Search CVE reports


Toggle filters

31 – 40 of 42237 results

Status is adjusted based on your filters.


CVE-2026-13757

Medium priority
Vulnerable

A flaw was found in p11-kit. The RPC message attribute parsing functions p11_rpc_message_get_attribute() and p11_rpc_message_get_attribute_array_value() form a mutually-recursive call chain with no recursion depth limit when...

1 affected package

p11-kit

Package 20.04 LTS
p11-kit Vulnerable
Show less packages

CVE-2026-13676

Medium priority
Needs evaluation

fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize Unicode (IDN) hostnames for HTTP-family URLs. The IDN conversion path calls a helper that does not exist on the global URL constructor, silently leaving the host...

1 affected package

node-ajv

Package 20.04 LTS
node-ajv Needs evaluation
Show less packages

CVE-2026-13606

Medium priority
Needs evaluation

[Unknown description]

1 affected package

graphicsmagick

Package 20.04 LTS
graphicsmagick Needs evaluation
Show less packages

CVE-2026-13601

Medium priority
Needs evaluation

A flaw was found in Yelp due to an overly permissive Content Security Policy (CSP) implementation provided by yelp-xsl. A malicious Flatpak application can open crafted help content through the OpenURI portal. By embedding an...

1 affected package

yelp

Package 20.04 LTS
yelp Needs evaluation
Show less packages

CVE-2026-13595

Medium priority
Needs evaluation

A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache a raw pointer to a parent partition entry in a dynamically allocated array....

1 affected package

util-linux

Package 20.04 LTS
util-linux Needs evaluation
Show less packages

CVE-2026-13593

Medium priority
Needs evaluation

CSS::Minifier::XS versions before 0.14 for Perl have a memory leak when the entire document is minified away. The minify function has a memory leak when processing a document containing only characters to be removed, such as...

1 affected package

libcss-minifier-xs-perl

Package 20.04 LTS
libcss-minifier-xs-perl Needs evaluation
Show less packages

CVE-2026-13574

Low priority
Needs evaluation

A vulnerability was determined in llvm llvm-project up to 22.1.6. This impacts the function GCRelocateInst::getBasePtr in the library llvm/lib/IR/IntrinsicInst.cpp of the component Bitcode File Handler. This manipulation causes...

4 affected packages

llvm-toolchain-18, llvm-toolchain-19, llvm-toolchain-21, llvm-toolchain-22

Package 20.04 LTS
llvm-toolchain-18 Needs evaluation
llvm-toolchain-19
llvm-toolchain-21
llvm-toolchain-22
Show less packages

CVE-2026-13573

Low priority
Needs evaluation

A vulnerability was found in llvm llvm-project up to 22.1.6. This affects the function llvm::StringMap::insert in the library /lib/IR/ValueSymbolTable.cpp of the component ValueSymbolTable Module. The manipulation results in...

4 affected packages

llvm-toolchain-18, llvm-toolchain-19, llvm-toolchain-21, llvm-toolchain-22

Package 20.04 LTS
llvm-toolchain-18 Needs evaluation
llvm-toolchain-19
llvm-toolchain-21
llvm-toolchain-22
Show less packages

CVE-2026-13316

Medium priority
Needs evaluation

A flaw has been found in foreman when HTTP parameters are modified in http_proxies_controller and http_proxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman...

1 affected package

ruby-foreman

Package 20.04 LTS
ruby-foreman Needs evaluation
Show less packages

CVE-2026-13149

Medium priority
Needs evaluation

brace-expansion through 5.0.6 is vulnerable to denial of service. The expand() function exhibits exponential-time complexity in the number of consecutive non-expanding '{}' brace groups. An attacker who passes a crafted string to...

1 affected package

node-brace-expansion

Package 20.04 LTS
node-brace-expansion Needs evaluation
Show less packages