CVE-2026-40494

SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 45d48d1f2e8e0d73e80bc1fd5310cb57f4547302, the TGA codec's RLE decoder in tga.c has an asymmetric bounds check vulnerability. The run-packet path line 297 correctl...

January 13, 2026—KB5073450 (OS Build 25398.2092)

January 13, 2026—KB5073450 OS Build 25398.2092 This cumulative update for Windows Server, version 23H2 KB5073450, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security...

CVE-2024-39314 toy-blog administrative token leaked through the command line parameter

toy-blog is a headless content management system implementation. Starting in version 0.4.3 and prior to version 0.5.0, the administrative password was leaked through the command line parameter. The problem was patched in version 0.5.0. As a workaround, pass --read-bearer-token-from-stdin to the...

virt-v2v security, bug fix, and enhancement update

2.0.7-6.0.1 - Replaced bugzilla.oracle.com references Orabug: 34202300 - replaced upstream references Orabug:34089586 1:2.0.7-6 - Install qemu-ga package during conversion resolves: rhbz2028764 1:2.0.7-5 - Remove LVM2 devices file during conversion resolves: rhbz2112801 - Add support for Zstandar...

SUSE-SU-2021:3814-1 Security update for python-Pygments

This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input bsc1184812...

openSUSE Security Update : irssi (openSUSE-2021-587)

This update for irssi fixes the following issues : irssi was updated to 1.2.3 boo1184848 - Fix the compilation of utf8proc 1021 - Fix wrong call to free. By Zero King 1076 - Fix a colour reset in true colour themes when encountering mIRC colours 1059 - Fix memory leak on malformed CAP requests 11...

Updated kernel packages fix security issues and possible filesystem corruption

This kernel update is based on upstream 5.10.20 and fixes at least the following security issues: A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRMIOCTLNOUVEAUCHANNELALLOC. This flaw...

openSUSE Security Update : the Linux Kernel (openSUSE-2020-1901)

The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2020-25668: Fixed concurrency use-after-free in confontop bnc1178123. - CVE-2020-25656: Fixed race condition in kbd code bnc1177766. - CVE-2020-25285: A race conditio...

SUSE-SU-2019:0228-1 Security update for uriparser

This update for uriparser fixes the following issues: Security issues fixed: - CVE-2018-20721: Fixed an out-of-bounds read for incomplete URIs with IPv6 addresses with embedded IPv4 address bsc1122193. - CVE-2018-19198: Fixed an out-of-bounds write that was possible via the uriComposeQuery or...