Search CVE reports


Toggle filters

201 – 210 of 43755 results

Status is adjusted based on your filters.


CVE-2026-54059

Medium priority
Needs evaluation

Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py _load_bitmaps() read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes() without...

2 affected packages

pillow, pillow-python2

Package 22.04 LTS
pillow Needs evaluation
pillow-python2 Not in release
Show less packages

CVE-2026-41434

Medium priority

Not in release

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.10.0 and prior to version 4.11.0, an unbounded...

1 affected package

optee-os

Package 22.04 LTS
optee-os Not in release
Show less packages

CVE-2026-43825

Medium priority
Needs evaluation

Untrusted Java Deserialization in Apache OpenNLP SvmDoccatModel Versions Affected:   before 3.0.0-M4 (libsvm document categorization module; introduced in   OPENNLP-1808 and only present on the 3.x...

1 affected package

apache-opennlp

Package 22.04 LTS
apache-opennlp Needs evaluation
Show less packages

CVE-2026-40257

Medium priority

Not in release

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.21.0 and prior to version 4.11.0, the...

1 affected package

optee-os

Package 22.04 LTS
optee-os Not in release
Show less packages

CVE-2026-58203

Medium priority

Not in release

pydantic-settings provides settings management using Pydantic. From 2.12.0 until 2.14.2, NestedSecretsSettingsSource reads secret values from files in a configured secrets_dir. When secrets_nested_subdir=True, a directory entry...

1 affected package

pydantic-settings

Package 22.04 LTS
pydantic-settings Not in release
Show less packages

CVE-2026-13122

Medium priority
Not affected

OpenVPN version 2.6.0 through 2.6.20 and 2.7_alpha1 through 2.7.4 allows remote attackers to cause a denial of service via a malformed authentication token that triggers a reachable assertion when external-auth is enabled

1 affected package

openvpn

Package 22.04 LTS
openvpn Not affected
Show less packages

CVE-2026-58380

Medium priority
Needs evaluation

A flaw was found in GIMP's PNM file format parser. When parsing a specially crafted PNM file, the pnmscanner_gettoken() function writes a null terminator one byte past the end of a stack-allocated buffer due to an off-by-one error...

1 affected package

gimp

Package 22.04 LTS
gimp Needs evaluation
Show less packages

CVE-2026-13698

Medium priority
Needs evaluation

A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and 2.7_alpha1 through 2.7.4 allows remote attackers with a valid tls-crypt-v2 client key to potentially cause a denial of service

1 affected package

openvpn

Package 22.04 LTS
openvpn Needs evaluation
Show less packages

CVE-2025-15668

Medium priority
Needs evaluation

A vulnerability was identified in GPAC up to b40ce70f5. This issue affects the function sgpd_del_entry of the file src/isomedia/box_code_base.c of the component MP4Box. Such manipulation of the argument data leads to heap-based...

1 affected package

gpac

Package 22.04 LTS
gpac Needs evaluation
Show less packages

CVE-2025-15667

Medium priority
Needs evaluation

A vulnerability was determined in GPAC up to 2.5-DEV. This vulnerability affects the function gf_isom_nalu_sample_rewrite of the file src/isomedia/avc_ext.c of the component MP4Box. This manipulation of the argument nalu_out_bs...

1 affected package

gpac

Package 22.04 LTS
gpac Needs evaluation
Show less packages