Search CVE reports

251 – 260 of 27004 results

Detailed view

Sort by:

Status is adjusted based on your filters.

CVE-2026-44309

Medium priority

Needs evaluation

Gitsign is a keyless Sigstore to signing tool for Git commits with your a GitHub / OIDC identity. Prior to 0.16.0, gitsign verify and gitsign verify-tag re-encode commit/tag objects through go-git's EncodeWithoutSignature before...

1 affected package

gitsign

Package	26.04 LTS
gitsign	Needs evaluation

CVE-2026-45803

Medium priority

Needs evaluation

`gh` is GitHub’s official command line tool. From 1.6.0 to before 2.92.0, a security vulnerability has been identified in GitHub CLI that could allow terminal escape sequence injection when users view GitHub Actions workflow logs...

1 affected package

Package	26.04 LTS
gh	Needs evaluation

CVE-2026-8669

Medium priority

Needs evaluation

Imager versions through 1.030 for Perl allow a heap out of bounds (OOB) write on crafted multi-frame GIF files. Imager::File::GIF's i_readgif_multi_low allocates a single per-row buffer GifRow sized for the GIF's global screen...

1 affected package

libimager-perl

Package	26.04 LTS
libimager-perl	Needs evaluation

CVE-2026-46483

Medium priority

Needs evaluation

Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tar#Vimuntar() in runtime/autoload/tar.vim when decompressing .tgz archives on Unix-like systems. The function builds...

1 affected package

vim

Package	26.04 LTS
vim	Needs evaluation

CVE-2026-45736

Medium priority

Needs evaluation

ws is an open source WebSocket client and server for Node.js. Prior to 8.20.1, the websocket.close() implementation is vulnerable to uninitialized memory disclosure when a TypedArray is passed as the reason argument....

1 affected package

node-ws

Package	26.04 LTS
node-ws	Needs evaluation

CVE-2026-34253

Medium priority

Needs evaluation

A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in remote.c. This vulnerability occurs in the remote control functionality when processing...

1 affected package

vorbis-tools

Package	26.04 LTS
vorbis-tools	Needs evaluation

CVE-2026-46333

High priority

Vulnerable

In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' logic The 'dumpability' of a task is fundamentally about the memory image of the task - the concept comes from whether it...

161 affected packages

linux, linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11...

