42 matches found
CVE-2026-43168 ocfs2: fix reflink preserve cleanup issue
In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix reflink preserve cleanup issue commit c06c303832ec "ocfs2: fix xattr array entry countedby error" doesn't handle all cases and the cleanup job for preserved xattr entries still has bug: - the 'last' pointer should be...
GHSA-XGP8-3HG3-C2MH vulnerabilities
Vulnerabilities for packages: ztunnel, parseable, deno, berg, linkerd2-proxy, zellij, sqlx, wasmcloud, lychee, zola, rustup, samply, linkerd-network-validator, linkerd2, py3-xet-core, tealdeer, pixi, buck2, uv, cargo-audit, ntpd-rs, linkerd-extension-init, xh, rye, qdrant, shadowsocks-rust,...
GHSA-965H-392X-2MH5 vulnerabilities
Vulnerabilities for packages: ztunnel, parseable, deno, berg, linkerd2-proxy, zellij, sqlx, wasmcloud, lychee, zola, rustup, samply, linkerd-network-validator, linkerd2, py3-xet-core, tealdeer, pixi, buck2, uv, cargo-audit, ntpd-rs, linkerd-extension-init, xh, rye, qdrant, shadowsocks-rust,...
GHSA-XGP8-3HG3-C2MH vulnerabilities
Vulnerabilities for packages: zizmor, ntpd-rs, wasm-pack, asciinema, berg, sentry-cli, wasmtime, xh, linkerd2-proxy, linkerd2, mise, komodo, garage, rye, tealdeer, linkerd-extension-init, kdash, lakekeeper, samply, uv, zola, buck2, ztunnel, linkerd2-cni-plugin, linkerd-network-validator, atuin,...
GHSA-965H-392X-2MH5 vulnerabilities
Vulnerabilities for packages: zizmor, ntpd-rs, wasm-pack, asciinema, berg, sentry-cli, wasmtime, xh, linkerd2-proxy, linkerd2, mise, komodo, garage, rye, tealdeer, linkerd-extension-init, kdash, lakekeeper, samply, uv, zola, buck2, ztunnel, linkerd2-cni-plugin, linkerd-network-validator, atuin,...
MINI-8X86-32FX-24XH
Bulletin has no description...
GHSA-PWJX-QHCG-RVJ4 vulnerabilities
Vulnerabilities for packages: nushell, ztunnel, parseable, zed, deno, berg, linkerd2-proxy, zellij, sqlx, wasmcloud, lychee, zola, rustup, samply, linkerd-network-validator, pgcat, linkerd2, py3-xet-core, tealdeer, pixi, buck2, uv, cargo-audit, oranda, sdp-k8s-injector, ntpd-rs,...
GHSA-PWJX-QHCG-RVJ4 vulnerabilities
Vulnerabilities for packages: zizmor, ntpd-rs, wasm-pack, asciinema, berg, sentry-cli, wasmtime, xh, linkerd2-proxy, linkerd2, mise, komodo, garage, rye, tealdeer, linkerd-extension-init, kdash, samply, uv, zola, buck2, ztunnel, linkerd2-cni-plugin, pgcat, linkerd-network-validator, atuin, deno,...
CVE-2026-31812 vulnerabilities
Vulnerabilities for packages: nushell, vector, parseable, zed, berg, wasmcloud, lychee, zola, samply, py3-xet-core, wash, pixi, uv, cargo-audit, wadm, xh, qdrant, zizmor, sccache...
GHSA-6XVM-J4WR-6V98 vulnerabilities
Vulnerabilities for packages: nushell, vector, parseable, zed, berg, wasmcloud, lychee, zola, samply, py3-xet-core, wash, pixi, uv, cargo-audit, wadm, xh, qdrant, zizmor, sccache...
CVE-2026-31812 vulnerabilities
Vulnerabilities for packages: zizmor, asciinema, berg, vector, xh, komodo, wash, garage, samply, uv, zola, sccache, wasmcloud, wadm, pixi, cargo-audit, fnm, lychee, nushell, zed, qdrant, parseable, py3-xet-core...
GHSA-6XVM-J4WR-6V98 vulnerabilities
Vulnerabilities for packages: zizmor, asciinema, berg, vector, xh, komodo, wash, garage, samply, uv, zola, sccache, wasmcloud, wadm, pixi, cargo-audit, fnm, lychee, nushell, zed, qdrant, parseable, py3-xet-core...
CVE-2026-2663
A security vulnerability has been detected in Alixhan xh-admin-backend up to 1.7.0. This issue affects some unknown processing of the file /frontend-api/system-service/api/system/role/query of the component Database Query Handler. Such manipulation of the argument prop leads to sql injection. It ...
CVE-2026-2663
A security vulnerability has been detected in Alixhan xh-admin-backend up to 1.7.0. This issue affects some unknown processing of the file /frontend-api/system-service/api/system/role/query of the component Database Query Handler. Such manipulation of the argument prop leads to sql injection. It ...
CVE-2026-2663 Alixhan xh-admin-backend Database Query query sql injection
A security vulnerability has been detected in Alixhan xh-admin-backend up to 1.7.0. This issue affects some unknown processing of the file /frontend-api/system-service/api/system/role/query of the component Database Query Handler. Such manipulation of the argument prop leads to sql injection. It ...
CVE-2026-2663
Summary: CVE-2026-2663 affects Alixhan xh-admin-backend v1.0–1.7.0 (unknown exact initial versions) due to vulnerable handling in the Database Query Handler for the endpoint /frontend-api/system-service/api/system/role/query, where argument manipulation enables SQL injection. This reportedly allo...
CVE-2026-2663 Alixhan xh-admin-backend Database Query query sql injection
A security vulnerability has been detected in Alixhan xh-admin-backend up to 1.7.0. This issue affects some unknown processing of the file /frontend-api/system-service/api/system/role/query of the component Database Query Handler. Such manipulation of the argument prop leads to sql injection. It ...
GHSA-R6V5-FH4H-64XC vulnerabilities
Vulnerabilities for packages: nushell, ztunnel, parseable, quiche, zed, berg, deno, rust-analyzer, bat, yazi, linkerd2-proxy, zellij, sqlx, wasmcloud, lychee, zola, mountpoint-s3, samply, cargo-c, starship, py3-xet-core, eza, wash, pixi, topgrade, geckodriver, buck2, uv, cargo-audit, oranda, wadm...
CVE-2026-25727 vulnerabilities
Vulnerabilities for packages: nushell, ztunnel, parseable, quiche, zed, berg, deno, rust-analyzer, bat, yazi, linkerd2-proxy, zellij, sqlx, wasmcloud, lychee, zola, mountpoint-s3, samply, cargo-c, starship, py3-xet-core, eza, wash, pixi, topgrade, geckodriver, buck2, uv, cargo-audit, oranda, wadm...
CVE-2026-25727 vulnerabilities
Vulnerabilities for packages: watchexec, zizmor, wasm-pack, yara-x, jujutsu, berg, sentry-cli, xh, linkerd2-proxy, komodo, rye, wash, kdash, cargo-c, rust-analyzer, typst, samply, uv, yazi, mountpoint-s3, zola, starship, topgrade, buck2, ztunnel, cedar, bat, atuin, eza, deno, sccache, wasmcloud,...