pic-rucio (>=0.0.1 <=2024.10.3.71620) potentially affected by CVE-2026-29090 via rucio (=1.30.5)

rucio PYPI version =1.30.5 is affected by a known vulnerability. The following packages have a transitive dependency on rucio and may be impacted: - pic-rucio =0.0.1, =2024.10.3.71620 Source cves: CVE-2026-29090 Source advisory: SNYK:PYTHON-RUCIO-16635087...

pic-rucio (>=0.0.1 <=2024.10.3.71620) potentially affected by CVE-2026-29080 via rucio (=1.30.5)

rucio PYPI version =1.30.5 is affected by a known vulnerability. The following packages have a transitive dependency on rucio and may be impacted: - pic-rucio =0.0.1, =2024.10.3.71620 Source cves: CVE-2026-29080 Source advisory: OSV:GHSA-VJR5-C9QV-HGM3...

CVE-2026-6231

The bsonvalidate function may return early on specific inputs and incorrectly report success. This behavior could result in skipping validation for BSON data, allowing malformed or invalid UTF-8 sequences to bypass validation and be processed incorrectly. The issue may affect applications that re...

MongoDB C Driver 安全漏洞

The MongoDB C Driver is an open-source client driver developed by MongoDB, designed to connect to and operate MongoDB databases in C-language programs. Versions of the MongoDB C Driver prior to 1.30.5, as well as 2.0.0 and 2.0.1, contain security vulnerabilities. These vulnerabilities stem from t...