Messages by Date
-
2026/07/13
[oss-security] CVE-2026-57433: Storable versions before 3.41 for Perl have a signed integer overflow when deserializing a crafted SX_HOOK record
Stig Palmquist
-
2026/07/13
[oss-security] CVE-2026-57432: Perl versions through 5.43.10 have an integer overflow in S_measure_struct leading to an out-of-bounds heap read in pack and unpack
Stig Palmquist
-
2026/07/13
[oss-security] CVE-2026-13221: Perl versions through 5.43.9 produce silently incorrect regular expression matches when an alternation of more than 65535 fixed string branches is compiled into a trie in Perl_study_chunk
Stig Palmquist
-
2026/07/13
[oss-security] CVE-2026-59245: Apache Airflow FAB provider: FAB auth manager: a DAG named "DAGs" hijacks the global all-DAGs permission (access_control privilege escalation via resource_name() collision)
Vincent Beck
-
2026/07/13
[oss-security] CVE-2026-58065: Apache Airflow Git provider: Git provider hook defaults to StrictHostKeyChecking=no, disabling SSH host-key verification
Vincent Beck
-
2026/07/12
[oss-security] CVE-2026-49876: Apache Gravitino: Authenticated SSRF in Gravitino JobManager allows server-side HTTP requests to internal network and cloud metadata endpoints via unvalidated job template URIs
Yu Qi
-
2026/07/12
[oss-security] CVE-2026-41041: Apache Gravitino: URL path injection via unencoded user-supplied identifiers in MCP REST client f-string URL construction, enabling path traversal to unintended API endpoints.
Jerry Shao
-
2026/07/12
Re: [oss-security] Skillable SCORM launch: userId parameter not validated against session token allows allocation bypass and cross-user DoS
Solar Designer
-
2026/07/12
[oss-security] Skillable SCORM launch: userId parameter not validated against session token allows allocation bypass and cross-user DoS
gregdurys . security
-
2026/07/10
[oss-security] CVE-2026-49844: Apache Log4j API: Improper serialization of non-finite floating-point values in MapMessage.asJson()
Piotr Karwasz
-
2026/07/10
[oss-security] CVE-2026-40454: Apache IoTDB C++ client: Out-of-bounds reads in C++ client TsBlock deserializer crash client process on malformed server data
Haonan Hou
-
2026/07/10
[oss-security] CVE-2026-40452: Apache IoTDB: Authorization bypass in /rest/v2/fastLastQuery exposes last-value data to unauthorized authenticated users
Haonan Hou
-
2026/07/10
[oss-security] CVE-2026-40009: Apache IoTDB: Authenticated users can escalate to full tree-path access by renaming themselves to __internal_auditor
Haonan Hou
-
2026/07/10
[oss-security] CVE-2026-40008: Apache IoTDB: Arbitrary Class Instantiation via Pipe Transfer RPC
Haonan Hou
-
2026/07/10
[oss-security] CVE-2026-40007: Apache IoTDB: Unauthenticated unbounded recursion in IoTDB AirGap receiver's E-language prefix parser causes per-connection StackOverflowError
Haonan Hou
-
2026/07/10
[oss-security] CVE-2026-40006: Apache IoTDB: Unauthenticated heap-exhaustion DoS via unbounded allocation in IoTDB AirGap pipe receiver
Haonan Hou
-
2026/07/10
[oss-security] CVE-2026-40005: Apache IoTDB: Path Traversal in Pipe File Transfer Receiver
Haonan Hou
-
2026/07/10
[oss-security] CVE-2026-28564: Apache IoTDB: REST Basic Authentication Accepts Stale Cached Credentials
Haonan Hou
-
2026/07/09
[oss-security][CVE-2026-15308] Incremental HTMLParser allows CPU-exhaustion DoS via repeated unterminated markup declarations
Alan Coopersmith
-
2026/07/09
[oss-security] HTSlib <= 1.23.1 Multiple vulnerabilities in file reading code
Robert Davies
-
2026/07/09
Re: [oss-security] Linux: GhostLock / CVE-2026-43499 / stack-UAF and LPE in kernels 2.6.39 till 7.1
Vega Agent
-
2026/07/08
Re: [oss-security] Linux: GhostLock / CVE-2026-43499 / stack-UAF and LPE in kernels 2.6.39 till 7.1
Solar Designer
-
2026/07/08
Re: [oss-security] CVE-2026-46242 ("Bad Epoll") local privilege escalation on Linux, including Android
Jan Engelhardt
-
2026/07/08
[oss-security] CVE-2026-46242 ("Bad Epoll") local privilege escalation on Linux, including Android
Jan Schaumann
-
2026/07/08
[oss-security] Linux: GhostLock / CVE-2026-43499 / stack-UAF and LPE in kernels 2.6.39 till 7.1
Dr. Thomas Orgis
-
2026/07/08
