4067 matches found
GHSA-R2JR-M2RH-F5HG vulnerabilities
Vulnerabilities for packages: chromium...
CVE-2026-54896 vulnerabilities
Vulnerabilities for packages: ruby3.3-fluentd-kubernetes-daemonset, ruby3.2-fluentd-kubernetes-daemonset, ruby4.0-fluentd-kubernetes-daemonset, ruby3.4-fluentd-kubernetes-daemonset...
CVE-2026-30405 vulnerabilities
Vulnerabilities for packages: kube-vip-fips, kube-vip...
CVE-2026-46604
The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset...
GHSA-52X6-GQ3R-VPF4 vulnerabilities
Vulnerabilities for packages: open-webui...
GHSA-MPWR-8VM7-H73F vulnerabilities
Vulnerabilities for packages: grafana, crossplane-provider-family-azure, nfpm, splunk-otel-collector, telegraf, x509-certificate-exporter, crossplane-provider-azure-authorization, cert-manager, external-secrets-operator, nuclei, goreleaser, crossplane-provider-azure-sql...
CVE-2026-46601 vulnerabilities
Vulnerabilities for packages: mailpit, ollama, gitea, seaweedfs, pdfcpu, kubescape, rclone, mattermost...
CVE-2026-57918
libnfs through 6.0.2 before 935b8db has an xid integer underflow in READIOVEC in rpcreadfromsocket in lib/socket.c during a connection to a crafted NFS server, when the expected pdu size exceeds the absolute pdu size from the xid/record-marker...
perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob
A flaw was found in perl-IO-Compress, a component used for data compression and decompression. A remote attacker could exploit this vulnerability by crafting a malicious input, specifically an output glob, that bypasses the intended security measures. This could lead to the execution of...
GHSA-V6W7-GQ3G-FWVM vulnerabilities
Vulnerabilities for packages: qemu...
GHSA-XQW9-F65G-5QXW vulnerabilities
Vulnerabilities for packages: expat...
GHSA-M2MM-5W64-P8P7 vulnerabilities
Vulnerabilities for packages: expat...
GHSA-FCHF-WVCC-QF9G vulnerabilities
Vulnerabilities for packages: expat...
CVE-2026-6681
The PKCS7 decode path ignores the caller-supplied output buffer size outputSz, allowing decoded content to be written past the bounds of the provided buffer. This affects wolfSSL 5.9.0 and earlier and was fixed in the 5.9.1 release...
CVE-2026-56774
Kanboard through 1.2.52, fixed in commit 928c68a, UserViewController::removeSession fails to validate the session id parameter before passing it to RememberMeSessionModel::remove, allowing authenticated users to delete other users' Remember Me sessions. Attackers can enumerate sequential session...
CVE-2026-42005
An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal web server is disabled by default...
CVE-2026-53201
In the Linux kernel, the following vulnerability has been resolved: Revert "drm/xe: Skip exec queue schedule toggle if queue is idle during suspend" This reverts commit 8533051ce92015e9cc6f75e0d52119b9d91610b6. The idle-skip optimization bypasses GuC suspend, so the GPU may not perform the contex...
CVE-2026-53183
In the Linux kernel, the following vulnerability has been resolved: mptcp: allow subflow rcv wnd to shrink In MPTCP connection, the window field in the TCP header refers to the MPTCP-level rcvnxt and it's right edge should not move backward. Such constraint is enforced at DSS option generation...
CVE-2026-53181
In the Linux kernel, the following vulnerability has been resolved: vsock/vmci: fix skackbacklog leak on failed handshake When vmcitransportrecvconnectingserver returns an error, vmcitransportrecvlisten calls vsockremovepending but never calls skacceptqremoved. This leaves skackbacklog incremente...
CVE-2026-53176
In the Linux kernel, the following vulnerability has been resolved: IB/isert: Reject login PDUs shorter than ISERHEADERSLEN In drivers/infiniband/ulp/isert/ibisert.c, isertloginrecvdone computes the login request payload length as wc-bytelen minus ISERHEADERSLEN with no lower bound, and loginreql...