CVE-2026-39821 affecting package prometheus-process-exporter for versions less than 0.8.2-4

CVE-2026-39821 affecting package prometheus-process-exporter for versions less than 0.8.2-4. A patched version of the package is available...

CVE-2026-44218 ciguard: Container image runs as root (no USER directive)

ciguard is a static security auditor for CI/CD pipelines. From 0.1.0 to 0.8.1, the published ghcr.io/jo-jo98/ciguard container image inherits the default root user because the Dockerfile lacks a USER directive. This vulnerability is fixed in 0.8.2...

AZL-58413 CVE-2025-22870 affecting package prometheus-process-exporter for versions less than 0.8.2-2

Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NOPROXY environment variable is set to ".example.com", a request to "::1%25.example.com:80 will incorrectly match and not be proxied...

libjxl 数字错误漏洞

libjxl is a reference implementation of PEG XL encoder and decoder. A security vulnerability exists in versions of libjxl prior to 0.8.2, which stems from the presence of an integer overflow that can lead to a denial of service...

SUSE CVE-2016-2090

Off-by-one vulnerability in the fgetwln function in libbsd before 0.8.2 allows attackers to have unspecified impact via unknown vectors, which trigger a heap-based buffer overflow...

CVE-2018-15864

Unchecked NULL pointer usage in resolvekeysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created...

xkbcommon null pointer dereference vulnerability (NVD-C-2018-95719)

xkbcommon is a keyboard key mapping compiler and support library. A null pointer dereference vulnerability exists in the 'ExprResolveLhs' function of the xkbcomp/expr.c file in versions of xkbcommon prior to xkbcommon 0.8.2, which can be exploited by a local attacker by submitting a specially...

ALPINE-CVE-2018-15859

Unchecked NULL pointer usage when parsing invalid atoms in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because lookup failures are mishandled...

Null pointer dereference

Unchecked NULL pointer usage in LookupModMask in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file with invalid virtual modifiers...

Null pointer dereference

Unchecked NULL pointer usage in resolvekeysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created...

CVE-2018-15864

Unchecked NULL pointer usage in resolvekeysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created...

PT-2018-13251 · Xkbcommon +5 · Xkbcommon +5

Name of the Vulnerable Software and Affected Versions: xkbcommon versions prior to 0.8.2 Description: The issue is related to unchecked NULL pointer usage in the LookupModMask function in xkbcomp/expr.c. This could be exploited by local attackers to crash the xkbcommon parser by supplying a craft...