[oss-security] CVE-2026-57111: Apache Helix REST: Permissive CORS Configuration in REST API Allows Unrestricted Cross-Origin
Junkai Xue
-
2026/07/08
[oss-security] Go 1.26.5 and Go 1.25.12 fix CVE-2026-39822 & CVE-2026-42505
Alan Coopersmith
-
2026/07/08
[oss-security] CVE-2026-49147: App::Ack versions through 3.10.0 for Perl print unsanitised terminal escape sequences from filenames in several output modes
Stig Palmquist
-
2026/07/08
[oss-security] CVE-2026-49146: App::Ack versions before 3.10.0 for Perl allow memory exhaustion via an unbounded context value in a project .ackrc
Stig Palmquist
-
2026/07/08
[oss-security] CVE-2026-49145: App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc
Stig Palmquist
-
2026/07/08
[oss-security] CVE-2026-14454: Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed
Robert Rothenberg
-
2026/07/08
[oss-security] CVE-2026-41042: Apache Gravitino: Unauthenticated callers can supply a malicious H2 JDBC URL through the testConnection API, which executes arbitrary Java code on the server via H2's INIT parameter
Jerry Shao
-
2026/07/08
[oss-security] [OSSA-2026-026] Ironic: Insufficient Access Controls regarding parent/child nodes
Jay Faulkner
-
2026/07/08
[oss-security] [OSSA-2026-025] Ironic: RBAC Bypass in IPMI Raw Command Execution (CVE-2026-54423)
Jay Faulkner
-
2026/07/07
[oss-security] FW: X.Org Security Advisory: multiple security issues X.Org X server and Xwayland
Peter Hutterer
-
2026/07/07
[oss-security] FW: X.Org Security Advisory: multiple security issues in libXfont2
Peter Hutterer
-
2026/07/07
[oss-security] CVE-2026-14895: String::Util versions before 1.36 for Perl are susceptible to a regular expression denial of service
Robert Rothenberg
-
2026/07/07
[oss-security] CVE-2026-14740: DBI versions before 1.650 for Perl read one byte out-of-bounds in preparse when deleting an initial SQL comment
Robert Rothenberg
-
2026/07/07
[oss-security] CVE-2026-14380: DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile
Robert Rothenberg
-
2026/07/07
Re: [oss-security] [CVE request] Cilium ClusterNetworkPolicy matchExpressions Values silently dropped — 0-day in v1.20.0-pre releases, no maintainer response in 9 days via GHSA Triage
Solar Designer
-
2026/07/07
Re: [oss-security] [CVE request] Cilium ClusterNetworkPolicy matchExpressions Values silently dropped — 0-day in v1.20.0-pre releases, no maintainer response in 9 days via GHSA Triage
Joe Stringer
-
2026/07/07
[oss-security] CVE-2026-7017: HTTP::Tiny versions before 0.095 for Perl forward credential headers to cross-origin redirect targets
Robert Rothenberg
-
2026/07/07
Re: [oss-security] [CVE request] Cilium ClusterNetworkPolicy matchExpressions Values silently dropped — 0-day in v1.20.0-pre releases, no maintainer response in 9 days via GHSA Triage
Solar Designer
-
2026/07/07
[oss-security] Re: [CVE request] Cilium ClusterNetworkPolicy matchExpressions Values silently dropped — 0-day in v1.20.0-pre releases, no maintainer response in 9 days via GHSA Triage
Feroz Salam
-
2026/07/07
[oss-security] Django CVE-2026-48588, CVE-2026-53877, and CVE-2026-53878
Jacob Walls
-
2026/07/07
Re: [oss-security] Wasm OCI Image Fetcher Bearer Realm SSRF Bypass
Solar Designer
-
2026/07/07
Re: [oss-security] Wasm OCI Image Fetcher Bearer Realm SSRF Bypass
yan xu
-
2026/07/07
[oss-security] Foreman: multiple vulnerabilities fixed in 3.18.2 and 3.19.1 (CVE-2026-5135, CVE-2026-5136, CVE-2026-5138, CVE-2026-5142)
Ondrej Gajdusek
-
2026/07/07
[oss-security] CVE-2026-49487: Apache Airflow: Task-instance API exposes secrets in deferred trigger kwargs
Rahul Vats
-
2026/07/07
[oss-security] CVE-2026-49296: Apache Airflow: Per-DAG read bypass discloses co-located DAGs' source via GET /api/v2/dagSources/{dag_id}
Rahul Vats
-
2026/07/07
[oss-security] CVE-2026-48892: Apache Airflow: Config API leaks per-key secrets backend kwargs - masker bypass on synthetic options
Rahul Vats
-
2026/07/07
[oss-security] CVE-2026-48891: Apache Airflow: /ui/dependencies scheduling graph leaks unreadable Dag identifiers via trigger/sensor dep.source/dep.target
Rahul Vats
-
2026/07/07
[oss-security] CVE-2026-48828: Apache Airflow: Bulk JSON Variables bypass should_hide_value_for_key - redact() called without the key
