Search CVE reports


Toggle filters

1 – 10 of 30303 results

Status is adjusted based on your filters.


CVE-2026-58381

Medium priority
Needs evaluation

A flaw was found in GIMP's PSP file format parser. A double-free condition occurs in the read_layer_block() function when processing a specially crafted PSP file. This could allow an attacker to cause memory...

1 affected package

gimp

Package 26.04 LTS
gimp Needs evaluation
Show less packages

CVE-2026-55952

Medium priority
Needs evaluation

The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1.3 ClientHello pre-shared key extension have equal length before passing them to the session ticket handler....

1 affected package

erlang

Package 26.04 LTS
erlang Needs evaluation
Show less packages

CVE-2026-55950

Medium priority
Needs evaluation

Time-of-check Time-of-use (TOCTOU) race condition vulnerability in Erlang/OTP ssl (dtls_packet_demux module) allows an unauthenticated remote attacker to crash all active DTLS sessions on a listener. A DTLS server listener uses a...

1 affected package

erlang

Package 26.04 LTS
erlang Needs evaluation
Show less packages

CVE-2026-54891

Medium priority
Needs evaluation

Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in Erlang/OTP ssl (tls_gen_connection module) allows a network-positioned attacker to inject unauthenticated plaintext that the...

1 affected package

erlang

Package 26.04 LTS
erlang Needs evaluation
Show less packages

CVE-2026-54887

Medium priority
Needs evaluation

Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl (DTLS server) allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup,...

1 affected package

erlang

Package 26.04 LTS
erlang Needs evaluation
Show less packages

CVE-2026-54886

Medium priority
Needs evaluation

Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Erlang OTP ssh (ssh_sftpd module) allows an authenticated SFTP user to render an SFTP channel permanently unresponsive. The handle_data/4 function in...

1 affected package

erlang

Package 26.04 LTS
erlang Needs evaluation
Show less packages

CVE-2026-54431

Medium priority
Needs evaluation

In liboauth2 the Demonstrating Proof-of-Possession (DPoP) verifier accepts a proof whose JSON Web Key (jwk) header contains private key material. RFC 9449 section 4.3 step 7 requires the verifier to reject such a...

1 affected package

liboauth2

Package 26.04 LTS
liboauth2 Needs evaluation
Show less packages

CVE-2026-54430

Medium priority
Needs evaluation

liboauth2 is vulnerable to Server-Side Request Forgery in oauth2_jose_jwks_aws_alb_resolve() function. The AWS ALB verifier reads both signer and kid from the unverified JWT header. If signer matches the configured ARN, kid is...

1 affected package

liboauth2

Package 26.04 LTS
liboauth2 Needs evaluation
Show less packages

CVE-2026-53422

Medium priority
Needs evaluation

Observable Response Discrepancy vulnerability in Erlang OTP ssh (ssh_sftpd module) allows an authenticated SFTP user to enumerate the existence of files and directories outside the configured root directory. The SSH_FXP_REALPATH...

1 affected package

erlang

Package 26.04 LTS
erlang Needs evaluation
Show less packages

CVE-2026-53358

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: use chan timer to close channels in cleanup_listen() l2cap_chan_close() removes the channel from conn->chan_l, which must be done under...

162 affected packages

linux, linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11...

