| Bug | Description | Note |
|---|
| CVE-2015-10141 | An unauthenticated OS command injection vulnerability exists within Xd ... | check, unlcear if fixed in later versions than 2.5.5 upstream, clarifying with maintainer |
| CVE-2022-23538 | github.com/sylabs/scs-library-client is the Go client for the Singular ... | check details, might as well affect golang-github-apptainer-container-library-client |
| CVE-2023-26044 | react/http is an event-driven, streaming HTTP client and server implem ... | check, is embedded inicinga-php-thirdparty, icingaweb2-module-reactbundle possibly affected |
| CVE-2023-49316 | In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively larg ... | check if affecting ldap-account-manager or unused path |
| CVE-2023-50251 | php-svg-lib is an SVG file parsing / rendering library. Prior to versi ... | check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked |
| CVE-2023-50252 | php-svg-lib is an SVG file parsing / rendering library. Prior to versi ... | check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked |
| CVE-2023-50262 | Dompdf is an HTML to PDF converter for PHP. When parsing SVG images Do ... | check sources embedding php-dompdf if affected |
| CVE-2024-22420 | JupyterLab is an extensible environment for interactive and reproducib ... | check completeness, src:jupyter-notebook? |
| CVE-2024-22421 | JupyterLab is an extensible environment for interactive and reproducib ... | check completeness, src:jupyter-notebook? |
| CVE-2024-28180 | Package jose aims to provide an implementation of the Javascript Objec ... | check completeness |
| CVE-2024-44905 | go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerabil ... | check details |
| CVE-2025-4382 | A flaw was found in systems utilizing LUKS-encrypted disks with GRUB c ... | double check if vulnerability only considered present after grub_is_cli_disabled is introduced |
| CVE-2025-8114 | A flaw was found in libssh, a library that implements the SSH protocol ... | check upstream details |
| CVE-2025-8197 | A global buffer overflow vulnerability was found in the soup_header_na ... | check, clarify upstream status, details for libsoup2.4 |
| CVE-2025-45582 | GNU Tar through 1.35 allows file overwrite via directory traversal in ... | check details |
| CVE-2025-53964 | GoldenDict 1.5.0 and 1.5.1 has an exposed dangerous method that allows ... | check more on details of vulnerability |
| CVE-2025-54314 | Thor before 1.4.0 can construct an unsafe shell command from library i ... | check security impact of embedded copies (e.g. ruby3.3, ruby-foreman, rubygems) |