Rahul Vats
-
2026/07/07
[oss-security] CVE-2026-33264: Apache Airflow: DAG author RCE on webserver via unrestricted import_string() in BaseSerialization.deserialize()
Rahul Vats
-
2026/07/06
[oss-security] CVE-2026-43867: Apache Camel: Camel-PQC: The AWS Secrets Manager key-lifecycle manager deserializes persisted key metadata with java.io.ObjectInputStream and no ObjectInputFilter
Andrea Cosentino
-
2026/07/06
[oss-security] CVE-2026-49042: Apache Camel: langchain4j-tools: filter tool argument headers against declared parameters
Federico Mariani
-
2026/07/06
[oss-security] CVE-2026-46588: Apache Camel: CouchDB: Non-Camel-prefixed Exchange headers bypass HeaderFilterStrategy allowing operation override from untrusted input
Federico Mariani
-
2026/07/06
[oss-security] CVE-2026-46587: Apache Camel: Couchbase: Non-Camel-prefixed Exchange headers bypass HeaderFilterStrategy allowing operation override from untrusted input
Federico Mariani
-
2026/07/06
[oss-security] CVE-2026-43866: Apache Camel: Camel JMS - CVE-2026-40860 fix bypass via DefaultExchangeHolder
Andrea Cosentino
-
2026/07/06
[oss-security] CVE-2026-24014: Apache IoTDB: Path Traversal in DataNode Internal RPC Trigger JAR Upload Allows Arbitrary File Write
Haonan Hou
-
2026/07/06
[oss-security] CVE-2026-24013: Apache IoTDB: Authentication Bypass via Forged SessionID in Thrift RPC
Haonan Hou
-
2026/07/06
[oss-security] CVE-2026-24012: Apache IoTDB: Denial of Service via Resource Exhaustion in Aggregation Query
Haonan Hou
-
2026/07/06
[oss-security] CVE-2026-43825: Apache OpenNLP :: Core :: ML :: LibSVM: Unsafe Java Deserialization in SvmDoccatModel
Richard Zowalla
-
2026/07/06
[oss-security] c-ares 1.34.7 release: CVE-2026-33630, GHSA-pjmc-gx33-gc76, GHSA-jv8r-gqr9-68wj
Brad House
-
2026/07/06
[oss-security] Januscape: Guest-to-Host Escape in KVM/x86 (CVE-2026-53359)
Hyunwoo Kim
-
2026/07/06
[oss-security] Security Considerations for Statsd Clients
Robert Rothenberg
-
2026/07/06
[oss-security] Announce: OpenSSH 10.4 released
Damien Miller
-
2026/07/06
[oss-security] CVE-2026-13708: Imager::File::JPEG versions before 1.003 for Perl leak heap memory when reading a JPEG with repeated APP13 markers in i_readjpeg_wiol
Stig Palmquist
-
2026/07/06
[oss-security] CVE-2026-13705: Imager versions before 1.032 for Perl have a heap out-of-bounds read in the bundled Imager::File::SGI reader via a 16-bit RLE literal run in read_rgb_16_rle
Stig Palmquist
-
2026/07/05
[oss-security] CVE-2026-14803: Mojo::JSON versions before 9.47 for Perl allow memory exhaustion via unbounded recursion in the pure-Perl decoder
Stig Palmquist
-
2026/07/05
Re: [oss-security] Wasm OCI Image Fetcher Bearer Realm SSRF Bypass
Eli Schwartz
-
2026/07/05
[oss-security] CVE-2026-56140: Apache Camel: Camel-AWS2-SNS: An inbound Camel-namespace filter was added to Sns2HeaderFilterStrategy to align it with sibling components; because camel-aws2-sns is producer-only (no consumer) there is no reachable inbound header-injection path, so this is a defense-in-
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-56139: Apache Camel: Camel-Undertow: The muteException consumer option defaulted to false, so a processing error returned the full Java stack trace in the HTTP response body, disclosing sensitive internal information to unauthenticated clients - and the option was not honoured
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-55994: Apache Camel: Camel-Iggy: The inbound consumer maps externally-supplied Iggy message user-headers into the Exchange without a HeaderFilterStrategy, allowing injection of Camel control headers - enabling server-side request forgery and disclosure of secrets when bridged
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-55993: Apache Camel: Camel-Atmosphere-Websocket: The inbound consumer maps externally-supplied WebSocket query parameters into the Exchange without a HeaderFilterStrategy, allowing injection of Camel control headers - enabling server-side request forgery and disclosure of secr
