3 matches found
CVE-2026-49834
creationtimestamp| type| source ---|---|--- 2026-07-17 19:53:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqujodq3y72b...
CVE-2026-49834 sigstore-go: Multi-log threshold bypass via single compromised log
sigstore-go is a Go library for Sigstore signing and verification. Prior to 1.2.0, a verifier configured with WithTransparencyLogN1 or WithSignedCertificateTimestampsN1 counts verified witnesses per entry or per validation path rather than per log authority, allowing a single compromised...
SUSE CVE-2026-49834
unknown...