2493 matches found
CVE-2026-34183 vulnerabilities
Vulnerabilities for packages: openssl, libcrypto3-2.34...
CVE-2026-46702 vulnerabilities
Vulnerabilities for packages: yazi...
CVE-2026-46340 vulnerabilities
Vulnerabilities for packages: trino, management-api-for-apache-cassandra-5.0, celeborn, thingsboard...
CVE-2026-2049
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...
GHSA-MM53-X3WX-JGR2 vulnerabilities
Vulnerabilities for packages: busybox...
SUSE CVE-2026-34356
Heap-based Buffer Overflow vulnerability in Apache HTTP Server with malicious backend servers and ProxyPassReverseCookie This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...
GHSA-VQC8-7275-Q272 vulnerabilities
Vulnerabilities for packages: nextcloud-server...
CVE-2026-45447
Issue summary: A specially crafted PKCS7 or S/MIME signed message could trigger a use-after-free during PKCS7 signature verification. Impact summary: A use-after-free may result in process crashes, heap corruption, or potentially remote code execution. When processing a PKCS7 or S/MIME signed...
CVE-2026-42766
Issue summary: A specially crafted password-encrypted CMS message can trigger a NULL pointer dereference during CMS decryption. Impact summary: This NULL pointer dereference leads to an application crash and a Denial of Service. The CMS PasswordRecipientInfo.keyDerivationAlgorithm field is define...
CVE-2026-34180
Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a primitive element whose content exceeds 2 gigabytes in length may cause a heap buffer over-read on 64-bit Unix and Unix-like platforms. Impact summary: The heap buffer over-read may crash the application Denial of Service or to...
GHSA-C4WJ-P3M6-6483 vulnerabilities
Vulnerabilities for packages: binutils...
GHSA-X4GW-5CX5-PGMH vulnerabilities
Vulnerabilities for packages: hono, seata, spark-fips, s3proxy, solr, keycloak, pinot, akhq, knative-kafka-broker-fips, flyway-fips, kayenta, apache-nifi, thingsboard, wavefront-proxy, camunda-zeebe, cassandra, opensearch, nuxeo, spark, elasticsearch-fips, infinispan, zookeeper-fips,...
GHSA-J3F5-RW74-G4RV vulnerabilities
Vulnerabilities for packages: gdal...
GHSA-H9RH-5FFH-H669 vulnerabilities
Vulnerabilities for packages: gdal...
CVE-2026-3238
A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. The WINS protocol handlers for certain request types did not properly validate incoming packets, allowing an unauthenticated remote attacker to trigger a NULL pointer dereference and crash the...
ROS-20260608-73-0002
...
SUSE CVE-2026-10943
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
SUSE CVE-2026-22015
unknown...
[SECURITY] Fedora 44 Update: perl-CryptX-0.089-1.fc44
This Perl library provides a cryptography based on LibTomCrypt library...
CVE-2026-9943 vulnerabilities
Vulnerabilities for packages: chromium...