GHSA-47Q9-M4WW-924M vulnerabilities

Vulnerabilities for packages: chainctl-fips, spire-server-fips, kubescape-server-fips, crossplane, spire-server, neuvector-sigstore-interface-fips, tflint, neuvector-sigstore-interface, kubescape, crossplane-fips, ratify-fips, ratify, kyverno-notation-aws, policy-controller-fips, zarf,...

CVE-2026-48702 vulnerabilities

Vulnerabilities for packages: chainctl-fips, spire-server-fips, kubescape-server-fips, crossplane, spire-server, neuvector-sigstore-interface-fips, tflint, neuvector-sigstore-interface, kubescape, crossplane-fips, ratify-fips, ratify, kyverno-notation-aws, policy-controller-fips, zarf,...

CVE-2026-48702 vulnerabilities

Vulnerabilities for packages: teleport, slsa-verifier, ratify, gitsign, spire-server, crossplane, kubescape, zarf, tflint, kyverno, neuvector-sigstore-interface, kyverno-notation-aws...

GHSA-47Q9-M4WW-924M vulnerabilities

Vulnerabilities for packages: teleport, slsa-verifier, ratify, gitsign, spire-server, crossplane, kubescape, zarf, tflint, kyverno, neuvector-sigstore-interface, kyverno-notation-aws...

GHSA-W879-237Q-WC7R vulnerabilities

Vulnerabilities for packages: teleport, nuclei, dagger, kaf, prometheus, neuvector-sigstore-interface, wolfictl, go-discover, crossplane-provider-azure-managedidentity, zarf, kargo, prometheus-operator, step-kms-plugin, telegraf, terragrunt, pulumi-language-java, crossplane-provider-family-azure,...

CVE-2026-53092

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF subsystem. This vulnerability occurs due to incorrect delta tracking when source and destination registers are the same during register value adjustments. This can lead to a mismatch between the BPF verifier's analysis and the actu...

CVE-2026-47775

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, the OAuth2 HTTP filter's encrypt/decrypt functions use AES-256-CBC without an authentication tag no HMAC, no AEAD. The /callback endpoint returns HTTP 302 on...

CVE-2026-53081

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF verifier. This vulnerability occurs due to inconsistent base ID mapping when the regsafe function compares scalar registers with BPFADDCONST values. This inconsistency allows the BPF verifier to incorrectly succeed in state pruning...

CVE-2026-53090

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF verifier. When ldabs,ind instructions are used in BPF subprograms, the verifier fails to correctly simulate the abnormal exit path if packet data loading fails. This oversight could lead to unexpected behavior or bypass of security...

GO-2026-5763 Sigstore Timestamp Authority has Improper Certificate Validation in verifier in github.com/sigstore/timestamp-authority

Sigstore Timestamp Authority has Improper Certificate Validation in verifier in github.com/sigstore/timestamp-authority...

CVE-2026-11999

X.509 trust-chain bypass path-depth exhaustion in the OpenSSL compatibility certificate verifier wolfSSLX509verifycert. This affects only builds with --enable-opensslextra whose application calls X509verifycert with caller-supplied untrusted intermediates; for those users it is critical, otherwis...

EUVD-2026-39496

X.509 trust-chain bypass path-depth exhaustion in the OpenSSL compatibility certificate verifier wolfSSLX509verifycert. This affects only builds with --enable-opensslextra whose application calls X509verifycert with caller-supplied untrusted intermediates; for those users it is critical, otherwis...

EUVD-2026-38958

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix ldabs,ind failure path analysis in subprogs Usage of ldabs,ind instructions got extended into subprogs some time ago via commit 09b28d76eac4 "bpf: Add abnormal return checks.". These are only allowed in subprograms when...

EUVD-2026-38952

In the Linux kernel, the following vulnerability has been resolved: bpf: return VMA snapshot from taskvma iterator Holding the per-VMA lock across the BPF program body creates a lock ordering problem when helpers acquire locks that depend on mmaplock: vmlock - irwsem - mmaplock - vmlock Snapshot...

PT-2026-51986

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the BPF Berkeley Packet Filter verifier regarding linked register delta tracking. When the source register src reg and destination register dst reg are pointers to the...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: bpf: Do not report a verification bug for missing bpfsccvisit calls on speculative execution paths. Syzbot generated a program that triggers a verifierbug call in maybeexitscc. maybeexitscc assumes that, when called for a state...

Astra Linux – Vulnerability in Linux 5.10

The checkaluop function in kernel/bpf/verifier.c in the Linux kernel, as of v5.16-rc5, did not properly update the bounds when handling the mov32 instruction. This issue allows local users to obtain potentially sensitive address information, also known as a “pointer leak.”...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: bpf: Fixed an incorrect scalar handling in the maybeforkscalars function for BPFOR. The maybeforkscalars function is called for both BPFAND and BPFOR when the source operand is a constant. When dst has a signed range of -1, 0, it...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: BPF: The unnecessary user-triggable WARNONCE message in the verifier log was removed. It is trivial for a user to trigger the “verifier log line truncated” warning. The verifier has a fixed-size buffer of 1024 bytes currently...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: bpf: Fixed the overloading of the meaning of MEMUNINIT Lonial reported an issue with the BPF verifier, where the checkmemsizereg function contains the following code: c if !tnumisconstreg-varoff / For unprivileged variable...