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-53913: Apache Camel: Camel-Keycloak: KeycloakSecurityPolicy verifies the bearer access token only inside its role and permission checks, so in the default configuration (no required roles or permissions) the token is never verified and any non-null bearer value is accepted - a
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-49365: Apache Camel: Camel-Netty-HTTP: The muteException consumer option defaulted to false, so a processing error returned the full Java stack trace in the HTTP response body, disclosing sensitive internal information to unauthenticated clients
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-49099: Apache Camel: Camel-Salesforce: Non-Camel-prefixed Exchange header constants (sObjectQuery, sObjectSearch, apexUrl, ...) bypass the HTTP header filter, allowing an HTTP client to inject SOQL/SOSL queries, override the target SObject, and redirect Apex REST calls using t
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-49098: Apache Camel: Camel-Kafka: The kafka.OVERRIDE_TOPIC (and other kafka.*) Exchange header constants used non-Camel-prefixed names that bypass the upstream HTTP header filter, allowing an HTTP client to redirect Kafka messages to an arbitrary topic
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-49097: Apache Camel: Camel-IRC: The irc.sendTo (and other irc.*) Exchange header constants used non-Camel-prefixed names that bypass the HTTP header filter, allowing an HTTP client to redirect outgoing IRC messages to arbitrary channels or users
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-49086: Apache Camel: Camel-Dapr: The Dapr Pub/Sub consumer copied the inbound CloudEvent's pub/sub-name and topic into producer-direction routing headers, allowing an actor who can publish to the subscribed topic to redirect the re-published message to an arbitrary Dapr Pub/Su
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-48206: Apache Camel: Camel-JIRA: A set of non-Camel-prefixed Exchange header constants (IssueKey, ProjectKey, IssueTransitionId, ...) bypass the HTTP header filter, allowing an HTTP client to drive arbitrary JIRA issue operations using the endpoint's configured credentials
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-48205: Apache Camel: Camel-DNS: The dns.* and term Exchange header constants used non-Camel-prefixed names that bypass the HTTP header filter, allowing an HTTP client to redirect DNS queries to an attacker-controlled server (server-side request forgery) and enumerate internal
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-48204: Apache Camel: Camel-MongoDB-GridFS: The gridfs.* control headers used non-Camel-prefixed names that bypass the HTTP header filter, allowing an HTTP client to switch the GridFS operation - including destructive file deletion - in the default configuration
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-48203: Apache Camel: Camel-Solr: The SolrParam. and SolrField. Exchange header prefixes used non-Camel-prefixed names that bypass the HTTP header filter, allowing an HTTP client to inject Solr query parameters (server-side request forgery) and document fields
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46726: Apache Camel: Camel-Vertx-Websocket: The inbound consumer maps externally-supplied WebSocket query and path parameters into the Exchange without a HeaderFilterStrategy, allowing injection of Camel control headers - enabling server-side request forgery and disclosure of
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46592: Apache Camel: Camel-CXF: The SOAP operation-selection headers used non-Camel-prefixed names (operationName, operationNamespace) that bypass the HTTP header filter, allowing an HTTP client to redirect the invoked SOAP operation
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46591: Apache Camel: Camel-Neo4j: JSON property names from the CamelNeo4jMatchProperties header are interpolated into the Cypher WHERE clause without validation, allowing Cypher injection (incomplete remediation of CVE-2025-66169)
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46590: Apache Camel: Camel-PQC: The HashiCorp Vault and AWS Secrets Manager key-lifecycle managers deserialize persisted key metadata with java.io.ObjectInputStream and no ObjectInputFilter (incomplete remediation of CVE-2026-40048)
