285 matches found
CVE-2026-60090
creationtimestamp| type| source ---|---|--- 2026-07-11 14:26:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqeulm7xao2h 2026-07-11 14:45:02+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqevnii7zw2d 2026-07-11 15:01:00+00:00| seen|...
[SECURITY] Fedora 43 Update: perl-IO-Compress-2.221-1.fc43
This distribution provides a Perl interface to allow reading and writing of compressed data created with the zlib and bzip2 libraries. IO-Compress supports reading and writing of bzip2, RFC 1950, RFC 1951, RFC 1952 i.e. gzip and zip files/buffers. The following modules used to be distributed...
PYSEC-2026-986 Type confusion leading to `CHECK`-failure based denial of service in TensorFlow
Impact The macros that TensorFlow uses for writing assertions e.g., CHECKLT, CHECKGT, etc. have an incorrect logic when comparing sizet and int values. Due to type conversion rules, several of the macros would trigger incorrectly. Patches We have patched the issue in GitHub commit...
ROOT-OS-UBUNTU-2404-CVE-2026-45941 CVE-2026-45941 in rootio-linux - Patched by Root
Root has patched CVE-2026-45941 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
CVE-2026-8926
When asking curl to use a .netrc file to find credentials and at the same time specifying a URL with a usernamewithout a password, like https://[email protected]/, curl could wrongly get and use the password for another user set in the .netrc file for that host if such a one exists and there is no...
CVE-2026-13323
creationtimestamp| type| source ---|---|--- 2026-07-01 12:42:59+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mplk62g7lp2u 2026-07-01 13:02:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpllbepkls2k 2026-07-01 15:31:04+00:00| seen|...
CVE-2026-52913
creationtimestamp| type| source ---|---|--- 2026-07-01 02:46:53+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0812 2026-07-06 06:23:55+00:00| seen| https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities20260706...
CVE-2026-7761
creationtimestamp| type| source ---|---|--- 2026-06-24 08:29:44+00:00| seen| https://bsky.app/profile/suriq.io/post/3moziqqecbx2r 2026-06-24 13:29:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mozzioqcpk2s 2026-06-26 10:15:09+00:00| seen|...
CVE-2026-56382
creationtimestamp| type| source ---|---|--- 2026-06-22 03:00:26+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3motvg3g7qm2x 2026-06-22 03:00:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116791523679077429 2026-07-09 15:11:49+00:00| seen|...
GHSA-45QJ-4XQ3-3C45
creationtimestamp| type| source ---|---|--- 2026-06-12 18:22:18+00:00| seen| https://gist.github.com/sandh0t/45fdee24a7907e0cd836aed26f2d5a7a...
CVE-2026-40999
creationtimestamp| type| source ---|---|--- 2026-06-11 09:22:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnyvmtyfww2y 2026-06-11 10:00:59+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnyxrwqa5y2s 2026-06-11 12:40:07+00:00| seen|...
CVE-2026-8914
creationtimestamp| type| source ---|---|--- 2026-06-05 11:35:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnk2akmdy32f 2026-06-05 11:35:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnk2akmdy32f...
PT-2026-46879
Impact So far, kas checks out and processes repositories regarding configuration includes prior to validating signatures of those repositories. This may allow to replace on original repository with one under the control of an attacker under very specific conditions. First of all, the attacker mus...
Langflow < 1.7.0 CORS Misconfiguration Account Takeover and RCE (CVE-2025-34291)
The version of Langflow installed on the remote host is prior to 1.7.0. It is, therefore, affected by a remote code execution vulnerability: - An overly permissive CORS configuration combined with a refresh token cookie configured as SameSite=None allows a malicious webpage to perform cross-origi...
CVE-2026-8450
creationtimestamp| type| source ---|---|--- 2026-05-27 05:17:43+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmsqxmuwt222 2026-05-27 06:00:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116645011565190190 2026-05-27 06:00:29+00:00| seen|...
Fedora 42 : rust-rpm-sequoia / rust-sequoia-chameleon-gnupg / rust-sequoia-git / etc (2026-8df732be8a)
The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-8df732be8a advisory. Update sequoia-openpgp to version 2.3.0. This includes three security relevant fixes assigned CVE-2026-42783, CVE-2026-42784, and CVE-not-...
Fedify has an LD-Signature Bypass via JSON-LD Named-Graph Restructuring
As told on Discord earlier, multiple projects are affected, and we would like to coordinate. For now, we are aiming at a May 6th release date, but this is not set in stone yet. Summary An attacker can make use of JSON-LD features to restructure a JSON-LD document that would change how Fedify...
Incorrect Behavior Order: Validate Before Canonicalize
Overview @fedify/fedify is an An ActivityPub server framework Affected versions of this package are vulnerable to Incorrect Behavior Order: Validate Before Canonicalize through manipulation of JSON-LD document structure using keywords such as @graph, @included, and @reverse. An attacker can alter...
GHSA-9RFG-V8G9-9367 Fedify has an LD-Signature Bypass via JSON-LD Named-Graph Restructuring
As told on Discord earlier, multiple projects are affected, and we would like to coordinate. For now, we are aiming at a May 6th release date, but this is not set in stone yet. Summary An attacker can make use of JSON-LD features to restructure a JSON-LD document that would change how Fedify...
CVE-2026-47101
creationtimestamp| type| source ---|---|--- 2026-05-21 22:01:09+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmfgadref72q 2026-05-21 22:16:39+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mmfh44f5ca27 2026-05-25 10:00:04+00:00| seen|...