Package	26.04 LTS
linux	Vulnerable
linux-hwe	Not in release
linux-hwe-5.4	Not in release
linux-hwe-5.8	Not in release
linux-hwe-5.11	Not in release
linux-hwe-5.13	Not in release
linux-hwe-5.15	Not in release
linux-hwe-5.19	Not in release
linux-hwe-6.2	Not in release
linux-hwe-6.5	Not in release
linux-hwe-6.8	Not in release
linux-hwe-6.11	Not in release
linux-hwe-6.14	Not in release
linux-hwe-6.17	Not in release
linux-hwe-edge	Not in release
linux-lts-xenial	Not in release
linux-kvm	Not in release
linux-allwinner-5.19	Not in release
linux-aws-5.0	Not in release
linux-aws-5.3	Not in release
linux-aws-5.4	Not in release
linux-aws-5.8	Not in release
linux-aws-5.11	Not in release
linux-aws-5.13	Not in release
linux-aws-5.15	Not in release
linux-aws-5.19	Not in release
linux-aws-6.2	Not in release
linux-aws-6.5	Not in release
linux-aws-6.8	Not in release
linux-aws-6.14	Not in release
linux-aws-6.17	Not in release
linux-aws-hwe	Not in release
linux-azure-4.15	Not in release
linux-azure-5.3	Not in release
linux-azure-5.4	Not in release
linux-azure-5.8	Not in release
linux-azure-5.11	Not in release
linux-azure-5.13	Not in release
linux-azure-5.15	Not in release
linux-azure-5.19	Not in release
linux-azure-6.2	Not in release
linux-azure-6.5	Not in release
linux-azure-6.8	Not in release
linux-azure-6.11	Not in release
linux-azure-6.14	Not in release
linux-azure-6.17	Not in release
linux-azure-fde-5.15	Not in release
linux-azure-fde-5.19	Not in release
linux-azure-fde-6.2	Not in release
linux-azure-fde-6.8	Not in release
linux-azure-fde-6.14	Not in release
linux-azure-fde-6.17	Not in release
linux-azure-nvidia	Not in release
linux-azure-nvidia-6.14	Not in release
linux-bluefield	Not in release
linux-azure-edge	Not in release
linux-fips	Not in release
linux-aws-fips	Not in release
linux-azure-fips	Not in release
linux-gcp-fips	Not in release
linux-gcp-4.15	Not in release
linux-gcp-5.3	Not in release
linux-gcp-5.4	Not in release
linux-gcp-5.8	Not in release
linux-gcp-5.11	Not in release
linux-gcp-5.13	Not in release
linux-gcp-5.15	Not in release
linux-gcp-5.19	Not in release
linux-gcp-6.2	Not in release
linux-gcp-6.5	Not in release
linux-gcp-6.8	Not in release
linux-gcp-6.11	Not in release
linux-gcp-6.14	Not in release
linux-gcp-6.17	Not in release
linux-gke	Not in release
linux-gke-4.15	Not in release
linux-gke-5.4	Not in release
linux-gke-5.15	Not in release
linux-gkeop	Not in release
linux-gkeop-5.4	Not in release
linux-gkeop-5.15	Not in release
linux-ibm	Vulnerable
linux-ibm-5.4	Not in release
linux-ibm-5.15	Not in release
linux-ibm-6.8	Not in release
linux-intel-5.13	Not in release
linux-intel-iotg	Not in release
linux-intel-iotg-5.15	Not in release
linux-iot	Not in release
linux-intel-iot-realtime	Not in release
linux-lowlatency	Not in release
linux-lowlatency-hwe-5.15	Not in release
linux-lowlatency-hwe-5.19	Not in release
linux-lowlatency-hwe-6.2	Not in release
linux-lowlatency-hwe-6.5	Not in release
linux-lowlatency-hwe-6.8	Not in release
linux-lowlatency-hwe-6.11	Not in release
linux-nvidia	Vulnerable
linux-nvidia-6.2	Not in release
linux-nvidia-6.5	Not in release
linux-nvidia-6.8	Not in release
linux-nvidia-6.11	Not in release
linux-nvidia-lowlatency	Not in release
linux-nvidia-tegra	Not in release
linux-nvidia-tegra-5.15	Not in release
linux-nvidia-tegra-igx	Not in release
linux-oracle-5.0	Not in release
linux-oracle-5.3	Not in release
linux-oracle-5.4	Not in release
linux-oracle-5.8	Not in release
linux-oracle-5.11	Not in release
linux-oracle-5.13	Not in release
linux-oracle-5.15	Not in release
linux-oracle-6.5	Not in release
linux-oracle-6.8	Not in release
linux-oracle-6.14	Not in release
linux-oracle-6.17	Not in release
linux-oem	Not in release
linux-oem-5.6	Not in release
linux-oem-5.10	Not in release
linux-oem-5.13	Not in release
linux-oem-5.14	Not in release
linux-oem-5.17	Not in release
linux-oem-6.0	Not in release
linux-oem-6.1	Not in release
linux-oem-6.5	Not in release
linux-oem-6.8	Not in release
linux-oem-6.11	Not in release
linux-oem-6.14	Not in release
linux-oem-6.17	Not in release
linux-raspi2	Not in release
linux-raspi-5.4	Not in release
linux-raspi-realtime	Not in release
linux-realtime-6.8	Not in release
linux-realtime-6.14	Not in release
linux-riscv	Vulnerable
linux-riscv-5.8	Not in release
linux-riscv-5.11	Not in release
linux-riscv-5.15	Not in release
linux-riscv-5.19	Not in release
linux-riscv-6.5	Not in release
linux-riscv-6.8	Not in release
linux-riscv-6.14	Not in release
linux-riscv-6.17	Not in release
linux-starfive-5.19	Not in release
linux-starfive-6.2	Not in release
linux-starfive-6.5	Not in release
linux-xilinx	Not in release
linux-xilinx-zynqmp	Not in release
linux-realtime-6.17	Not in release
linux-aws	Vulnerable
linux-azure	Vulnerable
linux-azure-fde	Vulnerable
linux-gcp	Vulnerable
linux-oracle	Vulnerable
linux-raspi	Vulnerable
linux-realtime	Vulnerable
linux-nvidia-6.17	Not in release
linux-nvidia-bos	Not in release
linux-nvidia-bos-7.0	Not in release
linux-nvidia-7.0	Not in release