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46585: Apache Camel: Camel-Lucene: The query control headers used non-Camel-prefixed names (QUERY, RETURN_LUCENE_DOCS) that bypass the HTTP header filter, allowing an HTTP client to inject the full-text search query
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46584: Apache Camel: Camel-Mail: The mail producer applied attacker-supplied mail.smtp.* / mail.smtps.* message headers as JavaMail session properties, allowing an attacker to weaken the SMTP transport security and, on releases before 4.19.0, redirect the connection and steal
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46457: Apache Camel: Camel-NATS: Inbound NATS message headers are mapped into the Exchange without a configured HeaderFilterStrategy, allowing a client that can publish to the subject to inject Camel control headers
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46456: Apache Camel: Camel-AWS2-SQS: Inbound message attributes are mapped into the Exchange without an inbound HeaderFilterStrategy, allowing a message sender to inject Camel control headers
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46455: Apache Camel: Camel-Keycloak: The access-token validity window is not verified because the IS_ACTIVE check is missing from the TokenVerifier, allowing expired tokens to be accepted
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46454: Apache Camel: Camel-Cometd: Inbound Bayeux message headers are mapped into the Exchange without a HeaderFilterStrategy, allowing unauthenticated clients to inject Camel control headers
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-46453: Apache Camel: Camel-Elasticsearch-Rest-Client: Exchange header constants without the Camel prefix bypass inbound HTTP header filtering, allowing untrusted clients to override the Elasticsearch query and operation
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-43865: Apache Camel: Camel-Hazelcast: Unsafe Java deserialization in default-configured managed Hazelcast instances enables remote code execution
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-42527: Apache Camel: Permissive default ObjectInputFilter pattern admits java.net.** and enables DNS-based information disclosure
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-40859: Apache Camel: Camel-Vertx-Http: Unsafe Java deserialization of HTTP response bodies via a raw ObjectInputStream when transferException is enabled
Andrea Cosentino
-
2026/07/05
[oss-security] CVE-2026-40047: Apache Camel: Camel-Docling: Insufficient validation of custom CLI arguments enables argument injection and path traversal in DoclingProducer
Andrea Cosentino
-
2026/07/04
[oss-security] CVE-2026-14570: Crypt::DSA versions before 1.22 for Perl draw the DSA signing nonce and private key from a biased random generator, leading to private-key recovery
Timothy Legge
-
2026/07/04
[oss-security] CVE-2026-12740: Plack::Middleware::OAuth versions through 0.10 for Perl do not support the OAuth 2.0 state parameter
Robert Rothenberg
-
2026/07/04
[oss-security] CVE-2026-12746: Dancer2::Plugin::Auth::OAuth::Provider versions before 0.23 for Perl do not support the OAuth 2.0 state parameter
Robert Rothenberg
-
2026/07/04
[oss-security] CVE-2026-49297: Apache Airflow Google provider: Path traversal via GCS object names → local/SFTP filesystem (GCSToSFTPOperator + GCSTimeSpanFileTransformOperator)
Shahar Epstein
-
2026/07/03
Re: [oss-security] Wasm OCI Image Fetcher Bearer Realm SSRF Bypass
Solar Designer
-
2026/07/03
Re: [oss-security] Wasm OCI Image Fetcher Bearer Realm SSRF Bypass
h
-
2026/07/03
Re: [oss-security] Wasm OCI Image Fetcher Bearer Realm SSRF Bypass
Solar Designer
-
2026/07/03
[oss-security] Wasm OCI Image Fetcher Bearer Realm SSRF Bypass
xylove21
-
2026/07/03
[oss-security] [CONFIDENTIAL] cert-manager v1.15-v1.17+main — Reflected SSRF via Issuer.spec.vault.server (CVSS 7.2 HIGH)
xylove21
-
2026/07/03
[oss-security] [CVE request] Apache APISIX 3.16.0 JWT-Auth Algorithm Confusion (Authentication Bypass, CVSS 9.8 CRITICAL) — no maintainer response in 9 days via GHSA Triage
