4864 matches found
MINI-V7F8-X977-28XM
Bulletin has no description...
MINI-X9F2-M454-3P99
Bulletin has no description...
MINI-GX2C-X46M-JX7H
Bulletin has no description...
MINI-G9X3-76MQ-MV9P
Bulletin has no description...
CGA-X224-C7X5-2R35
Bulletin has no description...
DEBIAN-CVE-2026-61866
ImageMagick before 7.1.2-26 contains a memory leak vulnerability in the JNG encoder when a blob cannot be opened. Attackers can trigger the memory leak by providing malformed JNG files that fail blob operations, causing resource exhaustion...
MINI-M493-9V8H-Q24H
Bulletin has no description...
MINI-823C-RJPR-RM4X
Bulletin has no description...
MINI-PCCF-XW2G-38J7
Bulletin has no description...
MINI-R6CV-95Q4-C2Q2
Bulletin has no description...
RHSA-2026:39302 Red Hat Security Advisory: cups security update
Bulletin has no description...
RHSA-2026:39296 Red Hat Security Advisory: libinput security update
Bulletin has no description...
RHSA-2026:39115 Red Hat Security Advisory: evince security update
Bulletin has no description...
DEBIAN-CVE-2026-46640
Twig is a template language for PHP. From 3.15.0 until 3.26.0, self. and import-alias dynamic attribute syntax can concatenate an attacker-controlled string into a MacroReferenceExpression name without identifier validation, causing raw PHP to be emitted into the generated template source and...
DEBIAN-CVE-2026-46633
Twig is a template language for PHP. Prior to 3.26.0, Compiler::string does not escape single quotes when a template name from a % use % tag is placed inside a PHP single-quoted string literal, allowing a crafted template name to terminate the string and inject arbitrary PHP expressions into the...
DEBIAN-CVE-2026-46629
Twig is a template language for PHP. Prior to 3.26.0, twig/intl-extra memoises IntlDateFormatter and NumberFormatter instances in arrays keyed by template-controlled filter arguments such as locale, pattern, and attrs, allowing a template to allocate many ICU formatter objects that remain pinned...
DEBIAN-CVE-2026-48784
Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to 5.4.53, 6.4.41, 7.4.13, and 8.0.13, UrlGenerator::doGenerate used strtr dot-segment encoding that skipped every other chained ../ or ./ segment, allowing attacker-controlled route parameters...
DEBIAN-CVE-2026-48489
Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to 5.4.53, 6.4.41, 7.4.13, and 8.0.13, DefaultAuthenticationFailureHandler honored the request-supplied failurepath parameter when failureforward: true was enabled, allowing an unauthenticated...
DEBIAN-CVE-2026-45071
Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to 5.4.52, 6.4.40, 7.4.12, and 8.0.12, Crawler::addXmlContent set DOMDocument::$validateOnParse = true before loadXML, re-enabling external entity resolution and allowing attacker-supplied XML ...
DEBIAN-CVE-2026-45072
Symfony is a PHP framework for web and console applications and a set of reusable PHP components. From 6.4.24 until 6.4.40, 7.4.12, and 8.0.12, the development profiler fileexcerpt Twig filter escapes PHP files through highlightstring but interpolates lines from non-PHP files directly into...