CVE-2026-8503

Medium priority

Needs evaluation

Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids. Apache::Session::Generate::SHA256 generated session ids insecurely. The default session id generator returns a SHA-256 hash of the...

1 affected package

libapache-session-browseable-perl

Package	26.04 LTS
libapache-session-browseable-perl	Needs evaluation

CVE-2026-43490

Medium priority

Vulnerable

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate inherited ACE SID length smb_inherit_dacl() walks the parent directory DACL loaded from the security descriptor xattr. It verifies that each ACE...

161 affected packages

linux, linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11...

Package	26.04 LTS
linux	Vulnerable
linux-hwe	Not in release
linux-hwe-5.4	Not in release
linux-hwe-5.8	Not in release
linux-hwe-5.11	Not in release
linux-hwe-5.13	Not in release
linux-hwe-5.15	Not in release
linux-hwe-5.19	Not in release
linux-hwe-6.2	Not in release
linux-hwe-6.5	Not in release
linux-hwe-6.8	Not in release
linux-hwe-6.11	Not in release
linux-hwe-6.14	Not in release
linux-hwe-6.17	Not in release
linux-hwe-edge	Not in release
linux-lts-xenial	Not in release
linux-kvm	Not in release
linux-allwinner-5.19	Not in release
linux-aws	Vulnerable
linux-aws-5.0	Not in release
linux-aws-5.3	Not in release
linux-aws-5.4	Not in release
linux-aws-5.8	Not in release
linux-aws-5.11	Not in release
linux-aws-5.13	Not in release
linux-aws-5.15	Not in release
linux-aws-5.19	Not in release
linux-aws-6.2	Not in release
linux-aws-6.5	Not in release
linux-aws-6.8	Not in release
linux-aws-6.14	Not in release
linux-aws-6.17	Not in release
linux-aws-hwe	Not in release
linux-azure	Vulnerable
linux-azure-4.15	Not in release
linux-azure-5.3	Not in release
linux-azure-5.4	Not in release
linux-azure-5.8	Not in release
linux-azure-5.11	Not in release
linux-azure-5.13	Not in release
linux-azure-5.15	Not in release
linux-azure-5.19	Not in release
linux-azure-6.2	Not in release
linux-azure-6.5	Not in release
linux-azure-6.8	Not in release
linux-azure-6.11	Not in release
linux-azure-6.14	Not in release
linux-azure-6.17	Not in release
linux-azure-fde	Vulnerable
linux-azure-fde-5.15	Not in release
linux-azure-fde-5.19	Not in release
linux-azure-fde-6.2	Not in release
linux-azure-fde-6.8	Not in release
linux-azure-fde-6.14	Not in release
linux-azure-fde-6.17	Not in release
linux-azure-nvidia	Not in release
linux-azure-nvidia-6.14	Not in release
linux-bluefield	Not in release
linux-azure-edge	Not in release
linux-fips	Not in release
linux-aws-fips	Not in release
linux-azure-fips	Not in release
linux-gcp-fips	Not in release
linux-gcp	Vulnerable
linux-gcp-4.15	Not in release
linux-gcp-5.3	Not in release
linux-gcp-5.4	Not in release
linux-gcp-5.8	Not in release
linux-gcp-5.11	Not in release
linux-gcp-5.13	Not in release
linux-gcp-5.15	Not in release
linux-gcp-5.19	Not in release
linux-gcp-6.2	Not in release
linux-gcp-6.5	Not in release
