fips, chisel, mattermost, prometheus-fips, snyk-cli, containerd, trivy, kubernetes, kube-state-metrics, kuma, kine,...
CVE-2026-39829 vulnerabilities
Vulnerabilities for packages: terraform-provider-azurerm-fips, cosign, gitlab-rails-ce, kyverno, nemo, docker-cli-buildx-fips, atlantis-fips, rancher-agent, step-kms-plugin, terraform-fips, teleport, cloudbeat-fips, crossplane-provider-azure-resources, cg, guac, apko-fips, argo-cd-fips,...
CVE-2026-46095
In the Linux kernel, the following vulnerability has been resolved: md/md-llbitmap: raise barrier before state machine transition Move the barrier raise operation before calling llbitmapstatemachine in both llbitmapstartwrite and llbitmapstartdiscard. This ensures the barrier is in place before a...
CVE-2026-46086
In the Linux kernel, the following vulnerability has been resolved: net: bridge: use a stable FDB dst snapshot in RCU readers Local FDB entries can be rewritten in place by fdbdeletelocal, which updates f-dst to another port or to NULL while keeping the entry alive. Several bridge RCU readers...
CVE-2026-46083
In the Linux kernel, the following vulnerability has been resolved: spi: fix resource leaks on device setup failure Make sure to call controller cleanup if spisetup fails while registering a device to avoid leaking any resources allocated by setup...
CVE-2026-46060
In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix IRQ cleanup on 6xxx probe failure When adfdevup partially completes and then fails, the IRQ handlers registered during adfisrresourcealloc are not detached before the MSI-X vectors are released. Since the device...
SUSE CVE-2026-48852
PuTTY 0.71 before 0.84 has an assertion failure in ECDSA signature verification...
CVE-2026-46021
In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone governor cleanup issues If thermalzonedeviceregisterwithtrips fails after adding a thermal governor to the thermal zone being registered, the governor is not removed from it as appropriate which ma...
CVE-2026-46002
In the Linux kernel, the following vulnerability has been resolved: ext2: reject inodes with zero inlink and valid mode in ext2iget ext2iget already rejects inodes with inlink == 0 when imode is zero or idtime is set, treating them as deleted. However, the case of inlink == 0 with a non-zero mode...
CVE-2026-45988
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a partially decrypted state - and then get requeued for a retry. Fix this by just discarding the packe...
CVE-2026-45975
In the Linux kernel, the following vulnerability has been resolved: ublk: use READONCE to read struct ublksrvctrlcmd struct ublksrvctrlcmd is part of the iouringsqe, which may lie in userspace-mapped memory. It's racy to access its fields with normal loads, as userspace may write to them...
CVE-2026-45970
In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlbarprecv during bond up/down The ALB RX path may access rxhashtbl concurrently with bond teardown. During rapid bond up/down cycles, rlbdeinitialize frees rxhashtbl while RX handlers are still running,...
CVE-2026-45967
In the Linux kernel, the following vulnerability has been resolved: bpf: Return proper address for non-zero offsets in insn array The mapdirectvalueaddr function of the instruction array map incorrectly adds offset to the resulting address. This is a bug, because later the resolvepseudoldimm64...
CVE-2026-45954
In the Linux kernel, the following vulnerability has been resolved: fbdev: au1200fb: Fix a memory leak in au1200fbdrvprobe In au1200fbdrvprobe, when platformgetirq fails, it directly returns from the function with an error code, which causes a memory leak. Replace it with a goto label to ensure...