Package 26.04 LTS
linux Needs evaluation
linux-hwe Not in release
linux-hwe-5.4 Not in release
linux-hwe-5.8 Not in release
linux-hwe-5.11 Not in release
linux-hwe-5.13 Not in release
linux-hwe-5.15 Not in release
linux-hwe-5.19 Not in release
linux-hwe-6.2 Not in release
linux-hwe-6.5 Not in release
linux-hwe-6.8 Not in release
linux-hwe-6.11 Not in release
linux-hwe-6.14 Not in release
linux-hwe-6.17 Not in release
linux-hwe-7.0 Not in release
linux-hwe-edge Not in release
linux-lts-xenial Not in release
linux-kvm Not in release
linux-allwinner-5.19 Not in release
linux-aws Needs evaluation
linux-aws-5.0 Not in release
linux-aws-5.3 Not in release
linux-aws-5.4 Not in release
linux-aws-5.8 Not in release
linux-aws-5.11 Not in release
linux-aws-5.13 Not in release
linux-aws-5.15 Not in release
linux-aws-5.19 Not in release
linux-aws-6.2 Not in release
linux-aws-6.5 Not in release
linux-aws-6.8 Not in release
linux-aws-6.14 Not in release
linux-aws-6.17 Not in release
linux-aws-hwe Not in release
linux-azure Needs evaluation
linux-azure-4.15 Not in release
linux-azure-5.3 Not in release
linux-azure-5.4 Not in release
linux-azure-5.8 Not in release
linux-azure-5.11 Not in release
linux-azure-5.13 Not in release
linux-azure-5.15 Not in release
linux-azure-5.19 Not in release
linux-azure-6.2 Not in release
linux-azure-6.5 Not in release
linux-azure-6.8 Not in release
linux-azure-6.11 Not in release
linux-azure-6.14 Not in release
linux-azure-6.17 Not in release
linux-azure-fde Needs evaluation
linux-azure-fde-5.15 Not in release
linux-azure-fde-5.19 Not in release
linux-azure-fde-6.2 Not in release
linux-azure-fde-6.8 Not in release
linux-azure-fde-6.14 Not in release
linux-azure-fde-6.17 Not in release
linux-azure-nvidia Not in release
linux-azure-nvidia-6.14 Not in release
linux-bluefield Not in release
linux-azure-edge Not in release
linux-fips Not in release
linux-aws-fips Not in release
linux-azure-fips Not in release
linux-gcp-fips Not in release
linux-gcp Needs evaluation
linux-gcp-4.15 Not in release
linux-gcp-5.3 Not in release
linux-gcp-5.4 Not in release
linux-gcp-5.8 Not in release
linux-gcp-5.11 Not in release
linux-gcp-5.13 Not in release
linux-gcp-5.15 Not in release
linux-gcp-5.19 Not in release
linux-gcp-6.2 Not in release
linux-gcp-6.5 Not in release
linux-gcp-6.8 Not in release
linux-gcp-6.11 Not in release
linux-gcp-6.14 Not in release
linux-gcp-6.17 Not in release
linux-gke Needs evaluation
linux-gke-4.15 Not in release
linux-gke-5.4 Not in release
linux-gke-5.15 Not in release
linux-gkeop Not in release
linux-gkeop-5.4 Not in release
linux-gkeop-5.15 Not in release
linux-ibm Needs evaluation
linux-ibm-5.4 Not in release
linux-ibm-5.15 Not in release
linux-ibm-6.8 Not in release
linux-intel-5.13 Not in release
linux-intel-iotg Not in release
linux-intel-iotg-5.15 Not in release
linux-iot Not in release
linux-intel-iot-realtime Not in release
linux-lowlatency Not in release
linux-lowlatency-hwe-5.15 Not in release
linux-lowlatency-hwe-5.19 Not in release
linux-lowlatency-hwe-6.2 Not in release
linux-lowlatency-hwe-6.5 Not in release
linux-lowlatency-hwe-6.8 Not in release
linux-lowlatency-hwe-6.11 Not in release
linux-nvidia Needs evaluation
linux-nvidia-6.2 Not in release
linux-nvidia-6.5 Not in release
linux-nvidia-6.8 Not in release
linux-nvidia-6.11 Not in release
linux-nvidia-6.17 Not in release
linux-nvidia-7.0 Not in release
linux-nvidia-bos Needs evaluation
linux-nvidia-lowlatency Not in release
linux-nvidia-tegra Not in release
linux-nvidia-tegra-5.15 Not in release
linux-nvidia-tegra-igx Not in release
linux-oracle Needs evaluation
linux-oracle-5.0 Not in release
linux-oracle-5.3 Not in release
linux-oracle-5.4 Not in release
linux-oracle-5.8 Not in release
linux-oracle-5.11 Not in release
linux-oracle-5.13 Not in release
linux-oracle-5.15 Not in release
linux-oracle-6.5 Not in release
linux-oracle-6.8 Not in release
linux-oracle-6.14 Not in release
linux-oracle-6.17 Not in release
linux-oem Not in release
linux-oem-5.6 Not in release
linux-oem-5.10 Not in release
linux-oem-5.13 Not in release
linux-oem-5.14 Not in release
linux-oem-5.17 Not in release
linux-oem-6.0 Not in release
linux-oem-6.1 Not in release
linux-oem-6.5 Not in release
linux-oem-6.8 Not in release
linux-oem-6.11 Not in release
linux-oem-6.14 Not in release
linux-oem-6.17 Not in release
linux-oem-7.0 Needs evaluation
linux-raspi Needs evaluation
linux-raspi2 Not in release
linux-raspi-5.4 Not in release
linux-raspi-realtime Not in release
linux-realtime Needs evaluation
linux-realtime-6.8 Not in release
linux-realtime-6.14 Not in release
linux-riscv Needs evaluation
linux-riscv-5.8 Not in release
linux-riscv-5.11 Not in release
linux-riscv-5.15 Not in release
linux-riscv-5.19 Not in release
linux-riscv-6.5 Not in release
linux-riscv-6.8 Not in release
linux-riscv-6.14 Not in release
linux-riscv-6.17 Not in release
linux-starfive-5.19 Not in release
linux-starfive-6.2 Not in release
linux-starfive-6.5 Not in release
linux-xilinx Not in release
linux-xilinx-zynqmp Not in release
linux-realtime-6.17 Not in release
Show all 162 packages Show less packages