5 matches found
Security Bulletin: IBM Maximo Scheduler Optimizer uses minimatch-3.1.2.tgz which is vulnerable to CVE-2026-26996, CVE-2026-27903, CVE-2026-27904
Summary IBM Maximo Scheduler Optimizer uses minimatch-3.1.2.tgz which is vulnerable to CVE-2026-26996, CVE-2026-27903, CVE-2026-27904. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-26996 DESCRIPTION: minimatch is a minimal...
Security update for cockpit-repos (important)
openSUSE security update: security update for cockpit-repos ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20464-1 Rating: important References: bsc1258637 Cross-References: CVE-2026-26996 CVSS scores: CVE-2026-26996 SUSE : 7.5...
OPENSUSE-SU-2026:20469-1 Security update for cockpit-packages
This update for cockpit-packages fixes the following issue: Update cockpit-packages to version 4: - CVE-2026-26996: minimatch: ReDoS when glob pattern contains many consecutive wildcards followed by a literal character that doesn't appear in the test string bsc1258641. Changes for cockpit-package...
CVE-2026-26996 vulnerabilities
Vulnerabilities for packages: eslint, py3-jupyterlab, semaphore, gitlab-rails-ce-fips, pulumi, tileserver-gl-fips, opentelemetry-auto-instrumentations-node, npm, wazuh-dashboard-fips, foxx-cli, py3-captum, node-gyp, serve, pnpm-stage0, sqlpad, kubeflow-pipelines, authentik-fips, authentik,...
-tompan-reacttemplate (>=1.0.1 <=1.1.0), 02.aula (=1.0.0) +55728 more potentially affected by CVE-2026-26996 via minimatch (>=3.0.0 <=3.1.2)
minimatch NPM version =3.0.0, =1.0.1, =1.1.0 - 02.aula =1.0.0 - 0726react =0.1.1 - 08cms =1.0.0 - 0x0.icu.anima =0.1.0 - 0xgank-tea-advice-pull =1.0.0 - 0xgank-tea-balance-pencil =1.0.0 - 0xgank-tea-brick-bell =1.0.0 - 0xgank-tea-cake-victory =1.0.0 - 0xgank-tea-central-compound =1.0.0 -...