111 matches found
ROOT-APP-NPM-CVE-2026-44990 CVE-2026-44990 in @rootio/sanitize-html - Patched by Root
Root has patched CVE-2026-44990 in the @rootio/sanitize-html package for Root:npm. Multiple fixed versions available...
ROOT-APP-NPM-CVE-2026-44001 CVE-2026-44001 in @rootio/vm2 - Patched by Root
Root has patched CVE-2026-44001 in the @rootio/vm2 package for Root:npm. Multiple fixed versions available...
ROOT-APP-NPM-CVE-2022-31129 CVE-2022-31129 in @rootio/moment - Patched by Root
Root has patched CVE-2022-31129 in the @rootio/moment package for Root:npm. Multiple fixed versions available...
CLSA-2026-1779129362 Fix CVE(s): CVE-2026-45186
SECURITY UPDATE: fix quadratic complexity in attribute name collision check - debian/patches/CVE-2026-45186.patch: fix quadratic complexity in attribute name collision check - CVE-2026-45186...
CLSA-2026-1778082886 libssh: Fix of CVE-2026-0966
CVE-2026-0966: avoid 1-byte heap buffer underflow in sshgethexa on NULL/zero-length input...
UBUNTU-CVE-2025-71293
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/ras: Move ras data alloc before bad page check In the rare event if eeprom has only invalid address entries, allocation is skipped, this causes following NULL pointer issue 547.103445 BUG: kernel NULL pointer...
ROOT-OS-DEBIAN-12-CVE-2025-47917 CVE-2025-47917 in rootio-mbedtls - Patched by Root
Root has patched CVE-2025-47917 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
UBUNTU-CVE-2026-31735
In the Linux kernel, the following vulnerability has been resolved: iommupt: Fix short gather if the unmap goes into a large mapping unmap has the odd behavior that it can unmap more than requested if the ending point lands within the middle of a large or contiguous IOPTE. In this case the gather...
EUVD-2026-17715
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is an Undefined Behavior UB condition in IccProfLib/IccIO.cpp caused by an implicit conversion from a negative signed integer to sizet unsigned, which changes the value. Th...
GHSA-9F94-5G5W-GF6R CRL Distribution Point Scope Check Logic Error in AWS-LC
Summary AWS-LC is an open-source, general-purpose cryptographic library. Impact A logic error in CRL distribution point matching in AWS-LC allows a revoked certificate to bypass revocation checks during certificate validation, when the application enables CRL checking and uses partitioned CRLs wi...
CLSA-2026-1771857969 Fix CVE(s): CVE-2025-14087, CVE-2025-14512
SECURITY UPDATE: Buffer underflow in GVariant parser leads to heap corruption - debian/patches/CVE-2025-1408714512.patch: Fix integer overflows in GVariant text format parser when processing input longer than INTMAX - CVE-2025-14087 SECURITY UPDATE: Integer overflow in escapebytestring leads to...
CLSA-2026-1771857684 Fix CVE(s): CVE-2025-14087, CVE-2025-14512
SECURITY UPDATE: Buffer underflow in GVariant parser leads to heap corruption - debian/patches/CVE-2025-1408714512.patch: Fix integer overflows in GVariant text format parser when processing input longer than INTMAX - CVE-2025-14087 SECURITY UPDATE: Integer overflow in escapebytestring leads to...
ROOT-APP-PYPI-CVE-2023-40712 CVE-2023-40712 in rootio-apache-airflow - Patched by Root
Root has patched CVE-2023-40712 in the rootio-apache-airflow package for Root:PyPI. Multiple fixed versions available...
CLSA-2026-1768314331 ruby: Fix of CVE-2025-27221
CVE-2025-27221: fix credential leak by correctly truncating userinfo...
CLSA-2026-1768224570 Fix CVE(s): CVE-2025-1153
SECURITY UPDATE: einfo calls with %F specifier do not always exit - debian/patches/CVE-2025-1153.patch: introduce fatal function that always exits, replacing einfo calls with %F specifier to prevent program continuation after fatal errors - CVE-2025-1153...
CLSA-2025-1766598916 qt5-qt3d: Fix of CVE-2025-11277
CVE-2025-11277: modified last commit's patch and .spec file to correctly apply fix...
CLSA-2025-1765476676 cups: Fix of CVE-2025-58364
CVE-2025-58364: fix unsafe deserialization and validation of printer attributes causing null dereference...
CLSA-2025-1765288864 libpng: Fix of CVE-2025-64505
CVE-2025-64505: fix heap buffer over-read vulnerability in pngdoquantize function...
CLSA-2025-1764771100 Fix CVE(s): CVE-2019-1010180
SECURITY UPDATE: Buffer overflow when ELF section size is invalid - debian/patches/CVE-2019-1010180.patch: Skip processing invalid ELF sections - CVE-2019-1010180...
ROOT-OS-DEBIAN-11-CVE-2022-48623 CVE-2022-48623 in rootio-libcpanel-json-xs-perl - Patched by Root
Root has patched CVE-2022-48623 in the rootio-libcpanel-json-xs-perl package for Root:Debian:11. Multiple fixed versions available...