Search CVE reports

151 – 160 of 65130 results

Detailed view

Sort by:

CVE-2026-4926

Medium priority

Needs evaluation

Impact: A bad regular expression is generated any time you have multiple sequential optional groups (curly brace syntax), such as `{a}{b}{c}:z`. The generated regex grows exponentially with the number of groups, causing denial...

1 affected package

node-path-to-regexp

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
node-path-to-regexp	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-4923

Medium priority

Needs evaluation

Impact: When using multiple wildcards, combined with at least one parameter, a regular expression can be generated that is vulnerable to ReDoS. This backtracking vulnerability requires the second wildcard to be somewhere other...

1 affected package

node-path-to-regexp

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
node-path-to-regexp	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-4867

Medium priority

Needs evaluation

Impact: A bad regular expression is generated any time you have three or more parameters within a single segment, separated by something that is not a period (.). For example, /:a-:b-:c or /:a-:b-:c-:d. The backtrack protection...

1 affected package

node-path-to-regexp

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
node-path-to-regexp	Not affected	Not affected	Needs evaluation	Needs evaluation

CVE-2026-33636

Medium priority

Needs evaluation

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. In versions 1.6.36 through 1.6.55, an out-of-bounds read and write exists in libpng's...

5 affected packages

libpng, libpng1.6, firefox, thunderbird, chromium-browser

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libpng	Not in release	Not in release	—	—
libpng1.6	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Not affected	—	—
chromium-browser	Not affected	Not affected	—	—

CVE-2026-33416

Medium priority

Needs evaluation

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. In versions 1.2.1 through 1.6.55, `png_set_tRNS` and `png_set_PLTE` each alias a...

5 affected packages

libpng, libpng1.6, firefox, thunderbird, chromium-browser

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libpng	Not in release	Not in release	—	—
libpng1.6	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
firefox	Not affected	Not affected	—	—
thunderbird	Not affected	Not affected	—	—
chromium-browser	Not affected	Not affected	—	—

CVE-2026-4897

Medium priority

Needs evaluation

A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the `polkit-agent-helper-1` setuid binary via standard input (stdin). This unbounded input can lead to an...

1 affected package

policykit-1

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
policykit-1	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-33413

Medium priority

Needs evaluation

etcd is a distributed key-value store for the data of a distributed system. Prior to versions 3.4.42, 3.5.28, and 3.6.9, unauthorized users may bypass authentication or authorization checks and call certain etcd functions...

1 affected package

etcd

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
etcd	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-33343

Medium priority

Needs evaluation

etcd is a distributed key-value store for the data of a distributed system. Prior to versions 3.4.42, 3.5.28, and 3.6.9, an authenticated user with RBAC restricted permissions on key ranges can use nested transactions to bypass...

1 affected package

etcd

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
etcd	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-4887

Medium priority

Needs evaluation

A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image....

1 affected package

gimp

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gimp	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-23398

Medium priority

Vulnerable

In the Linux kernel, the following vulnerability has been resolved: icmp: fix NULL pointer dereference in icmp_tag_validation() icmp_tag_validation() unconditionally dereferences the result of rcu_dereference(inet_protos[proto])...

