CVE-2026-42010

all versions

A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest-Shamir-Adleman - Pre-Shared Key) wrongfully matched usernames

7.1HIGH

CVE-2026-3833

all versions

A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of nameConstraints labe

6.5MEDIUM

CVE-2026-3832

all versions

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificat

3.7LOW

CVE-2026-6732

all versions

A flaw was found in libxml2. This vulnerability occurs when the library processes a specially crafted XML Schema Definition (XSD)

6.5MEDIUM

CVE-2026-1584

all versions

A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted Clien

7.5HIGH

CVE-2025-14821

all versions

A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of SSH (Secure Shell) c

7.8HIGH

CVE-2026-5745

all versions

A flaw was found in libarchive. A NULL pointer dereference vulnerability exists in the ACL parsing logic, specifically within the

5.5MEDIUM

CVE-2026-5704

all versions

A flaw was found in tar. A remote attacker could exploit this vulnerability by crafting a malicious archive, leading to hidden fil

5.0MEDIUM

CVE-2026-3184

all versions

A flaw was found in util-linux. Improper hostname canonicalization in the login(1) utility, when invoked with the -h option, c

3.7LOW

CVE-2026-2625

all versions

A flaw was found in rust-rpm-sequoia. An attacker can exploit this vulnerability by providing a specially crafted Red Hat Package

4.0MEDIUM

CVE-2026-5121

all versions

A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation

7.5HIGH

CVE-2026-2100

all versions

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote to

5.3MEDIUM

CVE-2026-0966

all versions

A flaw was found in libssh. The API function ssh_get_hexa() is vulnerable to a denial of service when processing zero-length inp

8.2HIGH

CVE-2026-0964

all versions

A malicious SCP server can send unexpected paths that could make the client application override local files outside of working di

6.3MEDIUM

CVE-2026-4775

all versions

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8

7.8HIGH

CVE-2026-4426

all versions

A flaw was found in libarchive. An Undefined Behavior vulnerability exists in the zisofs decompression logic, caused by improper v

6.5MEDIUM

CVE-2026-4424

all versions

A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to impro

7.5HIGH