5962 matches found
OPENSUSE-SU-2026:11092-1 libtar-1.2.20-3.1 on GA media
These are all security issues fixed in the libtar-1.2.20-3.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11075-1 docker-stable-24.0.9_ce-18.1 on GA media
These are all security issues fixed in the docker-stable-24.0.9ce-18.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11099-1 python311-python-multipart-0.0.32-1.1 on GA media
These are all security issues fixed in the python311-python-multipart-0.0.32-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11071-1 chromedriver-149.0.7827.155-1.1 on GA media
These are all security issues fixed in the chromedriver-149.0.7827.155-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11061-1 ImageMagick-7.1.2.25-2.1 on GA media
These are all security issues fixed in the ImageMagick-7.1.2.25-2.1 package on the GA media of openSUSE Tumbleweed...
PT-2026-51167
Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.27.1 Description When clients are launched with the non-default /cache:codec:rfx option, the software passes the desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data. However, in the gdi Bitmap...
OPENSUSE-SU-2026:11069-1 squid-7.6-1.1 on GA media
These are all security issues fixed in the squid-7.6-1.1 package on the GA media of openSUSE Tumbleweed...
PT-2026-52060
Name of the Vulnerable Software and Affected Versions Node.js versions 22.x and earlier Node.js versions 24.x and earlier Node.js versions 26.0.0 through 26.3.0 Description An inconsistency in hostname matching can lead to a trust-policy bypass within multi-context mTLS mutual Transport Layer...
alloy-1.17.0-1.1 on GA media (moderate)
alloy-1.17.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:11053-1 Rating: moderate Cross-References: CVE-2026-25680 CVE-2026-25681 CVE-2026-33532 CVE-2026-39821 CVE-2026-39827 CVE-2026-39830 CVE-2026-39831 CVE-2026-39834 CVE-2026-44740 CVE-2026-45678 CVE-2026-45682 CVE-2026-45685...
WordPress WP DSGVO Tools (GDPR) plugin <= 3.1.39 - Missing Authorization to Unauthenticated Sensitive Personal Data Disclosure vulnerability
Missing Authorization to Unauthenticated Sensitive Personal Data Disclosure vulnerability discovered by kalomba - KAPENTEST in WordPress Plugin WP DSGVO Tools GDPR versions = 3.1.39...
OPENSUSE-SU-2026:11058-1 python311-starlette-1.3.1-1.1 on GA media
These are all security issues fixed in the python311-starlette-1.3.1-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11059-1 lemon-3.53.2-2.1 on GA media
These are all security issues fixed in the lemon-3.53.2-2.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11054-1 containerized-data-importer-1.65-api-1.65.0-1.1 on GA media
These are all security issues fixed in the containerized-data-importer-1.65-api-1.65.0-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11060-1 tinyproxy-1.11.3-3.1 on GA media
These are all security issues fixed in the tinyproxy-1.11.3-3.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11052-1 MozillaFirefox-152.0-1.1 on GA media
These are all security issues fixed in the MozillaFirefox-152.0-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:11053-1 alloy-1.17.0-1.1 on GA media
These are all security issues fixed in the alloy-1.17.0-1.1 package on the GA media of openSUSE Tumbleweed...
kernel: md/bitmap: fix GPF in write_page caused by resize race
A flaw was found in the Linux kernel's md/bitmap component. This vulnerability involves a use-after-free race condition that occurs during array resize operations. When the bitmapdaemonwork and bitmapresize functions execute concurrently, they can access memory pages that have already been freed...
CVE-2026-46937
Vulnerability in the Oracle iSetup product of Oracle E-Business Suite component: General Ledger Update Transform, Reports. Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2026-46893
Vulnerability in the JD Edwards EnterpriseOne General Ledger product of Oracle JD Edwards component: E1 Foundation. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via SMB to compromise JD Edwards EnterpriseOne...
Vulnerabilities in Oracle JD Edwards EnterpriseOne
Oracle has identified several vulnerabilities in Oracle JD Edwards EnterpriseOne, including the modules Tools, Accounts Payable, Human Resources Management, General Ledger, Order Promising, and Project Costing, specifically for versions 9.2.0.0 to 9.2.26.2. These vulnerabilities enable attackers ...