Autor: Peter Leibling

CVE-2026-32148 Lockfile checksums not verified in Hex allows dependency integrity bypass

Information published.

CVE-2026-6842 Nano: nano: local attacker can inject malicious .desktop launcher due to insecure directory permissions

Information published.

CVE-2017-20230 Storable versions before 3.05 for Perl has a stack overflow

Information published.

CVE-2026-28532 FRRouting < 10.5.3 Integer Overflow in OSPF TLV Parser Functions

Information published.

CVE-2026-31602 ALSA: ctxfi: Limit PTP to a single page

Information published.

CVE-2026-41080

Information published.

CVE-2026-31478 ksmbd: replace hardcoded hdr2_len with offsetof() in smb2_calc_max_out_buf_len()

Information published.

Chromium: CVE-2026-7338 Use after free in Cast

This CVE was assigned by Chrome.  Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information.

Chromium: CVE-2026-7339 Heap buffer overflow in WebRTC

This CVE was assigned by Chrome.  Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information.

Chromium: CVE-2026-7355 Use after free in Media

This CVE was assigned by Chrome.  Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information.

©  2026 Leibling.de. Erstellt mit WordPress und dem Highlight Theme