CVE-2026-45570

Technical details beyond the initial description are not present in the connected documents; monitor for updates.

CVE-2026-44972 GuardDog: Unsanitized human-readable scan output allows terminal escape injection from malicious package content

GuardDog is a CLI tool to identify malicious PyPI packages. From 2.6.0 to 2.9.0, GuardDog includes attacker-controlled filenames, file locations, messages, and code snippets in its default human-readable output without escaping terminal control characters. A malicious package can therefore inject...

Security update for redis7

This update for redis7 fixes the following issues CVE-2026-23631: Lua use-after-free via the master-replica synchronization mechanism may lead to remote code execution bsc1264165. CVE-2026-25243: invalid memory access in RESTORE command via a specially crafted serialized payload may lead to remot...

Security update for redis

This update for redis fixes the following issue CVE-2026-25243: invalid memory access in RESTORE command via a specially crafted serialized payload may lead to remote code execution bsc1264166. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

SUSE-SU-2026:2098-1 Security update for redis

This update for redis fixes the following issue - CVE-2026-25243: invalid memory access in RESTORE command via a specially crafted serialized payload may lead to remote code execution bsc1264166...

Security update for redis7

This update for redis7 fixes the following issues CVE-2026-23631: Lua use-after-free via the master-replica synchronization mechanism may lead to remote code execution bsc1264165. CVE-2026-25243: invalid memory access in RESTORE command via a specially crafted serialized payload may lead to remot...

CVE-2026-46064

In the Linux kernel, the following vulnerability has been resolved: ibmasm: fix heap over-read in ibmasmsendi2omessage The ibmasmsendi2omessage function uses getdotcommandsize to compute the byte count for memcpytoio, but this value is derived from user-controlled fields in the dotcommandheader...

CVE-2026-45994

In the Linux kernel, the following vulnerability has been resolved: ibmasm: fix OOB reads in commandfilewrite due to missing size checks The commandfilewrite handler allocates a kernel buffer of exactly count bytes and copies user data into it, but does not validate the buffer against the dot...

CVE-2026-45975

In the Linux kernel, the following vulnerability has been resolved: ublk: use READONCE to read struct ublksrvctrlcmd struct ublksrvctrlcmd is part of the iouringsqe, which may lie in userspace-mapped memory. It's racy to access its fields with normal loads, as userspace may write to them...

UBUNTU-CVE-2026-45979

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: clean up the amdgpucsparserbos In low memory conditions, kmalloc can fail. In such conditions unlock the mutex for a clean exit. We do not need to amdgpubolistput as it's been handled in the amdgpucsparserfini...

UBUNTU-CVE-2026-46064

In the Linux kernel, the following vulnerability has been resolved: ibmasm: fix heap over-read in ibmasmsendi2omessage The ibmasmsendi2omessage function uses getdotcommandsize to compute the byte count for memcpytoio, but this value is derived from user-controlled fields in the dotcommandheader...

UBUNTU-CVE-2026-45994

In the Linux kernel, the following vulnerability has been resolved: ibmasm: fix OOB reads in commandfilewrite due to missing size checks The commandfilewrite handler allocates a kernel buffer of exactly count bytes and copies user data into it, but does not validate the buffer against the dot...

CVE-2026-36044

@pensar/apex = 0.0.58 is vulnerable to OS command injection via the smartenumerate tool. The createSmartEnumerateTool function in src/core/agent/tools.ts constructs a shell command by concatenating unsanitized values from the extensions array and url parameter into a string passed to Node.js...

CVE-2026-36540

Netis AC1200 Router NC21 V4.0.1.4296 is vulnerable to unauthenticated command injection via the /cgi-bin/skkset.cgi endpoint. The password and newpwdconfirm POST parameters are passed directly to the underlying OS shell without sanitization. An attacker can inject arbitrary shell commands by...

CVE-2026-39834 vulnerabilities

Vulnerabilities for packages: k9s, argo-events, crossplane-provider-aws-ec2, terraform-provider-tls, flux-notification-controller, prometheus-operator, rootlesskit, atlantis, neuvector-sigstore-interface, cert-manager, gitlab-kas, cilium, cluster-api-azure-controller, nerdctl,...

CVE-2026-46598 vulnerabilities

Vulnerabilities for packages: opentofu, kubernetes, loki, vitess, podman, prometheus-operator, argo-cd, snyk-cli, prometheus, zot, k3s, spire-server, opentelemetry-collector, kaf, minio, rancher-agent, cert-manager, gitlab-kas, external-dns, buildah, flux, cilium, nerdctl, helm, istio,...

CVE-2026-39828 vulnerabilities

Vulnerabilities for packages: k9s, kubernetes, trivy, loki, trivy-operator, vitess, argocd-image-updater, prometheus-operator, argo-cd, snyk-cli, prometheus, skaffold, zot, k3s, spire-server, opentelemetry-collector, kaf, flux-image-automation-controller, minio, cert-manager, gitlab-kas,...

CVE-2026-39832 vulnerabilities

Vulnerabilities for packages: apko, kots, kubescape-server-fips, k9s-fips, kyverno-fips, gitlab-rails-ce, vault, trufflehog-fips, caddy-fips, cilium, dagger, trivy-fips, pulumi-language-yaml, gitea-fips, pulumi-kubernetes-operator, argo-events, consul-fips, external-secrets-operator-fips, podman,...

CVE-2026-46595 vulnerabilities

Vulnerabilities for packages: kots, kubescape-server-fips, k9s-fips, kyverno-fips, gitlab-rails-ce, drone, cilium, trivy-fips, gitea-fips, external-secrets-operator-fips, knative-kafka-broker-fips, external-dns, minio-fips, nerdctl, mattermost, backup-restore-operator, rancher, zitadel,...

USN-8321-1: Papers vulnerability

It was discovered that Papers incorrectly handled PDF /GoToR actions. If a user were tricked into opening a specially crafted PDF file, an attacker could use this issue to manipulate command lines and possibly execute arbitrary code...