| CVE-2026-40393 |
unknown |
mesa |
In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory access can occur in WebGPU... |
| CVE-2026-40386 |
unknown |
libexif |
In libexif through 0.6.25, an integer underflow in size checking for Fuji and Olympus MakerNote... |
| CVE-2026-40385 |
unknown |
libexif |
In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could... |
| CVE-2026-35206 |
unknown |
helm |
Helm is a package manager for Charts for Kubernetes. In Helm versions <=3.20.1 and <=4.1.3, a... |
| CVE-2026-5194 |
unknown |
wolfssl |
Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA... |
| CVE-2026-5187 |
unknown |
wolfssl |
Two potential heap out-of-bounds write locations existed in DecodeObjectId() in... |
| CVE-2026-39977 |
unknown |
flatpak-builder |
flatpak-builder is a tool to build flatpaks from source. From 1.4.5 to before 1.4.8, the... |
| CVE-2026-40036 |
unknown |
unfurl |
Unfurl beforeĀ 2026.04 contains an unbounded zlib decompression vulnerability in... |
| CVE-2026-40035 |
unknown |
unfurl |
Unfurl through 2025.08 contains an improper input validation vulnerability in config parsing... |
| CVE-2012-5562 |
unknown |
satellite |
A flaw was found in rhn-proxy. This vulnerability may allow the rhn-proxy to transmit user... |
| CVE-2026-35406 |
unknown |
aardvark-dns |
Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0,... |
| CVE-2026-39316 |
unknown |
cups |
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating... |
| CVE-2026-39314 |
unknown |
cups |
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating... |
| CVE-2026-24450 |
unknown |
libraw |
An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of... |
| CVE-2026-20884 |
unknown |
libraw |
An integer overflow vulnerability exists in the deflate_dng_load_raw functionality of LibRaw... |
| CVE-2026-5735 |
unknown |
firefox |
Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed... |
| CVE-2026-5735 |
unknown |
thunderbird |
Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed... |
| CVE-2026-5734 |
unknown |
firefox |
Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and... |
| CVE-2026-5734 |
unknown |
thunderbird |
Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and... |
| CVE-2026-5733 |
unknown |
firefox |
Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in... |
| CVE-2026-5732 |
unknown |
firefox |
Incorrect boundary conditions, integer overflow in the Graphics: Text component. This... |
| CVE-2026-35444 |
unknown |
sdl_image |
SDL_image is a library to load images of various formats as SDL surfaces. In do_layer_surface()... |
| CVE-2026-35201 |
unknown |
ruby-rdiscount |
Discount is an implementation of John Gruber's Markdown markup language in C. From 1.3.1.1 to... |
| CVE-2026-34589 |
unknown |
openexr |
OpenEXR provides the specification and reference implementation of the EXR file format, an image... |
| CVE-2026-34588 |
unknown |
openexr |
OpenEXR provides the specification and reference implementation of the EXR file format, an image... |
| CVE-2026-34380 |
unknown |
openexr |
OpenEXR provides the specification and reference implementation of the EXR file format, an image... |
| CVE-2026-34379 |
unknown |
openexr |
OpenEXR provides the specification and reference implementation of the EXR file format, an image... |
| CVE-2026-34378 |
unknown |
openexr |
OpenEXR provides the specification and reference implementation of the EXR file format, an image... |
| CVE-2026-34933 |
unknown |
avahi |
Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD... |
| CVE-2026-34990 |
unknown |
cups |
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating... |
| CVE-2026-34980 |
unknown |
cups |
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating... |
| CVE-2026-34979 |
unknown |
cups |
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating... |
| CVE-2026-34978 |
unknown |
cups |
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating... |
| CVE-2026-35414 |
unknown |
openssh |
OpenSSH before 10.3 mishandles the authorized_keys principals option in uncommon scenarios... |
| CVE-2026-33641 |
unknown |
glances |
Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.3, Glances... |
| CVE-2026-33533 |
unknown |
glances |
Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.3, the... |
| CVE-2026-31935 |
unknown |
suricata |
Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, flooding of... |
| CVE-2026-31934 |
unknown |
suricata |
Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there... |
| CVE-2026-31933 |
unknown |
suricata |
Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, specially... |
| CVE-2026-31932 |
unknown |
suricata |
Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, inefficiency... |
| CVE-2026-31931 |
unknown |
suricata |
Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, use... |
| CVE-2026-34545 |
unknown |
openexr |
OpenEXR provides the specification and reference implementation of the EXR file format, an image... |
| CVE-2026-34544 |
unknown |
openexr |
OpenEXR provides the specification and reference implementation of the EXR file format, an image... |
| CVE-2026-34543 |
unknown |
openexr |
OpenEXR provides the specification and reference implementation of the EXR file format, an image... |
| CVE-2026-34204 |
unknown |
minio |
MinIO is a high-performance object storage system. Prior to version... |
| CVE-2026-27854 |
unknown |
dnsdist |
An attacker might be able to trigger a use-after-free by sending crafted DNS queries to a... |
| CVE-2026-27853 |
unknown |
dnsdist |
An attacker might be able to trigger an out-of-bounds write by sending crafted DNS responses to... |
| CVE-2026-24030 |
unknown |
dnsdist |
An attacker might be able to trick DNSdist into allocating too much memory while processing DNS... |
| CVE-2026-24029 |
unknown |
dnsdist |
When the early_acl_drop (earlyACLDrop in Lua) option is disabled (default is enabled) on a DNS... |
| CVE-2026-24028 |
unknown |
dnsdist |
An attacker might be able to trigger an out-of-bounds read by sending a crafted DNS response... |
