423 matches found
arches (=8.0.0a1), desktop-django-starter (=0.1.0) +33 more potentially affected by CVE-2026-4277 via django (>=6.0.0 <=6.0.3)
django PYPI version =6.0.0, =2.0.0, =1.1.0, =0.1.0, =0.1.0b2, =0.2.0b1 and more Source cves: CVE-2026-4277 Source advisory: SNYK:PYTHON-DJANGO-15923568...
arches (=8.0.0a1), desktop-django-starter (=0.1.0) +33 more potentially affected by CVE-2026-33034 via django (>=6.0.0 <=6.0.3)
django PYPI version =6.0.0, =2.0.0, =1.1.0, =0.1.0, =0.1.0b2, =0.2.0b1 and more Source cves: CVE-2026-33034 Source advisory: OSV:GHSA-933H-HP56-HF7M...
arches (=8.0.0a1), desktop-django-starter (=0.1.0) +33 more potentially affected by CVE-2026-4277 via django (>=6.0.0 <=6.0.3)
django PYPI version =6.0.0, =2.0.0, =1.1.0, =0.1.0, =0.1.0b2, =0.2.0b1 and more Source cves: CVE-2026-4277 Source advisory: OSV:PYSEC-2026-52...
CVE-2026-31410
CVE-2026-31410 has concrete patch evidence across multiple OSV entries. Root-OS shows Root:Ubuntu-24.04 and Root:Ubuntu-22.04 patched in the rootio-linux package, with multiple fixed versions available. Debian-backed advisories also indicate Linux kernel vulnerabilities including CVE-2026-31410 a...
Malicious code in safeness-sb-new (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9766c02e9c5a79f96104b5089c06ae16b472ff7734284462bd3bfe0fe3c4a687 The package safeness-sb-new was found to contain malicious code...
MAL-2026-1841 Malicious code in safeness-sb-new (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9766c02e9c5a79f96104b5089c06ae16b472ff7734284462bd3bfe0fe3c4a687 The package safeness-sb-new was found to contain malicious code...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005451)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005451 advisory. In the Linux kernel, the following vulnerability has been resolved: shmem: use ramfskillsb for killsb method of ramfs-based tmpfs As the ramfs-based tmpfs uses...
CVE-2026-23238
In the Linux kernel, the following vulnerability has been resolved: romfs: check sbsetblocksize return value romfsfillsuper ignores the return value of sbsetblocksize, which can fail if the requested block size is incompatible with the block device's configuration. This can be triggered by settin...
DEBIAN-CVE-2026-23238
In the Linux kernel, the following vulnerability has been resolved: romfs: check sbsetblocksize return value romfsfillsuper ignores the return value of sbsetblocksize, which can fail if the requested block size is incompatible with the block device's configuration. This can be triggered by settin...
UBUNTU-CVE-2026-23238
In the Linux kernel, the following vulnerability has been resolved: romfs: check sbsetblocksize return value romfsfillsuper ignores the return value of sbsetblocksize, which can fail if the requested block size is incompatible with the block device's configuration. This can be triggered by settin...
CVE-2026-23238
In the Linux kernel, the following vulnerability has been resolved: romfs: check sbsetblocksize return value romfsfillsuper ignores the return value of sbsetblocksize, which can fail if the requested block size is incompatible with the block device's configuration. This can be triggered by settin...
CVE-2025-71230
In the Linux kernel, the following vulnerability has been resolved: hfs: ensure sb-sfsinfo is always cleaned up When hfs was converted to the new mount api a bug was introduced by changing the allocation pattern of sb-sfsinfo. If setupbdevsuper fails after a new superblock has been allocated by...
alertwise (=1.0.0), cjkcms-seo (=2.4.0) +18 more potentially affected by CVE-2026-25517 via wagtail (>=6.0.0 <=6.3.1)
wagtail PYPI version =6.0.0, =6.0.0, =2.1.0, =0.1.1, =1.9.0, =2.8.0, =0.0.9, =0.14.0, =0.6.0, =0.7.0 - wagtail-sb-codefield =0.4.0 - wagtail-sb-fontawesome =0.3.0 and more Source cves: CVE-2026-25517 Source advisory: SNYK:PYTHON-WAGTAIL-15189141...
arches (=8.0.0a1), django-accounts-api (=1.2.5) +24 more potentially affected by CVE-2026-1312 via django (>=6.0.0 <=6.0.1)
django PYPI version =6.0.0, =1.1.0, =0.1.0, =0.1.0b2, =0.1.0, =6.0.0, =0.20.4, =0.22.1 and more Source cves: CVE-2026-1312 Source advisory: SNYK:PYTHON-DJANGO-15198931...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Squashfs: check the return result of sbminblocksize Syzkaller reports a bug named “UBSAN: out-of-bounds access in squashfsbioread”. Syzkaller forks multiple processes. After mounting the Squashfs filesystem, it issues an...
CVE-2025-71065
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid potential deadlock As Jiaming Zhang and syzbot reported, there is potential deadlock in f2fs as below: Chain exists of: &sbi-cprwsem -- fsreclaim -- sbinternal2 Possible unsafe locking scenario: CPU0 CPU1 ----...
CVE-2025-71065
The CVE-2025-71065 entry concerns a deadlock in the Linux kernel’s f2fs subsystem. The provided details describe a four-lock deadlock chain involving: Lock A (fs_reclaim), Lock B (sb_start_intwrite), Lock C (f2fs_lock_op), and Lock D (f2fs_down_write). The root-cause trace shows kswapd and other ...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: md/md-bitmap: corrected the bitmaplimit value for clustermd when writing sb. In clustermd, separate write-intent-bitmaps are used for each cluster node: 0 4k 8k 12k...
Memory Re-orderings as a Timerless Side-channel
Summary Researchers have provided AMD with a paper titled “MEMORY DISORDER: Memory Re-orderings as a Timerless Side-channel” In this work, the authors introduced MEMORY DISORDER, a timerless side-channel attack that exploits memory re-orderings to infer activity on other processes. They showed th...
CVE-2023-40210
Cross-Site Request Forgery CSRF vulnerability in Sean Barton Tortoise IT SB Child List plugin = 4.5 versions...