PT-2026-42373

ydb-go-sdk's transactions are not committed using the options.WithCommit option on last call table.Transaction.Execute in transaction in github.com/ydb-platform/ydb-go-sdk...

Linux Distros Unpatched Vulnerability : CVE-2026-24825

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb contrib/libs/yajl modules. This vulnerability is associated with program...

CVE-2026-24825

Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb contrib/libs/yajl modules. This vulnerability is associated with program files yailtree.C. This issue affects ydb: through 24.4.4.2...

CVE-2026-24825

Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb contrib/libs/yajl modules. This vulnerability is associated with program files yailtree.C. This issue affects ydb: through 24.4.4.2...

CVE-2026-24825

CVE-2026-24825 describes a memory-leak issue in the ydb-platform/ydb stack, linked to the contrib/libs/yajl modules (yail_tree.C). Affected are ydb versions up to 24.4.4.2. The vulnerability is characterized as Missing Release of Memory after Effective Lifetime, with impact described as potential...

CVE-2026-24825 a memory leak in ydb-platform/ydb with use of yajl_tree_parse function from src/yail module, which will cause out-of-memory in server and cause crash.

Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb contrib/libs/yajl modules. This vulnerability is associated with program files yailtree.C. This issue affects ydb: through 24.4.4.2...

CVE-2026-24825

Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb contrib/libs/yajl modules. This vulnerability is associated with program files yailtree.C. This issue affects ydb: through 24.4.4.2...

CVE-2026-24825 a memory leak in ydb-platform/ydb with use of yajl_tree_parse function from src/yail module, which will cause out-of-memory in server and cause crash.

Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb contrib/libs/yajl modules. This vulnerability is associated with program files yailtree.C. This issue affects ydb: through 24.4.4.2...

EUVD-2026-4806

Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb contrib/libs/yajl modules. This vulnerability is associated with program files yailtree.C. This issue affects ydb: through 24.4.4.2...

PT-2026-4900

Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb contrib/libs/yajl modules. This vulnerability is associated with program files yail tree.C. This issue affects ydb: through 24.4.4.2...

EUVD-2023-2791

Malicious code in bioql PyPI...

CVE-2023-45825

ydb-go-sdk is a pure Go native and database/sql driver for the YDB platform. Since ydb-go-sdk v3.48.6 if you use a custom credentials object implementation of interface Credentials it may leak into logs. This happens because this object could be serialized into an error message using...

CVE-2023-45825

CVEs and affected software: The issue affects ydb-go-sdk (Go native and database/sql driver for YDB) in versions from v3.48.6 up to v3.53.2. Root cause and impact: If a custom credentials object (implementing the Credentials interface) is logged via an error message, the object could be serialize...