linux-gcp-6.8	Not in release
linux-gcp-6.11	Not in release
linux-gcp-6.14	Not in release
linux-gcp-6.17	Not in release
linux-gke	Not in release
linux-gke-4.15	Not in release
linux-gke-5.4	Not in release
linux-gke-5.15	Not in release
linux-gkeop	Not in release
linux-gkeop-5.4	Not in release
linux-gkeop-5.15	Not in release
linux-ibm	Vulnerable
linux-ibm-5.4	Not in release
linux-ibm-5.15	Not in release
linux-ibm-6.8	Not in release
linux-intel-5.13	Not in release
linux-intel-iotg	Not in release
linux-intel-iotg-5.15	Not in release
linux-iot	Not in release
linux-intel-iot-realtime	Not in release
linux-lowlatency	Not in release
linux-lowlatency-hwe-5.15	Not in release
linux-lowlatency-hwe-5.19	Not in release
linux-lowlatency-hwe-6.2	Not in release
linux-lowlatency-hwe-6.5	Not in release
linux-lowlatency-hwe-6.8	Not in release
linux-lowlatency-hwe-6.11	Not in release
linux-nvidia	Vulnerable
linux-nvidia-6.2	Not in release
linux-nvidia-6.5	Not in release
linux-nvidia-6.8	Not in release
linux-nvidia-6.11	Not in release
linux-nvidia-lowlatency	Not in release
linux-nvidia-tegra	Not in release
linux-nvidia-tegra-5.15	Not in release
linux-nvidia-tegra-igx	Not in release
linux-oracle	Vulnerable
linux-oracle-5.0	Not in release
linux-oracle-5.3	Not in release
linux-oracle-5.4	Not in release
linux-oracle-5.8	Not in release
linux-oracle-5.11	Not in release
linux-oracle-5.13	Not in release
linux-oracle-5.15	Not in release
linux-oracle-6.5	Not in release
linux-oracle-6.8	Not in release
linux-oracle-6.14	Not in release
linux-oracle-6.17	Not in release
linux-oem	Not in release
linux-oem-5.6	Not in release
linux-oem-5.10	Not in release
linux-oem-5.13	Not in release
linux-oem-5.14	Not in release
linux-oem-5.17	Not in release
linux-oem-6.0	Not in release
linux-oem-6.1	Not in release
linux-oem-6.5	Not in release
linux-oem-6.8	Not in release
linux-oem-6.11	Not in release
linux-oem-6.14	Not in release
linux-oem-6.17	Not in release
linux-raspi	Vulnerable
linux-raspi2	Not in release
linux-raspi-5.4	Not in release
linux-raspi-realtime	Not in release
linux-realtime	Vulnerable
linux-realtime-6.8	Not in release
linux-realtime-6.14	Not in release
linux-riscv	Vulnerable
linux-riscv-5.8	Not in release
linux-riscv-5.11	Not in release
linux-riscv-5.15	Not in release
linux-riscv-5.19	Not in release
linux-riscv-6.5	Not in release
linux-riscv-6.8	Not in release
linux-riscv-6.14	Not in release
linux-riscv-6.17	Not in release
linux-starfive-5.19	Not in release
linux-starfive-6.2	Not in release
linux-starfive-6.5	Not in release
linux-xilinx	Not in release
linux-xilinx-zynqmp	Not in release
linux-realtime-6.17	Not in release
linux-nvidia-6.17	Not in release
linux-nvidia-bos	Not in release
linux-nvidia-bos-7.0	Not in release
linux-nvidia-7.0	Not in release

CVE-2025-54518

Medium priority

Needs evaluation

Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.

1 affected package

xen

Package	26.04 LTS
xen	Needs evaluation

Export to JSON

Results by page: