сообщество свободного программного обеспечения
Operating Systemsoss-project
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting сообщество свободного программного обеспечения.
- CVE-2026-56396phpMyFAQ - Privilege Escalation via Missing Authorization in editUser() and updateUserRights()8.8
- CVE-2026-46331net/sched: fix pedit partial COW leading to page cache corruption7.8
- CVE-2026-48853Remote code execution and denial of service via unsafe Erlang term deserialization in elixir-grpc/grpc9.8
- CVE-2026-53430grpc gzip decompression bomb in GRPC.Compressor.Gzip.decompress/17.5
- CVE-2026-50020Netty's HttpObjectDecoder skips arbitrary initial control characters when only initial CRLF characters are permitted5.3
- CVE-2026-50011Netty has unbounded pre-allocation in RedisArrayAggregator from RESP array length7.5
- CVE-2026-50010Netty's wrapping plain trust manager silently disables hostname verification7.5
- CVE-2026-48748Netty HTTP/3 QPACK Blocked Streams Memory Exhaustion7.5
- CVE-2026-44705tmp: Path Traversal via unsanitized prefix/postfix enables directory escape8.2
- CVE-2026-46520ImageMagick: Heap Buffer Over-Write in IPL decoder when reading multiple images of different dimensions7.5
- CVE-2026-45664ImageMagick: Policy Bypass in MNG coder could5.3
- CVE-2026-46316KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry9.3
- BDU:2026-07974Уязвимость функционала форматирования модуля парсера SQL для Python Sqlparse, позволяющая нарушителю вызвать отказ в обслуживании5.3
- CVE-2026-49975Apache HTTP Server: mod_http2 denial of service7.5
- CVE-2026-3238Samba: denial of service against ad dc wins server7.5