xylove21
-
2026/07/03
[oss-security] [CVE request] Apache Kafka OAUTHBEARER authentication bypass via signed JWT clock skew (vulnerable 4.0.0 - 4.0.x, no maintainer response in 7 days)
xylove21
-
2026/07/03
[oss-security] pandemic of incomplete error handling in the OpenSSL ecosystem
Julian Andres Klode
-
2026/07/03
[oss-security] CVE-2026-56015: Net::IP::LPM versions through 1.10 for Perl allow a heap out-of-bounds read via an unbounded prefix length
Robert Rothenberg
-
2026/07/02
[oss-security] CVE-2026-47898: Apache Lucene.Net: XXE vulnerability in Lucene.Net.Analysis.Common PatternParser
Paul Irwin
-
2026/07/02
[oss-security] CVE-2026-47897: Apache Lucene.Net: Arbitrary file write from malicious server to Lucene.Net.Replicator client
Paul Irwin
-
2026/07/02
[oss-security] CVE-2026-47896: Apache Lucene.Net: Unauthenticated arbitrary file read on the Lucene.Net.Replicator replication server
Paul Irwin
-
2026/07/02
Re: [oss-security] Fwd: Node.js security updates for all active release lines, June 2026
Alan Coopersmith
-
2026/07/02
[oss-security] CVE-2026-43503: Analysis of the "DirtyClone" Linux LPE (Dirty Frag family variant)
Or Peles
-
2026/07/01
Re: [oss-security] check_icmp (Monitoring Plugins): host-count overflow leads to heap buffer overflow in setuid-root binary
Michael Orlitzky
-
2026/07/01
[oss-security] CVE-2026-54161: NUT upsmon: remote OS command injection via ups.alarm in NOTIFYCMD - fixed in PR #3499 (affects 2.8.3–2.8.5)
pro Err0r
-
2026/07/01
[oss-security] Vinyl Cache / Varnish Cache HTTP/2 parsing deficiency [CVE-2026-50052]
Alan Coopersmith
-
2026/07/01
[oss-security] Fwd: libevent 2.1.13-stable contains several security fixes
Alan Coopersmith
-
2026/07/01
[oss-security] CVE-2025-15646: HTML::Gumbo versions before 0.19 for Perl disclose heap memory via type confusion
Robert Rothenberg
-
2026/07/01
[oss-security] CVE-2026-56016: CGI::Session::ID::md5 versions before 4.49 for Perl generate predictable session ids from low-entropy sources
Robert Rothenberg
-
2026/07/01
[oss-security] check_icmp (Monitoring Plugins): host-count overflow leads to heap buffer overflow in setuid-root binary
Holger Weiß
-
2026/07/01
[oss-security] CVE-2026-54399: Apache HttpComponents Core: Unbounded HTTP Header/Line Length in Default Configuration
Oleg Kalnichevski
-
2026/07/01
[oss-security] CVE-2026-54428: Apache HttpComponents Core: HPackDecoder Unlimited Header List Size Before SETTINGS ACK
Oleg Kalnichevski
-
2026/07/01
[oss-security] Re: hostapd: OOB write in Wi-Fi 7 MLD association parsing (pre-auth DoS)
Abhinav Agarwal
-
2026/07/01
[oss-security] OFFIS DCMTK: 5 CISA-coordinated DICOM vulnerabilities
Abhinav Agarwal
-
2026/06/30
[oss-security] CVE-2026-13766: DBIx::QuickORM versions before 0.000026 for Perl allow SQL injection via unquoted SQL identifiers
Robert Rothenberg
-
2026/06/30
[oss-security] CVE-2026-57079 through CVE-2026-57082: Multiple vulnerabilities in Net::BitTorrent versions through 2.0.1 for Perl
Robert Rothenberg
-
2026/06/30
[oss-security] CVE-2025-53648: Apache Gravitino: SQL misconfiguration can access or truncate files
Jerry Shao
-
2026/06/29
[oss-security] hostapd: OOB write in Wi-Fi 7 MLD association parsing (pre-auth DoS)
Abhinav Agarwal
-
2026/06/29
[oss-security] CVE-2026-53917: Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Client, Apache ActiveMQ Broker: Unbounded memory allocation in OpenWire property unmarshalling
Christopher L. Shannon
-
2026/06/29
[oss-security] CVE-2026-55957: Apache Tomcat: Authentication bypass with JNDIRealm and GSSAPI authenticated bind
Mark Thomas
-
2026/06/29
[oss-security] CVE-2026-55956: Apache Tomcat: Security constraints for default servlet ignored method
Mark Thomas
-
2026/06/29
[oss-security] CVE-2026-55955: Apache Tomcat: EncryptInterceptor not protected against replay attacks
Mark Thomas
-
2026/06/29
[oss-security] CVE-2026-53916: Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp: Unbounded header buffer in STOMP NIO codec
Christopher L. Shannon
-
2026/06/29
[oss-security] CVE-2026-55276: Apache Tomcat: Logged effective web.xml is incomplete
Mark Thomas
-
2026/06/29
