603 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-31515
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - afkey: validate families in pfkeysendmigrate syzbot was able to trigger a crash in skbput 1 Issue is that pfkeysendmigrate does not check old/new families, and...
PT-2026-34420
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the pfkey send migrate function where it fails to validate old and new families. This can lead to the family argument in set ipsecrequest being truncated, potentially...
CVE-2026-5358
Removed by vendor...
GHSA-HFVC-G4FC-PQHX vulnerabilities
Vulnerabilities for packages: vitess, witness, prometheus-adapter, weaviate, scorecard, ko, percona-server-mongodb-operator, kubernetes, vault-secrets-webhook, opa, kubernetes-dns-node-cache, kubernetes-csi-external-attacher, pulumi-kubernetes-operator, gatekeeper, istio, ingress-nginx-controller...
CVE-2026-39883 vulnerabilities
Vulnerabilities for packages: kong-ingress-controller-fips, crossplane-provider-azure-purview, cluster-api-azure-controller, kro, nemo, aws-fsx-csi-driver, kube-rbac-proxy, restic, omni, cass-operator, fluent-operator-fips, azcopy-fips, secrets-store-csi-driver-provider-gcp, k8ssandra-client,...
RUSTSEC-2026-0083 zantetsu-trainer is unmaintained
The zantetsu-trainer crate is no longer maintained. The ML training infrastructure it contained was removed as part of the zantetsu 0.2 release, which replaced the neural parser with a pure heuristic engine. A tombstone version 0.2.0 has been published and 0.1.4 has been yanked. There is no...
Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools
This update fixes the following issues: spacecmd: Version 5.2.6-0 Update translation strings uyuni-tools: Version 5.2.5-0 Remove migrate command Remove template script from mgradm: use the one in the image Split the TFTP server into a separate container Explicitly start proxy pods after operation...
filecc (>=0.0.1 <=1.0.1), gm-i18n-migrate (>=2.7.0 <=2.9.0) +3 more potentially affected by unknown CVE via opencc (>=1.0.6 <=1.1.3)
opencc NPM version =1.0.6, =0.0.1, =2.7.0, =2.7.2, =1.0.2, =1.0.5 - wise-paas-notify-utility =1.4.10-s2t1 Source cves: unknown CVE Source advisory: OSV:GHSA-7FQQ-Q52P-2JJG...
SUSE-SU-2026:20838-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues. The following security issues were fixed: - CVE-2025-39753: gfs2: Set .migratefolio in gfs2rgrp,metaaops bsc1249590. - CVE-2025-39964: crypto: afalg - Disallow concurrent writes in afalgsendmsg bsc1251966. -...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005523)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005523 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: fix idatasem unlock order in ext4indmigrate Fuzzing reports a possible deadlock in...
GHSA-9H8M-3FM2-QJRQ vulnerabilities
Vulnerabilities for packages: cluster-api-azure-controller, restic, cass-operator, fluent-operator-fips, azcopy-fips, secrets-store-csi-driver-provider-gcp, prometheus-adapter, etcd, task-fips, tflint, opencost, docker-fips, kyverno-policy-reporter-plugins-kyverno-fips, terragrunt,...
GHSA-9H8M-3FM2-QJRQ vulnerabilities
Vulnerabilities for packages: vitess, witness, prometheus-adapter, weaviate, scorecard, percona-server-mongodb-operator, vault-secrets-webhook, kubernetes-csi-external-attacher, pulumi-kubernetes-operator, gatekeeper, istio, blob-csi, buildkitd, grafana, cloud-provider-vsphere, tfsec, ratify,...
CVE-2026-24051 vulnerabilities
Vulnerabilities for packages: vitess, witness, prometheus-adapter, weaviate, scorecard, percona-server-mongodb-operator, vault-secrets-webhook, kubernetes-csi-external-attacher, pulumi-kubernetes-operator, gatekeeper, istio, blob-csi, buildkitd, grafana, cloud-provider-vsphere, tfsec, ratify,...
Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.26.1 Release.
Red Hat OpenShift Dev Spaces 3.26.1 has been released. 3.26.1 includes CVE fixes for CVE-2025-15467, CVE-2025-6176, CVE-2026-1761, CVE-2026-0719, CVE-2025-61732, and CVE-2025-61726. Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams an...
a2cli (>=0.1.0 <=0.2.1), a2py (>=0.2.1 <=0.2.3) +686 more potentially affected by CVE-2026-25580 via pydantic-ai-slim (>=0.0.26 <=1.55.0)
pydantic-ai-slim PYPI version =0.0.26, =0.1.0, =0.2.1, =0.9.0, =0.1.0, =0.2.15, =0.1.0, =0.0.1.dev1, =0.1.0, =0.0.4, =0.1.0, =0.2.5, =0.1.0, =0.0.3, =1.0.3 and more Source cves: CVE-2026-25580 Source advisory: OSV:GHSA-2JRP-274C-JHV3...
cms-security-poc
CVE-2026-31266 - Craft CMS Missing Authorization CVE Infor...
CVE-2026-23097
In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...
CVE-2026-23097 migrate: correct lock ordering for hugetlb file folios
In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...
CVE-2026-23097
CVE-2026-23097: Linux kernel migrate path deadlock due to incorrect lock ordering between hugetlb folio_lock and i_mmap_rwsem. Specifically migrate_pages -> migrate_hugetlbs -> unmap_and_move_huge_page -> remove_migration_ptes -> __rmap_walk_file() acquires i_mmap_lock_read while anot...
CVE-2026-23097
In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...