CVE-2026-39946

OpenBao is an open source identity-based secrets management system. Prior to version 2.5.3, when OpenBao revoked privileges on a role in the PostgreSQL database secrets engine, OpenBao failed to use proper database quoting on schema names provided by PostgreSQL. This could lead to role revocation...

BIT-HARBOR-2022-46463

An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature."...

FreeBSD : ilmbase, openexr -- v2.5.3 is a patch release with various bug/security fixes (b1d6b383-dd51-11ea-a688-7b12871ef3ad)

Cary Phillips reports : v2.5.3 - Patch release with various bug/security fixes ... : - Various sanitizer/fuzz-identified issues related to handling of invalid input C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML databa...

ilmbase, openexr -- v2.5.3 is a patch release with various bug/security fixes

Cary Phillips reports: v2.5.3 - Patch release with various bug/security fixes ...: Various sanitizer/fuzz-identified issues related to handling of invalid input...

Design/Logic Flaw

Torpedo Query before 2.5.3 mishandles the LIKE operator in ConditionBuilder.java, LikeCondition.java, and NotLikeCondition.java...

Sngine v2.5.3 通用型反射XSS漏洞

...

Fedora 23 : php-doctrine-common (2016-8dc0af2c29)

v2.5.3 Bug-fixes - \367: Fix how namespace matching happens in SymfonyFileLocator v2.5.2 Bug-fixes - DCOM-299 383 Silence chmod warnings - DCOM-301 384 Fixed bug with getAllClassNames in subdirectories - DCOM-303 387 Fixed fatal error in AbstractManagerRegistry Improvement - DCOM-289 373 composer...