[oss-security] CVE-2026-53434: Apache Tomcat: Invalid CRL configuration doesn't trigger failure for FFM Connector
Mark Thomas
-
2026/06/29
[oss-security] CVE-2026-53404: Apache Tomcat: Bad ornext processing in RewriteValve
Mark Thomas
-
2026/06/29
[oss-security] CVE-2026-54475: Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Temporary destination ownership takeover
Christopher L. Shannon
-
2026/06/29
[oss-security] CVE-2026-50229: Apache Tomcat: XSS in number guess example
Mark Thomas
-
2026/06/29
[oss-security] CVE-2026-13758: CryptX versions before 0.088_001 for Perl compare AEAD authentication tags in non-constant time in the streaming decrypt_done path
Stig Palmquist
-
2026/06/29
[oss-security] CVE-2026-13593: CSS::Minifier::XS versions before 0.14 for Perl have a memory leak when the entire document is minified away
Robert Rothenberg
-
2026/06/29
[oss-security] CVE-2026-56018: JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbounded memory growth
Robert Rothenberg
-
2026/06/29
[oss-security] CVE-2026-56017: JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash
Robert Rothenberg
-
2026/06/29
[oss-security] CVE-2026-52760: Apache ActiveMQ, Apache ActiveMQ Web Console: Stored XSS via Unescaped values in ActiveMQ Web Console
Christopher L. Shannon
-
2026/06/29
[oss-security] CVE-2026-50750: Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All: Pre-authentication OpenWire DoS following fix for CVE-2026-49270
Christopher L. Shannon
-
2026/06/29
[oss-security] CVE-2026-50734: Apache ActiveMQ Client, Apache ActiveMQ, Apache ActiveMQ All: Pre-authentication OpenWire memory-allocation DoS during wire format negotiation
Christopher L. Shannon
-
2026/06/29
[oss-security] CVE-2026-49877: Apache ActiveMQ: Authenticated web users retain admin access by default in the Web Console
Christopher L. Shannon
-
2026/06/29
[oss-security] CVE-2026-49434: Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All: LdapNetworkConnector instantiates denied transports and a remote-properties broker
Christopher L. Shannon
-
2026/06/29
[oss-security] CVE-2026-49432: Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp: STOMP negative content-length enables denial of service
Christopher L. Shannon
-
2026/06/29
[oss-security] CVE-2025-70101: lwext4 out-of-bounds read in ext4_ext_binsearch_idx
shvedov
-
2026/06/29
[oss-security] CVE-2025-70100: lwext4 divide-by-zero in ext4_block_set_lb_size
shvedov
-
2026/06/29
[oss-security] CVE-2025-70099: lwext4 NULL pointer dereference in ext4_dir_en_get_name_len
shvedov
-
2026/06/29
[oss-security] CVE-2023-0645: libjxl/cjxl out-of-bounds read in EXIF metadata parsing
Alexander A. Shvedov
-
2026/06/29
Re: [oss-security] Symlink Traversal Privilege Escalation via getfattr/setfattr, getfacl/setfacl/chacl, libacl
Michael Orlitzky
-
2026/06/29
[oss-security] Symlink Traversal Privilege Escalation via getfattr/setfattr, getfacl/setfacl/chacl, libacl
Andreas Gruenbacher
-
2026/06/28
[oss-security] [Security advisory] FreeHSM C v1.1.0 - v1.2.1 : raw CKM_ECDSA signatures not externally verifiable (fixed in v1.2.2 ; v1.3.0 extends boot KAT regression guard to 6/7 surfaces)
Afchine Mad
-
2026/06/28
[oss-security] [vim-security] Arbitrary Code Execution via PHP Omni-Completion in Vim < 9.2.0736
Christian Brabandt
-
2026/06/27
[oss-security] fetchmail's NTLM authentication vulnerable to stack buffer overflow up to release 6.6.6 (FW: The 6.6.7.rc1 release candidate is available (security fix for NTLM protocol, possible RCE))
Matthias Andree
-
2026/06/27
[oss-security] n8n: SSRF remains exploitable in default configuration (incomplete fix, no CVE)
Akshat Sinha
-
2026/06/26
[oss-security] [vim-security] Arbitrary Code Execution via C Omni-Completion in Vim < 9.2.0735
Christian Brabandt
-
2026/06/26
[oss-security] CVE-2025-60474: Heap-based Buffer Overflow in GPAC/MP4Box via gf_media_import on crafted MPEG-2 TS file
Alexander A. Shvedov
-
2026/06/26
[oss-security] CVE-2025-60467: Use-After-Free in GPAC/MP4Box via gf_filter_pid_inst_swap_delete_task on crafted MPEG-2 TS file
Alexander A. Shvedov
-
2026/06/26
[oss-security] CVE-2025-60473: NULL Pointer Dereference in GPAC/MP4Box via gf_filter_in_parent_chain on crafted MPEG-2 TS file
