openjdk: Enhance Path Factories Redux (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

[SECURITY] Fedora 43 Update: perl-Crypt-PasswdMD5-1.4.3-1.fc43

This package provides MD5-based crypt functions...

[SECURITY] Fedora 44 Update: perl-Crypt-PasswdMD5-1.4.3-1.fc44

This package provides MD5-based crypt functions...

CVE-2026-35563

Unknown description...

CVE-2026-37713

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-al...

CVE-2025-65502

Null pointer dereference in addcacerts in Cesanta Mongoose before...

CVE-2026-34060

Ruby LSP is an implementation of the language server protocol for Ruby...

PT-2026-45490

Summary EntryPoint::FromStr in rattler conda types performs only .trim on the command field before the linker joins it onto the install prefix and writes an executable Python script. A malicious noarch:python package can ship an info/link.json with an entry-point name containing .., /, , or an...

CVE-2026-43513

Improper Handling of Case Sensitivity vulnerability in LockOutRealm in...

CVE-2026-10194

A weakness has been identified in OFFIS DCMTK 3.7.0. This affects the...

CVE-2026-10194

A weakness has been identified in OFFIS DCMTK 3.7.0. This affects the function DcmQueryRetrieveIndexDatabaseHandle::deleteOldestImages of the file dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. Executing a manipulation can lead to heap-based buffer overflow. The attack may be launched...

Weechat -- Multiple vulnerabilities

The Weechat project reports: See links for detail...

CVE-2026-8594

Text::LineFold versions through 2019.001 for Perl duplicate the output based on the number of special break characters. Text::LineFold splits the input string by specific line break characters such as VT, FF and others into segments, but applies the break function to the entire string, not just t...

CVE-2026-25681 affecting package packer for versions less than 1.9.5-14

CVE-2026-25681 affecting package packer for versions less than 1.9.5-14. A patched version of the package is available...

CVE-2026-27136 affecting package kube-vip-cloud-provider for versions less than 0.0.10-6

CVE-2026-27136 affecting package kube-vip-cloud-provider for versions less than 0.0.10-6. A patched version of the package is available...

CVE-2026-27136 affecting package application-gateway-kubernetes-ingress for versions less than 1.7.7-4

CVE-2026-27136 affecting package application-gateway-kubernetes-ingress for versions less than 1.7.7-4. A patched version of the package is available...

CVE-2026-27136 affecting package kubevirt for versions less than 1.7.1-5

CVE-2026-27136 affecting package kubevirt for versions less than 1.7.1-5. A patched version of the package is available...

CVE-2026-42502 affecting package cri-tools for versions less than 1.32.0-6

CVE-2026-42502 affecting package cri-tools for versions less than 1.32.0-6. A patched version of the package is available...

CVE-2026-42506 affecting package cert-manager for versions less than 1.12.15-8

CVE-2026-42506 affecting package cert-manager for versions less than 1.12.15-8. A patched version of the package is available...

CVE-2026-27136 affecting package cert-manager for versions less than 1.12.15-8

CVE-2026-27136 affecting package cert-manager for versions less than 1.12.15-8. A patched version of the package is available...