| Bug | Description | Note |
|---|
| CVE-2018-9389 | In ip6_append_data of ip6_output.c, there is a possible way to achieve ... | check, potentially src:linux upstream and not Android specific |
| CVE-2022-23538 | github.com/sylabs/scs-library-client is the Go client for the Singular ... | check details, might as well affect golang-github-apptainer-container-library-client |
| CVE-2023-26044 | react/http is an event-driven, streaming HTTP client and server implem ... | check, is embedded inicinga-php-thirdparty, icingaweb2-module-reactbundle possibly affected |
| CVE-2023-49316 | In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively larg ... | check if affecting ldap-account-manager or unused path |
| CVE-2023-50251 | php-svg-lib is an SVG file parsing / rendering library. Prior to versi ... | check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked |
| CVE-2023-50252 | php-svg-lib is an SVG file parsing / rendering library. Prior to versi ... | check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked |
| CVE-2023-50262 | Dompdf is an HTML to PDF converter for PHP. When parsing SVG images Do ... | check sources embedding php-dompdf if affected |
| CVE-2024-22420 | JupyterLab is an extensible environment for interactive and reproducib ... | check completeness, src:jupyter-notebook? |
| CVE-2024-22421 | JupyterLab is an extensible environment for interactive and reproducib ... | check completeness, src:jupyter-notebook? |
| CVE-2024-25176 | LuaJIT through 2.1 has a stack-buffer-overflow in lj_strfmt_wfnum in l ... | check |
| CVE-2024-25177 | LuaJIT through 2.1 has an unsinking of IR_FSTORE for NULL metatable, w ... | check |
| CVE-2024-25178 | LuaJIT through 2.1 has an out-of-bounds read in the stack-overflow han ... | check |
| CVE-2024-28180 | Package jose aims to provide an implementation of the Javascript Objec ... | check completeness |
| CVE-2024-36348 | A transient execution vulnerability in some AMD processors may allow a ... | check |
| CVE-2024-36349 | A transient execution vulnerability in some AMD processors may allow a ... | check |
| CVE-2024-36350 | A transient execution vulnerability in some AMD processors may allow a ... | check amd64-microcode update covering the updates |
| CVE-2024-36357 | A transient execution vulnerability in some AMD processors may allow a ... | check amd64-microcode update covering the updates |
| CVE-2024-44905 | go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerabil ... | check details |
| CVE-2025-4382 | A flaw was found in systems utilizing LUKS-encrypted disks with GRUB c ... | double check if vulnerability only considered present after grub_is_cli_disabled is introduced |
| CVE-2025-5333 | Remote attackers can execute arbitrary code in the context of the vuln ... | check |
| CVE-2025-6499 | A vulnerability classified as problematic was found in vstakhov libucl ... | check |
| CVE-2025-21195 | Improper link resolution before file access ('link following') in Serv ... | check |
| CVE-2025-23090 | With the aid of the diagnostics_channel utility, an event can be hooke ... | Duplicate of CVE-2025-23083, verify it with CNA, CNA contacted for rejection |
| CVE-2025-24508 | Extraction of Account Connectivity Credentials (ACCs) from the IT Mana ... | check |
| CVE-2025-27558 | IEEE P802.11-REVme D1.1 through D7.0 allows FragAttacks against mesh n ... | check |
| CVE-2025-34075 | An authenticated virtual machine escape vulnerability exists in HashiC ... | check |
| CVE-2025-45006 | Improper mstatus.SUM bit retention (non-zero) in Open-Source RISC-V Pr ... | check |
| CVE-2025-46733 | OP-TEE is a Trusted Execution Environment (TEE) designed as companion ... | check |
| CVE-2025-48172 | CHMLib through 2bef8d0, as used in SumatraPDF and other products, has ... | check |
| CVE-2025-52887 | cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTT ... | double check if only affects 0.21.0 version |