157 affected packages

linux, linux-aws, linux-hwe, linux-hwe-5.4, linux-hwe-5.8...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-aws	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-hwe	Not in release	Not in release	Not in release	Ignored
linux-hwe-5.4	Not in release	Not in release	Not in release	Vulnerable
linux-hwe-5.8	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.11	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.13	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-hwe-5.19	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.2	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.5	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-hwe-6.11	Ignored	Not in release	Not in release	Not in release
linux-hwe-6.14	Vulnerable	Not in release	Not in release	Not in release
linux-hwe-6.17	Vulnerable	Not in release	Not in release	Not in release
linux-hwe-edge	Not in release	Not in release	Not in release	Ignored
linux-lts-xenial	Not in release	Not in release	Not in release	Not in release
linux-kvm	Not in release	Vulnerable	Vulnerable	Vulnerable
linux-allwinner-5.19	Not in release	Ignored	Not in release	Not in release
linux-aws-5.0	Not in release	Not in release	Not in release	Ignored
linux-aws-5.3	Not in release	Not in release	Not in release	Ignored
linux-aws-5.4	Not in release	Not in release	Not in release	Vulnerable
linux-aws-5.8	Not in release	Not in release	Ignored	Not in release
linux-aws-5.11	Not in release	Not in release	Ignored	Not in release
linux-aws-5.13	Not in release	Not in release	Ignored	Not in release
linux-aws-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-aws-5.19	Not in release	Ignored	Not in release	Not in release
linux-aws-6.2	Not in release	Ignored	Not in release	Not in release
linux-aws-6.5	Not in release	Ignored	Not in release	Not in release
linux-aws-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-aws-6.14	Vulnerable	Not in release	Not in release	Not in release
linux-aws-6.17	Vulnerable	Not in release	Not in release	Not in release
linux-aws-hwe	Not in release	Not in release	Not in release	Not in release
linux-azure-4.15	Not in release	Not in release	Not in release	Vulnerable
linux-azure-5.3	Not in release	Not in release	Not in release	Ignored
linux-azure-5.4	Not in release	Not in release	Not in release	Vulnerable
linux-azure-5.8	Not in release	Not in release	Ignored	Not in release
linux-gke	Vulnerable	Vulnerable	Ignored	Not in release
linux-azure-5.11	Not in release	Not in release	Ignored	Not in release
linux-azure-5.13	Not in release	Not in release	Ignored	Not in release
linux-azure-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-azure-5.19	Not in release	Ignored	Not in release	Not in release
linux-azure-6.2	Not in release	Ignored	Not in release	Not in release
linux-azure-6.5	Not in release	Ignored	Not in release	Not in release
linux-azure-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-azure-6.11	Ignored	Not in release	Not in release	Not in release
linux-azure-6.14	Vulnerable	Not in release	Not in release	Not in release
linux-azure-6.17	Vulnerable	Not in release	Not in release	Not in release
linux-azure-fde-5.15	Not in release	Not in release	Not affected	Not in release
linux-azure-fde-5.19	Not in release	Ignored	Not in release	Not in release
linux-azure-fde-6.2	Not in release	Ignored	Not in release	Not in release
linux-azure-fde-6.8	Not in release	Needs evaluation	Not in release	Not in release
linux-azure-fde-6.14	Vulnerable	Not in release	Not in release	Not in release
linux-azure-fde-6.17	Needs evaluation	Not in release	Not in release	Not in release
linux-azure-nvidia	Vulnerable	Not in release	Not in release	Not in release
linux-azure-nvidia-6.14	Vulnerable	Not in release	Not in release	Not in release
linux-bluefield	Not in release	Not in release	Vulnerable	Not in release
linux-azure-edge	Not in release	Not in release	Not in release	Ignored
linux-fips	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-aws-fips	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-azure-fips	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-gcp-fips	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-gcp-4.15	Not in release	Not in release	Not in release	Vulnerable
linux-gcp-5.3	Not in release	Not in release	Not in release	Ignored
linux-gcp-5.4	Not in release	Not in release	Not in release	Vulnerable
linux-gcp-5.8	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.11	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.13	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-gcp-5.19	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.2	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.5	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-gcp-6.11	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.14	Vulnerable	Not in release	Not in release	Not in release
linux-gcp-6.17	Vulnerable	Not in release	Not in release	Not in release
linux-gke-4.15	Not in release	Not in release	Not in release	Ignored
linux-gke-5.4	Not in release	Not in release	Not in release	Ignored
linux-gke-5.15	Not in release	Not in release	Ignored	Not in release
linux-gkeop	Vulnerable	Vulnerable	Ignored	Not in release