Alexander A. Shvedov
-
2026/06/26
[oss-security] CVE-2025-60466: Expired Pointer Dereference in GPAC/MP4Box via gf_filter_pid_get_packet on crafted MPEG-2 TS file
Alexander A. Shvedov
-
2026/06/26
[oss-security] CVE-2025-60465: Use-After-Free in GPAC/MP4Box via gf_filter_pid_inst_swap on crafted MPEG-2 TS file
Alexander A. Shvedov
-
2026/06/26
[oss-security] CVE-2026-57915: Apache Kerby: Kerberos Pre-Authentication Bypass
Colm O hEigeartaigh
-
2026/06/26
[oss-security] CVE-2026-57914: Apache Kerby: StackOverflow on parsing deeply nested ASN1 structures
Colm O hEigeartaigh
-
2026/06/26
[oss-security] CVE-2026-11702: Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes
Robert Rothenberg
-
2026/06/26
[oss-security] CVE-2026-11625: Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes
Robert Rothenberg
-
2026/06/26
[oss-security] CVE-2025-60464: NULL Pointer Dereference in GPAC/MP4Box via gf_sei_load_from_state_internal on crafted MPEG-2 TS file
Alexander A. Shvedov
-
2026/06/26
[oss-security] CVE-2025-60471: Use-After-Free in GPAC/MP4Box via gf_filter_pid_reconfigure_task_discard on crafted MPEG-2 TS file
Alexander A. Shvedov
-
2026/06/26
[oss-security] CVE-2025-55639: NULL Pointer Dereference in GPAC/MP4Box via gf_isom_add_track_kind on crafted MP4 file
Alexander A. Shvedov
-
2026/06/26
[oss-security] CVE-2026-49486: Apache Airflow FTP provider: FTP Provider does not protect FTPS data channel (missing PROT_P)
Shahar Epstein
-
2026/06/25
[oss-security] Several vulnerabilities were found in NLnet Labs NSD
Willem Toorop
-
2026/06/25
[oss-security] CVE-2026-12844: List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function
Paul Johnson
-
2026/06/25
[oss-security] libexpat 2.8.2 fixes 14 vulnerabilities (integer overflow, out-of-bounds write, ..)
Sebastian Pipping
-
2026/06/25
[oss-security] PowerDNS Security Advisory 2026-09 for DNSdist: Multiple issues
Remi Gacogne
-
2026/06/25
[oss-security] PowerDNS Security Advisory 2026-08 for PowerDNS Recursor: Multiple issues
Otto Moerbeek
-
2026/06/25
[oss-security] PowerDNS Security Advisory 2026-07: Insufficient input validation of internal web server
Miod Vallat
-
2026/06/24
[oss-security] CVE-2026-54226: Apache Kvrocks: RESTORE IntSet Integer Overflow Leads to Remote DoS
Hulk Lin
-
2026/06/24
[oss-security] CVE-2026-46752: Apache Kvrocks: Stack buffer overflow in Lua bit.tohex()
Hulk Lin
-
2026/06/24
[oss-security] CVE-2026-46751: Apache Kvrocks: Does not remove the unsafe loadstring function from its Lua sandbox, allowing a user who can run EVAL scripts to load crafted, unvalidated bytecode that crashes the server process, resulting in a remote denial of service.
Hulk Lin
-
2026/06/24
[oss-security] CVE-2026-45188: Apache Kvrocks: Replication Fullsync Path Traversal via Unvalidated Filename Handling
Hulk Lin
-
2026/06/24
[oss-security] CVE-2026-41566: Apache Kvrocks: Improper permission for the APPLYBATCH command
Hulk Lin
-
2026/06/24
[oss-security] [vim-security] Out-of-bounds Write in SAL Soundfolding in Vim < 9.2.0725
Christian Brabandt
-
2026/06/24
[oss-security] CVE-2026-56130: Apache Shiro: Remember-me cookie isn't checked for expiry on the server
Lenny Primak
-
2026/06/24
[oss-security] CVE-2026-56091: Apache Shiro: Authentication bypass in Guice-Web integration
Lenny Primak
-
2026/06/24
Re: [oss-security] libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high)
Sevan Janiyan
-
2026/06/24
Re: [oss-security] Squid CVE-2026-47729 and CVE-2026-50012
Rolf Reintjes
-
2026/06/24
[oss-security] Multiple vulnerabilities in Jenkins plugins
Kevin Guerroudj
-
2026/06/24
Re: [oss-security] libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high)
Sevan Janiyan
-
2026/06/24
Re: [oss-security] Squid CVE-2026-47729 and CVE-2026-50012
Christian Fischer
-
2026/06/24
[oss-security] [SECURITY ADVISORIES] for curl 8.21.0
Daniel Stenberg
-
2026/06/23
Re: [oss-security] libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high)
Alan Coopersmith
-
2026/06/23
[oss-security] libssh2: CVE-2026-55200 (critical), CVE-2025-15661 (high), CVE-2026-55199 (high)
James Addison
-
2026/06/23
[oss-security] Plone: various security fixes 20260623
Maurits van Rees