Log inCVE-2026-40225 In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output.
27 Mei 2026 om 10:42
Information published.
Normale weergave
Ontvangen β 27 Mei 2026
β
Microsoft Security
-
Microsoft Security
- CVE-2026-40225 In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output.
-
- CVE-2026-40226 In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.
CVE-2026-40226 In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.
27 Mei 2026 om 10:40
Information published.
CVE-2026-8711 NGINX JavaScript vulnerability
27 Mei 2026 om 10:40
Information published.
CVE-2026-4890 CVE-2026-4890
27 Mei 2026 om 10:40
Information published.
CVE-2026-5172 CVE-2026-5172
27 Mei 2026 om 10:40
Information published.
CVE-2026-2291 CVE-2026-2291
27 Mei 2026 om 10:40
Information published.
CVE-2026-4893 CVE-2026-4893
27 Mei 2026 om 10:39
Information published.
CVE-2026-4891 CVE-2026-4891
27 Mei 2026 om 10:39
Information published.
CVE-2026-5222 Cargo can be coerced to share credentials between registries
27 Mei 2026 om 10:18
Information published.
-
- CVE-2026-5223 Crates in third party registries can override the cached source of other crates
CVE-2026-5223 Crates in third party registries can override the cached source of other crates
27 Mei 2026 om 10:18
Information published.
-
- CVE-2026-8466 Unbounded buffer accumulation in multipart header parsing causes denial of service in cowboy
CVE-2026-8466 Unbounded buffer accumulation in multipart header parsing causes denial of service in cowboy
27 Mei 2026 om 10:18
Information published.
-
- CVE-2026-6402 webpack-dev-server vulnerable to cross-origin source code exposure on non-HTTPS origins
CVE-2026-6402 webpack-dev-server vulnerable to cross-origin source code exposure on non-HTTPS origins
27 Mei 2026 om 10:18
Information published.
CVE-2026-9256 NGINX ngx_http_rewrite_module vulnerability
27 Mei 2026 om 10:18
Information published.
-
- CVE-2026-9149 Libsolv: heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file
CVE-2026-9149 Libsolv: heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file
27 Mei 2026 om 10:18
Information published.
-
- CVE-2026-9150 Libsolv: stack-based buffer overflow in libsolv's debian metadata parser when handling sha384/sha512 checksums
CVE-2026-9150 Libsolv: stack-based buffer overflow in libsolv's debian metadata parser when handling sha384/sha512 checksums
27 Mei 2026 om 10:18
Information published.
-
- CVE-2026-42508 Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts
CVE-2026-42508 Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts
27 Mei 2026 om 10:18
Information published.
-
- CVE-2026-39833 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent
CVE-2026-39833 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent
27 Mei 2026 om 10:17
Information published.
-
- CVE-2026-46595 Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
CVE-2026-46595 Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
27 Mei 2026 om 10:17
Information published.
-
- CVE-2026-46598 Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent
CVE-2026-46598 Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent
27 Mei 2026 om 10:17
Information published.
-
- CVE-2026-39832 Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent
CVE-2026-39832 Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent
27 Mei 2026 om 10:16
Information published.
-
- CVE-2026-39828 Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh
CVE-2026-39828 Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh
27 Mei 2026 om 10:16
Information published.
-
- CVE-2026-39834 Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh
CVE-2026-39834 Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh
27 Mei 2026 om 10:15
Information published.
-
- CVE-2026-39835 Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh
CVE-2026-39835 Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh
27 Mei 2026 om 10:15
Information published.
-
- CVE-2026-39827 Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh
CVE-2026-39827 Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh
27 Mei 2026 om 10:14
Information published.
-
- CVE-2026-39831 Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
CVE-2026-39831 Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
27 Mei 2026 om 10:14
Information published.
-
- CVE-2026-46597 Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh
CVE-2026-46597 Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh
27 Mei 2026 om 10:13
Information published.
-
- CVE-2026-39830 Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
CVE-2026-39830 Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
27 Mei 2026 om 10:12
Information published.
-
- CVE-2026-39829 Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh
CVE-2026-39829 Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh
27 Mei 2026 om 10:12
Information published.