linux-gkeop-5.4	Not in release	Not in release	Not in release	Ignored
linux-gkeop-5.15	Not in release	Not in release	Ignored	Not in release
linux-ibm	Vulnerable	Vulnerable	Vulnerable	Not in release
linux-ibm-5.4	Not in release	Not in release	Not in release	Vulnerable
linux-ibm-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-ibm-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-intel-5.13	Not in release	Not in release	Ignored	Not in release
linux-intel-iotg	Not in release	Vulnerable	Not in release	Not in release
linux-intel-iotg-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-iot	Not in release	Not in release	Vulnerable	Not in release
linux-intel-iot-realtime	Not in release	Vulnerable	Not in release	Not in release
linux-lowlatency	Vulnerable	Vulnerable	Not in release	Not in release
linux-lowlatency-hwe-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-lowlatency-hwe-5.19	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.2	Not in release	Ignored	Not in release	Not in release
linux-oracle-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-lowlatency-hwe-6.5	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-lowlatency-hwe-6.11	Ignored	Not in release	Not in release	Not in release
linux-nvidia	Vulnerable	Vulnerable	Not in release	Not in release
linux-nvidia-6.2	Not in release	Ignored	Not in release	Not in release
linux-nvidia-6.5	Not in release	Ignored	Not in release	Not in release
linux-nvidia-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-nvidia-6.11	Ignored	Not in release	Not in release	Not in release
linux-nvidia-lowlatency	Vulnerable	Not in release	Not in release	Not in release
linux-nvidia-tegra	Vulnerable	Vulnerable	Not in release	Not in release
linux-nvidia-tegra-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-nvidia-tegra-igx	Not in release	Vulnerable	Not in release	Not in release
linux-oracle-5.0	Not in release	Not in release	Not in release	Ignored
linux-oracle-5.3	Not in release	Not in release	Not in release	Ignored
linux-oracle-5.4	Not in release	Not in release	Not in release	Vulnerable
linux-oracle-5.8	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.11	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.13	Not in release	Not in release	Ignored	Not in release
linux-oracle-6.5	Not in release	Ignored	Not in release	Not in release
linux-oracle-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-oracle-6.14	Ignored	Not in release	Not in release	Not in release
linux-oracle-6.17	Vulnerable	Not in release	Not in release	Not in release
linux-oem	Not in release	Not in release	Not in release	Ignored
linux-oem-5.6	Not in release	Not in release	Ignored	Not in release
linux-oem-5.10	Not in release	Not in release	Ignored	Not in release
linux-oem-5.13	Not in release	Not in release	Ignored	Not in release
linux-oem-5.14	Not in release	Not in release	Ignored	Not in release
linux-oem-5.17	Not in release	Ignored	Not in release	Not in release
linux-oem-6.0	Not in release	Ignored	Not in release	Not in release
linux-oem-6.1	Not in release	Ignored	Not in release	Not in release
linux-oem-6.5	Not in release	Ignored	Not in release	Not in release
linux-oem-6.8	Ignored	Not in release	Not in release	Not in release
linux-oem-6.11	Ignored	Not in release	Not in release	Not in release
linux-oem-6.14	Ignored	Not in release	Not in release	Not in release
linux-oem-6.17	Vulnerable	Not in release	Not in release	Not in release
linux-raspi2	Not in release	Not in release	Ignored	Ignored
linux-raspi-5.4	Not in release	Not in release	Not in release	Vulnerable
linux-raspi-realtime	Vulnerable	Not in release	Not in release	Not in release
linux-realtime-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-realtime-6.14	Ignored	Not in release	Not in release	Not in release
linux-riscv	Ignored	Ignored	Ignored	Not in release
linux-riscv-5.8	Not in release	Not in release	Ignored	Not in release
linux-riscv-5.11	Not in release	Not in release	Ignored	Not in release
linux-riscv-5.15	Not in release	Not in release	Vulnerable	Not in release
linux-riscv-5.19	Not in release	Ignored	Not in release	Not in release
linux-riscv-6.5	Not in release	Ignored	Not in release	Not in release
linux-riscv-6.8	Not in release	Vulnerable	Not in release	Not in release
linux-riscv-6.14	Ignored	Not in release	Not in release	Not in release
linux-riscv-6.17	Vulnerable	Not in release	Not in release	Not in release
linux-starfive-5.19	Not in release	Ignored	Not in release	Not in release
linux-starfive-6.2	Not in release	Ignored	Not in release	Not in release
linux-starfive-6.5	Not in release	Ignored	Not in release	Not in release
linux-xilinx	Vulnerable	Not in release	Not in release	Not in release
linux-xilinx-zynqmp	Not in release	Vulnerable	Vulnerable	Not in release
linux-realtime-6.17	Vulnerable	Not in release	Not in release	Not in release
linux-azure	Vulnerable	Vulnerable	Vulnerable	Ignored
linux-azure-fde	Vulnerable	Vulnerable	Ignored	Not in release
linux-gcp	Vulnerable	Vulnerable	Vulnerable	Ignored
linux-oracle	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-raspi	Vulnerable	Vulnerable	Vulnerable	Not in release
linux-realtime	Vulnerable	Vulnerable	Not in release	Not in release

Export to JSON

Results by page: