Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-25541 (GCVE-0-2026-25541)
Vulnerability from cvelistv5 – Published: 2026-02-04 22:03 – Updated: 2026-02-05 15:13- CWE-680 - Integer Overflow to Buffer Overflow
| URL | Tags |
|---|---|
| https://github.com/tokio-rs/bytes/security/adviso… | x_refsource_CONFIRM |
| https://github.com/tokio-rs/bytes/commit/d0293b0e… | x_refsource_MISC |
| https://github.com/tokio-rs/bytes/releases/tag/v1.11.1 | x_refsource_MISC |
| https://rustsec.org/advisories/RUSTSEC-2026-0007.html | x_refsource_MISC |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-25541",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-02-05T15:13:12.910010Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-02-05T15:13:34.031Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "bytes",
"vendor": "tokio-rs",
"versions": [
{
"status": "affected",
"version": "\u003e= 1.2.1, \u003c 1.11.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"privilegesRequired": "NONE",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-680",
"description": "CWE-680: Integer Overflow to Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-04T22:03:53.554Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/tokio-rs/bytes/security/advisories/GHSA-434x-w66g-qw3r",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/tokio-rs/bytes/security/advisories/GHSA-434x-w66g-qw3r"
},
{
"name": "https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f"
},
{
"name": "https://github.com/tokio-rs/bytes/releases/tag/v1.11.1",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/tokio-rs/bytes/releases/tag/v1.11.1"
},
{
"name": "https://rustsec.org/advisories/RUSTSEC-2026-0007.html",
"tags": [
"x_refsource_MISC"
],
"url": "https://rustsec.org/advisories/RUSTSEC-2026-0007.html"
}
],
"source": {
"advisory": "GHSA-434x-w66g-qw3r",
"discovery": "UNKNOWN"
},
"title": "Bytes is vulnerable to integer overflow in BytesMut::reserve"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-25541",
"datePublished": "2026-02-04T22:03:53.554Z",
"dateReserved": "2026-02-02T19:59:47.375Z",
"dateUpdated": "2026-02-05T15:13:34.031Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-25541",
"date": "2026-07-15",
"epss": "0.00559",
"percentile": "0.42755"
},
"microsoft_vex": {
"current_release_date": "2026-06-03T01:42:45.000Z",
"cve": "CVE-2026-25541",
"id": "msrc_CVE-2026-25541",
"initial_release_date": "2026-02-02T00:00:00.000Z",
"product_status:fixed": "3",
"product_status:known_affected": "3",
"source": "Microsoft CSAF VEX",
"status": "final",
"title": "Bytes is vulnerable to integer overflow in BytesMut::reserve",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-25541.json",
"version": "5"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-25541\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-02-04T22:16:00.383\",\"lastModified\":\"2026-06-17T10:24:49.410\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \\\"v_capacity \u003e= new_cap + offset\\\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.\"},{\"lang\":\"es\",\"value\":\"Bytes es una librer\u00eda de utilidad para trabajar con bytes. Desde la versi\u00f3n 1.2.1 hasta antes de la 1.11.1, Bytes es vulnerable a desbordamiento de entero en BytesMut::reserve. En la ruta de recuperaci\u00f3n \u00fanica de BytesMut::reserve, si la condici\u00f3n \u0027v_capacity \u0026gt;= new_cap + offset\u0027 utiliza una adici\u00f3n sin verificar. Cuando new_cap + offset desborda usize en compilaciones de lanzamiento, esta condici\u00f3n puede pasar incorrectamente, haciendo que self.cap se establezca en un valor que excede la capacidad asignada real. Las API posteriores, como spare_capacity_mut(), conf\u00edan entonces en este valor de cap corrupto y pueden crear segmentos fuera de l\u00edmites, lo que lleva a UB. Este comportamiento es observable en compilaciones de lanzamiento (el desbordamiento de entero se ajusta), mientras que las compilaciones de depuraci\u00f3n entran en p\u00e1nico debido a las comprobaciones de desbordamiento. Este problema ha sido parcheado en la versi\u00f3n 1.11.1.\"}],\"affected\":[{\"source\":\"security-advisories@github.com\",\"affectedData\":[{\"vendor\":\"tokio-rs\",\"product\":\"bytes\",\"versions\":[{\"version\":\"\u003e= 1.2.1, \u003c 1.11.1\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"NONE\",\"vulnIntegrityImpact\":\"NONE\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"PROOF_OF_CONCEPT\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-02-05T15:13:12.910010Z\",\"id\":\"CVE-2026-25541\",\"options\":[{\"exploitation\":\"poc\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-680\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tokio-rs:bytes:*:*:*:*:*:rust:*:*\",\"versionStartIncluding\":\"1.2.1\",\"versionEndExcluding\":\"1.11.1\",\"matchCriteriaId\":\"20BFEB88-98B3-498A-9FFC-0C950ED8CF0D\"}]}]}],\"references\":[{\"url\":\"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/tokio-rs/bytes/releases/tag/v1.11.1\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Product\",\"Release Notes\"]},{\"url\":\"https://github.com/tokio-rs/bytes/security/advisories/GHSA-434x-w66g-qw3r\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"https://rustsec.org/advisories/RUSTSEC-2026-0007.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]}]}}",
"redhat_vex": {
"current_release_date": "2026-02-06T01:25:48+00:00",
"cve": "CVE-2026-25541",
"id": "CVE-2026-25541",
"initial_release_date": "2026-01-01T00:00:00+00:00",
"product_status:known_not_affected": "1",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "Bytes is vulnerable to integer overflow in BytesMut::reserve",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-25541.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-25541\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-02-05T15:13:12.910010Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-02-05T15:13:21.073Z\"}}], \"cna\": {\"title\": \"Bytes is vulnerable to integer overflow in BytesMut::reserve\", \"source\": {\"advisory\": \"GHSA-434x-w66g-qw3r\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"NONE\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"tokio-rs\", \"product\": \"bytes\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 1.2.1, \u003c 1.11.1\"}]}], \"references\": [{\"url\": \"https://github.com/tokio-rs/bytes/security/advisories/GHSA-434x-w66g-qw3r\", \"name\": \"https://github.com/tokio-rs/bytes/security/advisories/GHSA-434x-w66g-qw3r\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\", \"name\": \"https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/tokio-rs/bytes/releases/tag/v1.11.1\", \"name\": \"https://github.com/tokio-rs/bytes/releases/tag/v1.11.1\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://rustsec.org/advisories/RUSTSEC-2026-0007.html\", \"name\": \"https://rustsec.org/advisories/RUSTSEC-2026-0007.html\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \\\"v_capacity \u003e= new_cap + offset\\\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-680\", \"description\": \"CWE-680: Integer Overflow to Buffer Overflow\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-02-04T22:03:53.554Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-25541\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-02-05T15:13:34.031Z\", \"dateReserved\": \"2026-02-02T19:59:47.375Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-02-04T22:03:53.554Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
CERTFR-2026-AVI-0627
Vulnerability from certfr_avis - Published: 2026-05-21 - Updated: 2026-05-21
De multiples vulnérabilités ont été découvertes dans les produits Splunk. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, une atteinte à la confidentialité des données et un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Splunk | Splunk Enterprise | Splunk Enterprise versions 10.2.x antérieures à 10.2.3 | ||
| Splunk | N/A | Splunk AI Toolkit versions 5.7.x antérieures à 5.7.3 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 9.3.2411 antérieures à 9.3.2411.129 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 10.3.2512 antérieures à 10.3.2512.9 | ||
| Splunk | Splunk | image Docker Splunk versions 10.2.x antérieures à 10.2.2 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 10.4.2603 antérieures à 10.4.2603.1 | ||
| Splunk | Splunk AppDynamics Database Agent | Splunk AppDynamics Database Agent versions antérieures à 26.4.0 | ||
| Splunk | Splunk | image Docker Splunk versions 9.4.x antérieures à 9.4.10 | ||
| Splunk | Splunk User Behavior Analytics (UBA) | Splunk User Behavior Analytics versions 5.4.x antérieures à 5.4.5 | ||
| Splunk | Splunk AppDynamics Private Synthetic Agent | Splunk AppDynamics Private Synthetic Agent versions antérieures à 26.4.0 | ||
| Splunk | Splunk AppDynamics Analytics Agent | Splunk AppDynamics Analytics Agent versions antérieures à 26.4.0 | ||
| Splunk | N/A | Splunk AppDynamics Cluster Agent versions antérieures à 26.4.0 | ||
| Splunk | Splunk AppDynamics Machine Agent | Splunk AppDynamics Machine Agent versions antérieures à 26.4.0 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 10.2.2510 antérieures à 10.2.2510.11 | ||
| Splunk | N/A | Splunk AppDynamics Python Agent versions antérieures à 26.4.1 | ||
| Splunk | Splunk | image Docker Splunk versions 10.0.x antérieures à 10.0.5 | ||
| Splunk | N/A | Splunk Add-on for Tomcat versions 3.3.x antérieures à 3.3.1 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 10.1.2507 antérieures à 10.1.2507.21 | ||
| Splunk | Splunk Enterprise | Splunk Enterprise versions 10.0.x antérieures à 10.0.6 | ||
| Splunk | N/A | Splunk AppDynamics Apache Web Server Agent versions 25.11.x antérieures à 25.11.1 | ||
| Splunk | Splunk Enterprise | Splunk Enterprise versions 9.4.x antérieures à 9.4.11 | ||
| Splunk | Splunk | image Docker Splunk versions 9.3.x antérieures à 9.3.11 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 10.0.2503 antérieures à 10.0.2503.13 | ||
| Splunk | Universal Forwarder | Splunk Universal Forwarder versions 9.4.x antérieures à 9.4.11 | ||
| Splunk | Splunk Enterprise | Splunk Enterprise versions 9.3.x antérieures à 9.3.12 | ||
| Splunk | Splunk AppDynamics Java Agent | Splunk AppDynamics Java Agent versions antérieures à 26.4.0 |
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Splunk Enterprise versions 10.2.x ant\u00e9rieures \u00e0 10.2.3",
"product": {
"name": "Splunk Enterprise",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AI Toolkit versions 5.7.x ant\u00e9rieures \u00e0 5.7.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 9.3.2411 ant\u00e9rieures \u00e0 9.3.2411.129",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 10.3.2512 ant\u00e9rieures \u00e0 10.3.2512.9",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "image Docker Splunk versions 10.2.x ant\u00e9rieures \u00e0 10.2.2",
"product": {
"name": "Splunk",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 10.4.2603 ant\u00e9rieures \u00e0 10.4.2603.1",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Database Agent versions ant\u00e9rieures \u00e0 26.4.0",
"product": {
"name": "Splunk AppDynamics Database Agent",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "image Docker Splunk versions 9.4.x ant\u00e9rieures \u00e0 9.4.10",
"product": {
"name": "Splunk",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk User Behavior Analytics versions 5.4.x ant\u00e9rieures \u00e0 5.4.5",
"product": {
"name": "Splunk User Behavior Analytics (UBA)",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Private Synthetic Agent versions ant\u00e9rieures \u00e0 26.4.0",
"product": {
"name": "Splunk AppDynamics Private Synthetic Agent",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Analytics Agent versions ant\u00e9rieures \u00e0 26.4.0",
"product": {
"name": "Splunk AppDynamics Analytics Agent",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Cluster Agent versions ant\u00e9rieures \u00e0 26.4.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Machine Agent versions ant\u00e9rieures \u00e0 26.4.0",
"product": {
"name": "Splunk AppDynamics Machine Agent",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 10.2.2510 ant\u00e9rieures \u00e0 10.2.2510.11",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Python Agent versions ant\u00e9rieures \u00e0 26.4.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "image Docker Splunk versions 10.0.x ant\u00e9rieures \u00e0 10.0.5",
"product": {
"name": "Splunk",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Add-on for Tomcat versions 3.3.x ant\u00e9rieures \u00e0 3.3.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 10.1.2507 ant\u00e9rieures \u00e0 10.1.2507.21",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Enterprise versions 10.0.x ant\u00e9rieures \u00e0 10.0.6",
"product": {
"name": "Splunk Enterprise",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Apache Web Server Agent versions 25.11.x ant\u00e9rieures \u00e0 25.11.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Enterprise versions 9.4.x ant\u00e9rieures \u00e0 9.4.11",
"product": {
"name": "Splunk Enterprise",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "image Docker Splunk versions 9.3.x ant\u00e9rieures \u00e0 9.3.11",
"product": {
"name": "Splunk",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 10.0.2503 ant\u00e9rieures \u00e0 10.0.2503.13",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Universal Forwarder versions 9.4.x ant\u00e9rieures \u00e0 9.4.11",
"product": {
"name": "Universal Forwarder",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Enterprise versions 9.3.x ant\u00e9rieures \u00e0 9.3.12",
"product": {
"name": "Splunk Enterprise",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Java Agent versions ant\u00e9rieures \u00e0 26.4.0",
"product": {
"name": "Splunk AppDynamics Java Agent",
"vendor": {
"name": "Splunk",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-26007",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-26007"
},
{
"name": "CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"name": "CVE-2025-58436",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58436"
},
{
"name": "CVE-2018-19361",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19361"
},
{
"name": "CVE-2023-0216",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0216"
},
{
"name": "CVE-2026-32777",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32777"
},
{
"name": "CVE-2025-61730",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61730"
},
{
"name": "CVE-2024-5321",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5321"
},
{
"name": "CVE-2019-17267",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17267"
},
{
"name": "CVE-2026-41324",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41324"
},
{
"name": "CVE-2024-1597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1597"
},
{
"name": "CVE-2026-42308",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42308"
},
{
"name": "CVE-2023-0401",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0401"
},
{
"name": "CVE-2026-21933",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21933"
},
{
"name": "CVE-2025-29775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29775"
},
{
"name": "CVE-2026-3543",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3543"
},
{
"name": "CVE-2026-21932",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21932"
},
{
"name": "CVE-2018-19362",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19362"
},
{
"name": "CVE-2025-66199",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66199"
},
{
"name": "CVE-2025-15282",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-15282"
},
{
"name": "CVE-2026-33871",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33871"
},
{
"name": "CVE-2026-22737",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22737"
},
{
"name": "CVE-2023-43642",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43642"
},
{
"name": "CVE-2025-68384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68384"
},
{
"name": "CVE-2024-9681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9681"
},
{
"name": "CVE-2025-58190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58190"
},
{
"name": "CVE-2025-68973",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68973"
},
{
"name": "CVE-2026-21637",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21637"
},
{
"name": "CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"name": "CVE-2026-22801",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22801"
},
{
"name": "CVE-2026-42309",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42309"
},
{
"name": "CVE-2023-49082",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49082"
},
{
"name": "CVE-2023-1370",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1370"
},
{
"name": "CVE-2026-39892",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39892"
},
{
"name": "CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"name": "CVE-2018-14719",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14719"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2025-22872",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22872"
},
{
"name": "CVE-2025-29774",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29774"
},
{
"name": "CVE-2025-28164",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-28164"
},
{
"name": "CVE-2026-3540",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3540"
},
{
"name": "CVE-2024-10220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10220"
},
{
"name": "CVE-2024-45339",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45339"
},
{
"name": "CVE-2020-9546",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9546"
},
{
"name": "CVE-2025-46762",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46762"
},
{
"name": "CVE-2023-37920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37920"
},
{
"name": "CVE-2025-68156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68156"
},
{
"name": "CVE-2026-25990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25990"
},
{
"name": "CVE-2026-32288",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32288"
},
{
"name": "CVE-2022-45868",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45868"
},
{
"name": "CVE-2025-69223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69223"
},
{
"name": "CVE-2025-47907",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47907"
},
{
"name": "CVE-2020-10673",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10673"
},
{
"name": "CVE-2024-12797",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12797"
},
{
"name": "CVE-2025-30065",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30065"
},
{
"name": "CVE-2025-12084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12084"
},
{
"name": "CVE-2024-12086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12086"
},
{
"name": "CVE-2024-25638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25638"
},
{
"name": "CVE-2025-49146",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49146"
},
{
"name": "CVE-2026-34876",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34876"
},
{
"name": "CVE-2025-4432",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4432"
},
{
"name": "CVE-2023-5590",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5590"
},
{
"name": "CVE-2025-11468",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11468"
},
{
"name": "CVE-2020-36181",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36181"
},
{
"name": "CVE-2020-9548",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9548"
},
{
"name": "CVE-2020-36182",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36182"
},
{
"name": "CVE-2025-6069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6069"
},
{
"name": "CVE-2020-24616",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24616"
},
{
"name": "CVE-2025-69419",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69419"
},
{
"name": "CVE-2025-6075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6075"
},
{
"name": "CVE-2026-27456",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27456"
},
{
"name": "CVE-2025-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4330"
},
{
"name": "CVE-2025-58060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58060"
},
{
"name": "CVE-2020-36185",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36185"
},
{
"name": "CVE-2023-50782",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50782"
},
{
"name": "CVE-2025-4138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4138"
},
{
"name": "CVE-2025-61731",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61731"
},
{
"name": "CVE-2023-0215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0215"
},
{
"name": "CVE-2026-1605",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-1605"
},
{
"name": "CVE-2022-25647",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25647"
},
{
"name": "CVE-2023-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0286"
},
{
"name": "CVE-2026-27143",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27143"
},
{
"name": "CVE-2024-47561",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47561"
},
{
"name": "CVE-2019-16942",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16942"
},
{
"name": "CVE-2026-3061",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3061"
},
{
"name": "CVE-2026-27171",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27171"
},
{
"name": "CVE-2020-9547",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9547"
},
{
"name": "CVE-2026-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3731"
},
{
"name": "CVE-2020-36179",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36179"
},
{
"name": "CVE-2026-35469",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35469"
},
{
"name": "CVE-2026-3062",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3062"
},
{
"name": "CVE-2018-14718",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14718"
},
{
"name": "CVE-2020-10650",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10650"
},
{
"name": "CVE-2024-24791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24791"
},
{
"name": "CVE-2026-1861",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-1861"
},
{
"name": "CVE-2025-66516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66516"
},
{
"name": "CVE-2023-4807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4807"
},
{
"name": "CVE-2023-2251",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2251"
},
{
"name": "CVE-2026-25833",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25833"
},
{
"name": "CVE-2024-13176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13176"
},
{
"name": "CVE-2025-49844",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49844"
},
{
"name": "CVE-2020-36186",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36186"
},
{
"name": "CVE-2025-15467",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-15467"
},
{
"name": "CVE-2020-36189",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36189"
},
{
"name": "CVE-2024-58251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58251"
},
{
"name": "CVE-2019-20444",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20444"
},
{
"name": "CVE-2025-9820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9820"
},
{
"name": "CVE-2020-35490",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35490"
},
{
"name": "CVE-2026-33870",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33870"
},
{
"name": "CVE-2026-22690",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22690"
},
{
"name": "CVE-2025-55130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55130"
},
{
"name": "CVE-2023-34454",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34454"
},
{
"name": "CVE-2022-46337",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46337"
},
{
"name": "CVE-2021-20190",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20190"
},
{
"name": "CVE-2021-35516",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35516"
},
{
"name": "CVE-2026-3544",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3544"
},
{
"name": "CVE-2024-12084",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12084"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2020-13949",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13949"
},
{
"name": "CVE-2018-19360",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19360"
},
{
"name": "CVE-2026-2648",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2648"
},
{
"name": "CVE-2023-47627",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47627"
},
{
"name": "CVE-2026-40200",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40200"
},
{
"name": "CVE-2024-13009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13009"
},
{
"name": "CVE-2026-27025",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27025"
},
{
"name": "CVE-2025-55131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55131"
},
{
"name": "CVE-2026-32778",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32778"
},
{
"name": "CVE-2026-5121",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-5121"
},
{
"name": "CVE-2024-12798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12798"
},
{
"name": "CVE-2025-0938",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0938"
},
{
"name": "CVE-2025-27210",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27210"
},
{
"name": "CVE-2019-16335",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16335"
},
{
"name": "CVE-2023-34453",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34453"
},
{
"name": "CVE-2022-40149",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40149"
},
{
"name": "CVE-2024-41996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41996"
},
{
"name": "CVE-2025-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50106"
},
{
"name": "CVE-2025-59465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59465"
},
{
"name": "CVE-2023-3635",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3635"
},
{
"name": "CVE-2026-21715",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21715"
},
{
"name": "CVE-2020-1971",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1971"
},
{
"name": "CVE-2026-34073",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34073"
},
{
"name": "CVE-2026-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27144"
},
{
"name": "CVE-2018-7489",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7489"
},
{
"name": "CVE-2025-58057",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58057"
},
{
"name": "CVE-2025-8291",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8291"
},
{
"name": "CVE-2026-22795",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22795"
},
{
"name": "CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"name": "CVE-2019-14893",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14893"
},
{
"name": "CVE-2019-10202",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10202"
},
{
"name": "CVE-2026-25834",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25834"
},
{
"name": "CVE-2026-21925",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21925"
},
{
"name": "CVE-2026-3537",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3537"
},
{
"name": "CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"name": "CVE-2025-30754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30754"
},
{
"name": "CVE-2025-69225",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69225"
},
{
"name": "CVE-2025-62718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62718"
},
{
"name": "CVE-2026-27024",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27024"
},
{
"name": "CVE-2023-0217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0217"
},
{
"name": "CVE-2021-35517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35517"
},
{
"name": "CVE-2026-4424",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4424"
},
{
"name": "CVE-2025-67030",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-67030"
},
{
"name": "CVE-2026-34877",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34877"
},
{
"name": "CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"name": "CVE-2026-27142",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27142"
},
{
"name": "CVE-2026-28389",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28389"
},
{
"name": "CVE-2021-23358",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23358"
},
{
"name": "CVE-2025-31133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31133"
},
{
"name": "CVE-2025-8194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8194"
},
{
"name": "CVE-2024-11053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11053"
},
{
"name": "CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"name": "CVE-2026-34875",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34875"
},
{
"name": "CVE-2026-21717",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21717"
},
{
"name": "CVE-2025-64505",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64505"
},
{
"name": "CVE-2025-69227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69227"
},
{
"name": "CVE-2025-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50181"
},
{
"name": "CVE-2020-10672",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10672"
},
{
"name": "CVE-2022-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3510"
},
{
"name": "CVE-2022-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3509"
},
{
"name": "CVE-2025-1795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1795"
},
{
"name": "CVE-2021-28165",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28165"
},
{
"name": "CVE-2025-69421",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69421"
},
{
"name": "CVE-2021-37137",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37137"
},
{
"name": "CVE-2019-14439",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14439"
},
{
"name": "CVE-2025-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4517"
},
{
"name": "CVE-2025-58188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58188"
},
{
"name": "CVE-2026-34478",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34478"
},
{
"name": "CVE-2026-33055",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33055"
},
{
"name": "CVE-2025-4674",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4674"
},
{
"name": "CVE-2025-4565",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4565"
},
{
"name": "CVE-2025-11143",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11143"
},
{
"name": "CVE-2026-34480",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34480"
},
{
"name": "CVE-2017-7658",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7658"
},
{
"name": "CVE-2026-27699",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27699"
},
{
"name": "CVE-2022-40150",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40150"
},
{
"name": "CVE-2025-47911",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47911"
},
{
"name": "CVE-2025-28162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-28162"
},
{
"name": "CVE-2023-22946",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22946"
},
{
"name": "CVE-2026-33228",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33228"
},
{
"name": "CVE-2020-36187",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36187"
},
{
"name": "CVE-2026-40175",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40175"
},
{
"name": "CVE-2025-13151",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13151"
},
{
"name": "CVE-2025-4435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4435"
},
{
"name": "CVE-2024-21634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21634"
},
{
"name": "CVE-2021-36090",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36090"
},
{
"name": "CVE-2026-21716",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21716"
},
{
"name": "CVE-2025-64506",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64506"
},
{
"name": "CVE-2024-53899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53899"
},
{
"name": "CVE-2025-68161",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68161"
},
{
"name": "CVE-2026-28351",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28351"
},
{
"name": "CVE-2025-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52881"
},
{
"name": "CVE-2023-34455",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34455"
},
{
"name": "CVE-2024-5535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5535"
},
{
"name": "CVE-2024-29131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29131"
},
{
"name": "CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"name": "CVE-2025-14174",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14174"
},
{
"name": "CVE-2024-12718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12718"
},
{
"name": "CVE-2026-22796",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22796"
},
{
"name": "CVE-2025-64720",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64720"
},
{
"name": "CVE-2024-30251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30251"
},
{
"name": "CVE-2020-11620",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11620"
},
{
"name": "CVE-2026-2650",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2650"
},
{
"name": "CVE-2026-3541",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3541"
},
{
"name": "CVE-2024-12801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12801"
},
{
"name": "CVE-2021-37136",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37136"
},
{
"name": "CVE-2018-12022",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12022"
},
{
"name": "CVE-2026-3539",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3539"
},
{
"name": "CVE-2026-34874",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34874"
},
{
"name": "CVE-2026-21712",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21712"
},
{
"name": "CVE-2018-5968",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5968"
},
{
"name": "CVE-2025-61732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61732"
},
{
"name": "CVE-2024-27306",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27306"
},
{
"name": "CVE-2025-61723",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61723"
},
{
"name": "CVE-2025-9232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9232"
},
{
"name": "CVE-2024-8775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8775"
},
{
"name": "CVE-2026-3538",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3538"
},
{
"name": "CVE-2025-55159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55159"
},
{
"name": "CVE-2025-55132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55132"
},
{
"name": "CVE-2026-22702",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22702"
},
{
"name": "CVE-2025-46394",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46394"
},
{
"name": "CVE-2025-66471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66471"
},
{
"name": "CVE-2020-24750",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24750"
},
{
"name": "CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"name": "CVE-2026-21441",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21441"
},
{
"name": "CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"name": "CVE-2025-13836",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13836"
},
{
"name": "CVE-2023-39410",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39410"
},
{
"name": "CVE-2025-68390",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68390"
},
{
"name": "CVE-2024-11079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11079"
},
{
"name": "CVE-2026-22732",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22732"
},
{
"name": "CVE-2025-61725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61725"
},
{
"name": "CVE-2026-25210",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25210"
},
{
"name": "CVE-2026-28387",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28387"
},
{
"name": "CVE-2025-65018",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-65018"
},
{
"name": "CVE-2026-28388",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28388"
},
{
"name": "CVE-2026-40192",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40192"
},
{
"name": "CVE-2025-66293",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66293"
},
{
"name": "CVE-2024-35195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35195"
},
{
"name": "CVE-2019-16943",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16943"
},
{
"name": "CVE-2026-32289",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32289"
},
{
"name": "CVE-2026-0865",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0865"
},
{
"name": "CVE-2026-21714",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21714"
},
{
"name": "CVE-2024-12087",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12087"
},
{
"name": "CVE-2017-7525",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7525"
},
{
"name": "CVE-2026-4111",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4111"
},
{
"name": "CVE-2026-24515",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-24515"
},
{
"name": "CVE-2024-26130",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26130"
},
{
"name": "CVE-2019-20330",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20330"
},
{
"name": "CVE-2024-41110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41110"
},
{
"name": "CVE-2025-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50059"
},
{
"name": "CVE-2026-2441",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2441"
},
{
"name": "CVE-2020-14195",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14195"
},
{
"name": "CVE-2025-69228",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69228"
},
{
"name": "CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"name": "CVE-2020-35491",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35491"
},
{
"name": "CVE-2019-17531",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17531"
},
{
"name": "CVE-2025-1948",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1948"
},
{
"name": "CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"name": "CVE-2025-27553",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27553"
},
{
"name": "CVE-2025-30761",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30761"
},
{
"name": "CVE-2022-4450",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4450"
},
{
"name": "CVE-2026-27888",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27888"
},
{
"name": "CVE-2024-7592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7592"
},
{
"name": "CVE-2026-33056",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33056"
},
{
"name": "CVE-2026-25835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25835"
},
{
"name": "CVE-2025-68160",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68160"
},
{
"name": "CVE-2022-3996",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3996"
},
{
"name": "CVE-2020-14061",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14061"
},
{
"name": "CVE-2025-52565",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52565"
},
{
"name": "CVE-2017-7657",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7657"
},
{
"name": "CVE-2025-67735",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-67735"
},
{
"name": "CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"name": "CVE-2026-0965",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0965"
},
{
"name": "CVE-2020-36242",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36242"
},
{
"name": "CVE-2022-42004",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42004"
},
{
"name": "CVE-2022-40023",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40023"
},
{
"name": "CVE-2020-11619",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11619"
},
{
"name": "CVE-2025-9086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9086"
},
{
"name": "CVE-2026-34872",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34872"
},
{
"name": "CVE-2025-58187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58187"
},
{
"name": "CVE-2024-29371",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29371"
},
{
"name": "CVE-2020-36183",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36183"
},
{
"name": "CVE-2026-3542",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3542"
},
{
"name": "CVE-2023-49081",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49081"
},
{
"name": "CVE-2020-8840",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8840"
},
{
"name": "CVE-2026-34871",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34871"
},
{
"name": "CVE-2025-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22871"
},
{
"name": "CVE-2025-69226",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69226"
},
{
"name": "CVE-2026-3536",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3536"
},
{
"name": "CVE-2026-28390",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28390"
},
{
"name": "CVE-2019-0205",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0205"
},
{
"name": "CVE-2024-32650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32650"
},
{
"name": "CVE-2026-34873",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34873"
},
{
"name": "CVE-2026-6042",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6042"
},
{
"name": "CVE-2024-47081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47081"
},
{
"name": "CVE-2019-10172",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10172"
},
{
"name": "CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"name": "CVE-2024-55549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55549"
},
{
"name": "CVE-2024-0397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0397"
},
{
"name": "CVE-2020-36184",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36184"
},
{
"name": "CVE-2026-0967",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0967"
},
{
"name": "CVE-2025-69418",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69418"
},
{
"name": "CVE-2025-4516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4516"
},
{
"name": "CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"name": "CVE-2025-59466",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59466"
},
{
"name": "CVE-2025-15468",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-15468"
},
{
"name": "CVE-2026-25639",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25639"
},
{
"name": "CVE-2026-21713",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21713"
},
{
"name": "CVE-2020-36180",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36180"
},
{
"name": "CVE-2018-12023",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12023"
},
{
"name": "CVE-2026-0968",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0968"
},
{
"name": "CVE-2026-27140",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27140"
},
{
"name": "CVE-2018-14720",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14720"
},
{
"name": "CVE-2024-52304",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52304"
},
{
"name": "CVE-2020-36518",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36518"
},
{
"name": "CVE-2026-21945",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21945"
},
{
"name": "CVE-2023-5408",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5408"
},
{
"name": "CVE-2025-69277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69277"
},
{
"name": "CVE-2026-25541",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25541"
},
{
"name": "CVE-2026-31789",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31789"
},
{
"name": "CVE-2026-22735",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22735"
},
{
"name": "CVE-2026-42311",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42311"
},
{
"name": "CVE-2026-20239",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20239"
},
{
"name": "CVE-2025-24855",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24855"
},
{
"name": "CVE-2026-3063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3063"
},
{
"name": "CVE-2019-0210",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0210"
},
{
"name": "CVE-2025-30749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30749"
},
{
"name": "CVE-2024-27308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27308"
},
{
"name": "CVE-2026-42310",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42310"
},
{
"name": "CVE-2026-22695",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22695"
},
{
"name": "CVE-2026-27139",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27139"
},
{
"name": "CVE-2026-20240",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20240"
},
{
"name": "CVE-2023-49083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49083"
},
{
"name": "CVE-2017-15095",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15095"
},
{
"name": "CVE-2019-14540",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14540"
},
{
"name": "CVE-2024-36114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36114"
},
{
"name": "CVE-2019-12086",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-12086"
},
{
"name": "CVE-2018-14721",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14721"
},
{
"name": "CVE-2025-48924",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48924"
},
{
"name": "CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"name": "CVE-2025-66566",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66566"
},
{
"name": "CVE-2025-11187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11187"
},
{
"name": "CVE-2017-7656",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7656"
},
{
"name": "CVE-2026-27026",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27026"
},
{
"name": "CVE-2026-2673",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2673"
},
{
"name": "CVE-2018-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20225"
},
{
"name": "CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"name": "CVE-2018-11307",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-11307"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"name": "CVE-2024-12088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12088"
},
{
"name": "CVE-2025-14819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14819"
},
{
"name": "CVE-2022-42003",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42003"
},
{
"name": "CVE-2020-25649",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25649"
},
{
"name": "CVE-2026-27141",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27141"
},
{
"name": "CVE-2023-2976",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2976"
},
{
"name": "CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"name": "CVE-2017-17485",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17485"
},
{
"name": "CVE-2026-1584",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-1584"
},
{
"name": "CVE-2026-20238",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20238"
},
{
"name": "CVE-2024-23829",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23829"
},
{
"name": "CVE-2025-59464",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59464"
},
{
"name": "CVE-2025-30153",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30153"
},
{
"name": "CVE-2026-32141",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32141"
},
{
"name": "CVE-2019-14379",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14379"
},
{
"name": "CVE-2025-69229",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69229"
},
{
"name": "CVE-2021-35515",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35515"
},
{
"name": "CVE-2026-3545",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3545"
},
{
"name": "CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"name": "CVE-2026-28804",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-28804"
},
{
"name": "CVE-2026-34477",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34477"
},
{
"name": "CVE-2025-53057",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53057"
},
{
"name": "CVE-2022-3171",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3171"
},
{
"name": "CVE-2026-2649",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2649"
},
{
"name": "CVE-2024-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39689"
},
{
"name": "CVE-2025-37731",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37731"
},
{
"name": "CVE-2026-24688",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-24688"
},
{
"name": "CVE-2026-32776",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32776"
},
{
"name": "CVE-2025-12183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12183"
},
{
"name": "CVE-2019-16869",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16869"
},
{
"name": "CVE-2025-68119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68119"
},
{
"name": "CVE-2025-7338",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7338"
},
{
"name": "CVE-2022-23491",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23491"
},
{
"name": "CVE-2025-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53066"
},
{
"name": "CVE-2026-22691",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22691"
},
{
"name": "CVE-2026-27628",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27628"
},
{
"name": "CVE-2025-69420",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69420"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2026-1225",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-1225"
},
{
"name": "CVE-2020-14060",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14060"
},
{
"name": "CVE-2026-31790",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31790"
},
{
"name": "CVE-2020-36188",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36188"
},
{
"name": "CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2025-14831",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14831"
},
{
"name": "CVE-2024-23334",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23334"
},
{
"name": "CVE-2019-14892",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14892"
},
{
"name": "CVE-2026-21710",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21710"
},
{
"name": "CVE-2025-66418",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66418"
},
{
"name": "CVE-2019-20445",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20445"
},
{
"name": "CVE-2025-11226",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11226"
},
{
"name": "CVE-2020-14062",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14062"
}
],
"initial_release_date": "2026-05-21T00:00:00",
"last_revision_date": "2026-05-21T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0627",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-05-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Splunk. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Splunk",
"vendor_advisories": [
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0512",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0512"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0513",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0513"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0509",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0509"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0510",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0510"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0505",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0505"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0515",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0515"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0507",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0507"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0506",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0506"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0508",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0508"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0504",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0504"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0514",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0514"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0516",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0516"
},
{
"published_at": "2026-05-13",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0501",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0501"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0503",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0503"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0511",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0511"
},
{
"published_at": "2026-05-20",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0502",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0502"
}
]
}
FKIE_CVE-2026-25541
Vulnerability from fkie_nvd - Published: 2026-02-04 22:16 - Updated: 2026-06-17 10:24| URL | Tags | ||
|---|---|---|---|
| security-advisories@github.com | https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f | Patch | |
| security-advisories@github.com | https://github.com/tokio-rs/bytes/releases/tag/v1.11.1 | Product, Release Notes | |
| security-advisories@github.com | https://github.com/tokio-rs/bytes/security/advisories/GHSA-434x-w66g-qw3r | Exploit, Vendor Advisory | |
| security-advisories@github.com | https://rustsec.org/advisories/RUSTSEC-2026-0007.html | Exploit, Third Party Advisory |
{
"affected": [
{
"affectedData": [
{
"product": "bytes",
"vendor": "tokio-rs",
"versions": [
{
"status": "affected",
"version": "\u003e= 1.2.1, \u003c 1.11.1"
}
]
}
],
"source": "security-advisories@github.com"
}
],
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tokio-rs:bytes:*:*:*:*:*:rust:*:*",
"matchCriteriaId": "20BFEB88-98B3-498A-9FFC-0C950ED8CF0D",
"versionEndExcluding": "1.11.1",
"versionStartIncluding": "1.2.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1."
},
{
"lang": "es",
"value": "Bytes es una librer\u00eda de utilidad para trabajar con bytes. Desde la versi\u00f3n 1.2.1 hasta antes de la 1.11.1, Bytes es vulnerable a desbordamiento de entero en BytesMut::reserve. En la ruta de recuperaci\u00f3n \u00fanica de BytesMut::reserve, si la condici\u00f3n \u0027v_capacity \u0026gt;= new_cap + offset\u0027 utiliza una adici\u00f3n sin verificar. Cuando new_cap + offset desborda usize en compilaciones de lanzamiento, esta condici\u00f3n puede pasar incorrectamente, haciendo que self.cap se establezca en un valor que excede la capacidad asignada real. Las API posteriores, como spare_capacity_mut(), conf\u00edan entonces en este valor de cap corrupto y pueden crear segmentos fuera de l\u00edmites, lo que lleva a UB. Este comportamiento es observable en compilaciones de lanzamiento (el desbordamiento de entero se ajusta), mientras que las compilaciones de depuraci\u00f3n entran en p\u00e1nico debido a las comprobaciones de desbordamiento. Este problema ha sido parcheado en la versi\u00f3n 1.11.1."
}
],
"id": "CVE-2026-25541",
"lastModified": "2026-06-17T10:24:49.410",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
],
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "PROOF_OF_CONCEPT",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "security-advisories@github.com",
"type": "Secondary"
}
],
"ssvcV203": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"ssvcData": {
"id": "CVE-2026-25541",
"options": [
{
"exploitation": "poc"
},
{
"automatable": "no"
},
{
"technicalImpact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-02-05T15:13:12.910010Z",
"version": "2.0.3"
}
}
]
},
"published": "2026-02-04T22:16:00.383",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch"
],
"url": "https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f"
},
{
"source": "security-advisories@github.com",
"tags": [
"Product",
"Release Notes"
],
"url": "https://github.com/tokio-rs/bytes/releases/tag/v1.11.1"
},
{
"source": "security-advisories@github.com",
"tags": [
"Exploit",
"Vendor Advisory"
],
"url": "https://github.com/tokio-rs/bytes/security/advisories/GHSA-434x-w66g-qw3r"
},
{
"source": "security-advisories@github.com",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://rustsec.org/advisories/RUSTSEC-2026-0007.html"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-680"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
GHSA-434X-W66G-QW3R
Vulnerability from github – Published: 2026-02-03 19:17 – Updated: 2026-02-05 00:37Details
In the unique reclaim path of BytesMut::reserve, the condition
if v_capacity >= new_cap + offset
uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB.
This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks.
PoC
use bytes::*;
fn main() {
let mut a = BytesMut::from(&b"hello world"[..]);
let mut b = a.split_off(5);
// Ensure b becomes the unique owner of the backing storage
drop(a);
// Trigger overflow in new_cap + offset inside reserve
b.reserve(usize::MAX - 6);
// This call relies on the corrupted cap and may cause UB & HBO
b.put_u8(b'h');
}
Workarounds
Users of BytesMut::reserve are only affected if integer overflow checks are configured to wrap. When integer overflow is configured to panic, this issue does not apply.
This vulnerability is also known as RUSTSEC-2026-0007.
{
"affected": [
{
"package": {
"ecosystem": "crates.io",
"name": "bytes"
},
"ranges": [
{
"events": [
{
"introduced": "1.2.1"
},
{
"fixed": "1.11.1"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2026-25541"
],
"database_specific": {
"cwe_ids": [
"CWE-680"
],
"github_reviewed": true,
"github_reviewed_at": "2026-02-03T19:17:46Z",
"nvd_published_at": "2026-02-04T22:16:00Z",
"severity": "MODERATE"
},
"details": "# Details\n\nIn the unique reclaim path of `BytesMut::reserve`, the condition\n```rs\nif v_capacity \u003e= new_cap + offset\n```\nuses an unchecked addition. When `new_cap + offset` overflows `usize` in release builds, this condition may incorrectly pass, causing `self.cap` to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as `spare_capacity_mut()` then trust this corrupted `cap` value and may create out-of-bounds slices, leading to UB.\n\nThis behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks.\n\n## PoC\n\n```rs\nuse bytes::*;\n\nfn main() {\n let mut a = BytesMut::from(\u0026b\"hello world\"[..]);\n let mut b = a.split_off(5);\n\n // Ensure b becomes the unique owner of the backing storage\n drop(a);\n\n // Trigger overflow in new_cap + offset inside reserve\n b.reserve(usize::MAX - 6);\n\n // This call relies on the corrupted cap and may cause UB \u0026 HBO\n b.put_u8(b\u0027h\u0027);\n}\n```\n\n# Workarounds\n\nUsers of `BytesMut::reserve` are only affected if integer overflow checks are configured to wrap. When integer overflow is configured to panic, this issue does not apply.\n\nThis vulnerability is also known as [RUSTSEC-2026-0007](https://rustsec.org/advisories/RUSTSEC-2026-0007.html).",
"id": "GHSA-434x-w66g-qw3r",
"modified": "2026-02-05T00:37:18Z",
"published": "2026-02-03T19:17:46Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/tokio-rs/bytes/security/advisories/GHSA-434x-w66g-qw3r"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25541"
},
{
"type": "WEB",
"url": "https://github.com/tokio-rs/bytes/commit/d0293b0e35838123c51ca5dfdf468ecafee4398f"
},
{
"type": "PACKAGE",
"url": "https://github.com/tokio-rs/bytes"
},
{
"type": "WEB",
"url": "https://github.com/tokio-rs/bytes/releases/tag/v1.11.1"
},
{
"type": "WEB",
"url": "https://rustsec.org/advisories/RUSTSEC-2026-0007.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P",
"type": "CVSS_V4"
}
],
"summary": "bytes has integer overflow in BytesMut::reserve"
}
MSRC_CVE-2026-25541
Vulnerability from csaf_microsoft - Published: 2026-02-02 00:00 - Updated: 2026-06-03 01:42| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 20955-17084 | — | ||
| Unresolved product id: 21401-17084 | — | ||
| Unresolved product id: 21291-17084 | — |
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25541 Bytes is vulnerable to integer overflow in BytesMut::reserve - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-25541.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Bytes is vulnerable to integer overflow in BytesMut::reserve",
"tracking": {
"current_release_date": "2026-06-03T01:42:45.000Z",
"generator": {
"date": "2026-06-03T08:53:17.781Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2026-25541",
"initial_release_date": "2026-02-02T00:00:00.000Z",
"revision_history": [
{
"date": "2026-03-04T01:11:13.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2026-03-31T14:40:06.000Z",
"legacy_version": "2",
"number": "2",
"summary": "Information published."
},
{
"date": "2026-04-30T01:12:05.000Z",
"legacy_version": "3",
"number": "3",
"summary": "Information published."
},
{
"date": "2026-05-14T01:42:37.000Z",
"legacy_version": "4",
"number": "4",
"summary": "Information published."
},
{
"date": "2026-06-03T01:42:45.000Z",
"legacy_version": "5",
"number": "5",
"summary": "Information published."
}
],
"status": "final",
"version": "5"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 trident 0:0.21.0-1.azl3",
"product": {
"name": "\u003cazl3 trident 0:0.21.0-1.azl3",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "azl3 trident 0:0.21.0-1.azl3",
"product": {
"name": "azl3 trident 0:0.21.0-1.azl3",
"product_id": "20955"
}
}
],
"category": "product_name",
"name": "trident"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 rust-afterburn 0:5.8.2-2.azl3",
"product": {
"name": "\u003cazl3 rust-afterburn 0:5.8.2-2.azl3",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 rust-afterburn 0:5.8.2-2.azl3",
"product": {
"name": "azl3 rust-afterburn 0:5.8.2-2.azl3",
"product_id": "21401"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 rust-afterburn 0:5.8.2-1.azl3",
"product": {
"name": "\u003cazl3 rust-afterburn 0:5.8.2-1.azl3",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "azl3 rust-afterburn 0:5.8.2-1.azl3",
"product": {
"name": "azl3 rust-afterburn 0:5.8.2-1.azl3",
"product_id": "21291"
}
}
],
"category": "product_name",
"name": "rust-afterburn"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 trident 0:0.21.0-1.azl3 as a component of Azure Linux 3.0",
"product_id": "17084-3"
},
"product_reference": "3",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 trident 0:0.21.0-1.azl3 as a component of Azure Linux 3.0",
"product_id": "20955-17084"
},
"product_reference": "20955",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 rust-afterburn 0:5.8.2-2.azl3 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 rust-afterburn 0:5.8.2-2.azl3 as a component of Azure Linux 3.0",
"product_id": "21401-17084"
},
"product_reference": "21401",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 rust-afterburn 0:5.8.2-1.azl3 as a component of Azure Linux 3.0",
"product_id": "17084-2"
},
"product_reference": "2",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 rust-afterburn 0:5.8.2-1.azl3 as a component of Azure Linux 3.0",
"product_id": "21291-17084"
},
"product_reference": "21291",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25541",
"cwe": {
"id": "CWE-680",
"name": "Integer Overflow to Buffer Overflow"
},
"notes": [
{
"category": "general",
"text": "GitHub_M",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"20955-17084",
"21401-17084",
"21291-17084"
],
"known_affected": [
"17084-3",
"17084-1",
"17084-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-25541 Bytes is vulnerable to integer overflow in BytesMut::reserve - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-25541.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-04T01:11:13.000Z",
"details": "0:0.22.0-1.azl3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-3"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2026-03-04T01:11:13.000Z",
"details": "0:5.8.2-2.azl3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-1",
"17084-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"17084-3",
"17084-1",
"17084-2"
]
}
],
"title": "Bytes is vulnerable to integer overflow in BytesMut::reserve"
}
]
}
OPENSUSE-SU-2026:11255-1
Vulnerability from csaf_opensuse - Published: 2026-07-12 00:00 - Updated: 2026-07-12 00:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64 | — |
Vendor Fix
|
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://www.suse.com/security/cve/CVE-2026-25541/ | self |
| https://www.suse.com/security/cve/CVE-2026-41676/ | self |
| https://www.suse.com/security/cve/CVE-2026-41677/ | self |
| https://www.suse.com/security/cve/CVE-2026-41898/ | self |
| https://www.suse.com/security/cve/CVE-2026-42327/ | self |
| https://www.suse.com/security/cve/CVE-2026-45784/ | self |
| https://www.suse.com/security/cve/CVE-2026-25541 | external |
| https://www.suse.com/security/cve/CVE-2026-41676 | external |
| https://bugzilla.suse.com/1270137 | external |
| https://www.suse.com/security/cve/CVE-2026-41677 | external |
| https://bugzilla.suse.com/1270540 | external |
| https://www.suse.com/security/cve/CVE-2026-41898 | external |
| https://bugzilla.suse.com/1270798 | external |
| https://www.suse.com/security/cve/CVE-2026-42327 | external |
| https://bugzilla.suse.com/1270454 | external |
| https://www.suse.com/security/cve/CVE-2026-45784 | external |
| https://bugzilla.suse.com/1270946 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "afterburn-5.10.0.git73.b97f772-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the afterburn-5.10.0.git73.b97f772-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-11255",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_11255-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25541 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "afterburn-5.10.0.git73.b97f772-1.1 on GA media",
"tracking": {
"current_release_date": "2026-07-12T00:00:00Z",
"generator": {
"date": "2026-07-12T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:11255-1",
"initial_release_date": "2026-07-12T00:00:00Z",
"revision_history": [
{
"date": "2026-07-12T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"product_id": "afterburn-5.10.0.git73.b97f772-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"product_id": "afterburn-5.10.0.git73.b97f772-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-1.1.s390x",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-1.1.s390x",
"product_id": "afterburn-5.10.0.git73.b97f772-1.1.s390x"
}
},
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"product_id": "afterburn-5.10.0.git73.b97f772-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25541"
}
],
"notes": [
{
"category": "general",
"text": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25541",
"url": "https://www.suse.com/security/cve/CVE-2026-25541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-12T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-25541"
},
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-12T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-12T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-12T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-12T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-5.10.0.git73.b97f772-1.1.x86_64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.aarch64",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.ppc64le",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.s390x",
"openSUSE Tumbleweed:afterburn-dracut-5.10.0.git73.b97f772-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-12T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
rustsec-2026-0007
Vulnerability from osv_rustsec
In the unique reclaim path of BytesMut::reserve, the condition
if v_capacity >= new_cap + offset
uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB.
This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks.
PoC
use bytes::*;
fn main() {
let mut a = BytesMut::from(&b"hello world"[..]);
let mut b = a.split_off(5);
// Ensure b becomes the unique owner of the backing storage
drop(a);
// Trigger overflow in new_cap + offset inside reserve
b.reserve(usize::MAX - 6);
// This call relies on the corrupted cap and may cause UB & HBO
b.put_u8(b'h');
}
Workarounds
Users of BytesMut::reserve are only affected if integer overflow checks are configured to wrap. When integer overflow is configured to panic, this issue does not apply.
| URL | Type | |
|---|---|---|
{
"affected": [
{
"database_specific": {
"categories": [
"memory-corruption"
],
"cvss": null,
"informational": null
},
"ecosystem_specific": {
"affected_functions": null,
"affects": {
"arch": [],
"functions": [],
"os": []
}
},
"package": {
"ecosystem": "crates.io",
"name": "bytes",
"purl": "pkg:cargo/bytes"
},
"ranges": [
{
"events": [
{
"introduced": "1.2.1"
},
{
"fixed": "1.11.1"
}
],
"type": "SEMVER"
}
],
"versions": []
}
],
"aliases": [
"CVE-2026-25541",
"GHSA-434x-w66g-qw3r"
],
"database_specific": {
"license": "CC-BY-4.0"
},
"details": "In the unique reclaim path of `BytesMut::reserve`, the condition\n```rs\nif v_capacity \u003e= new_cap + offset\n```\nuses an unchecked addition. When `new_cap + offset` overflows `usize` in release builds, this condition may incorrectly pass, causing `self.cap` to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as `spare_capacity_mut()` then trust this corrupted `cap` value and may create out-of-bounds slices, leading to UB.\n\nThis behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks.\n\n## PoC\n\n```rs\nuse bytes::*;\n\nfn main() {\n let mut a = BytesMut::from(\u0026b\"hello world\"[..]);\n let mut b = a.split_off(5);\n\n // Ensure b becomes the unique owner of the backing storage\n drop(a);\n\n // Trigger overflow in new_cap + offset inside reserve\n b.reserve(usize::MAX - 6);\n\n // This call relies on the corrupted cap and may cause UB \u0026 HBO\n b.put_u8(b\u0027h\u0027);\n}\n```\n\n# Workarounds\n\nUsers of `BytesMut::reserve` are only affected if integer overflow checks are configured to wrap. When integer overflow is configured to panic, this issue does not apply.",
"id": "RUSTSEC-2026-0007",
"modified": "2026-02-04T06:56:11Z",
"published": "2026-02-03T12:00:00Z",
"references": [
{
"type": "PACKAGE",
"url": "https://crates.io/crates/bytes"
},
{
"type": "ADVISORY",
"url": "https://rustsec.org/advisories/RUSTSEC-2026-0007.html"
},
{
"type": "ADVISORY",
"url": "https://github.com/advisories/GHSA-434x-w66g-qw3r"
}
],
"related": [],
"severity": [],
"summary": "Integer overflow in `BytesMut::reserve`"
}
SUSE-SU-2026:2975-1
Vulnerability from csaf_suse - Published: 2026-07-14 11:38 - Updated: 2026-07-14 11:38| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/s… | self |
| https://www.suse.com/support/update/announcement/… | self |
| https://lists.suse.com/pipermail/sle-updates/2026… | self |
| https://bugzilla.suse.com/1270175 | self |
| https://bugzilla.suse.com/1270483 | self |
| https://bugzilla.suse.com/1270555 | self |
| https://bugzilla.suse.com/1270651 | self |
| https://bugzilla.suse.com/1270787 | self |
| https://bugzilla.suse.com/1270817 | self |
| https://bugzilla.suse.com/1270886 | self |
| https://bugzilla.suse.com/1270949 | self |
| https://bugzilla.suse.com/1271348 | self |
| https://www.suse.com/security/cve/CVE-2026-25541/ | self |
| https://www.suse.com/security/cve/CVE-2026-41676/ | self |
| https://www.suse.com/security/cve/CVE-2026-41677/ | self |
| https://www.suse.com/security/cve/CVE-2026-41678/ | self |
| https://www.suse.com/security/cve/CVE-2026-41681/ | self |
| https://www.suse.com/security/cve/CVE-2026-41898/ | self |
| https://www.suse.com/security/cve/CVE-2026-42327/ | self |
| https://www.suse.com/security/cve/CVE-2026-44662/ | self |
| https://www.suse.com/security/cve/CVE-2026-45784/ | self |
| https://www.suse.com/security/cve/CVE-2026-25541 | external |
| https://bugzilla.suse.com/1271347 | external |
| https://www.suse.com/security/cve/CVE-2026-41676 | external |
| https://bugzilla.suse.com/1270137 | external |
| https://www.suse.com/security/cve/CVE-2026-41677 | external |
| https://bugzilla.suse.com/1270540 | external |
| https://www.suse.com/security/cve/CVE-2026-41678 | external |
| https://bugzilla.suse.com/1270641 | external |
| https://www.suse.com/security/cve/CVE-2026-41681 | external |
| https://bugzilla.suse.com/1270719 | external |
| https://www.suse.com/security/cve/CVE-2026-41898 | external |
| https://bugzilla.suse.com/1270798 | external |
| https://www.suse.com/security/cve/CVE-2026-42327 | external |
| https://bugzilla.suse.com/1270454 | external |
| https://www.suse.com/security/cve/CVE-2026-44662 | external |
| https://bugzilla.suse.com/1270872 | external |
| https://www.suse.com/security/cve/CVE-2026-45784 | external |
| https://bugzilla.suse.com/1270946 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for afterburn",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for afterburn fixes the following issues\n\nUpdate to version 5.10.0.git73.b97f772.\n\nSecurity issues fixed:\n\n- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1\n (bsc#1270175).\n- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length\n (bsc#1270555).\n- CVE-2026-41678: openssl: incorrect bounds assertion in `aes::unwrap_key()` can lead to OOB write (bsc#1270651).\n- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270787).\n- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent\n memory to network peers (bsc#1270817).\n- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` when processing certificates with non-UTF-8\n OCSP URLs (bsc#1270483).\n- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding (bsc#1270886).\n- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers\n (bsc#1270949).\n- CVE-2026-25541: bytes: integer overflow in `BytesMut:reserve` can lead to undefined behavior and crashes\n (bsc#1271348).\n\nOther updates and bugfixes:\n\n- Version 5.10.0.git73.b97f772:\n * build(deps): bump anyhow from 1.0.99 to 1.0.103\n https://github.com/coreos/afterburn/pull/1284\n * build(deps): bump libflate from 2.1.0 to 2.2.2\n https://github.com/coreos/afterburn/pull/1283\n * build(deps): bump openssl from 0.10.79 to 0.10.80\n https://github.com/coreos/afterburn/pull/1277\n- Version 5.10.0.git70.9cc2a7b:\n * build(deps): bump openssl from 0.10.78 to 0.10.79\n * providers/hetzner: Add the HETZNER_PUBLIC_IPV6 attribute\n * providers/hetzner: Add support for network configuration\n * build(deps): bump rustls-webpki from 0.103.10 to 0.103.13\n * build(deps): bump openssl from 0.10.73 to 0.10.78\n * docs: Add AGENTS.md and CLAUDE.md for AI coding assistants\n * build(deps): bump rand from 0.9.2 to 0.9.4\n * opencode: add skills for provider scaffolding and release automation\n * ibmcloud-classic: Add missing network_id to fixture\n * kubevirt: Support static gateway and DNS with DHCP\n * build(deps): bump rustls-webpki from 0.103.6 to 0.103.10\n * fix(proxmoxve): Define DNS entries for every interface\n * Makefile: download `90-afterburn-authorized-keys-file.conf` for rpm building\n * Sync repo templates \u2699\n * build(deps): bump bytes from 1.10.1 to 1.11.1\n * util/dhcp: Fix clippy lints\n * build(deps): bump actions/checkout from 4 to 6\n * build(deps): bump actions/upload-artifact from 4 to 5\n * kubevirt: modprobe for virtio_blk; remove dracut preload\n * kubevirt: Add NoCloud network configuration support\n * kubevirt: Support config drive network data\n * kubevirt: Refactor the provider to follow the proxmoxve structure\n * dracut: Add virtio_blk module preload to afterburn-network-kargs service\n * docs: Add release notes\n * cargo: Afterburn release 5.10.0\n- Version 5.10.0:\n * docs/release-notes: update for release 5.10.0\n * cargo: update dependencies\n * microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat\n * docs/release-notes: Add entry for Azure SharedConfig XML parsing fix\n * microsoft/azure: Fix SharedConfig parsing of XML attributes\n * microsoft/azure: Mock goalstate.SharedConfig output in tests\n * providers/azure: switch SSH key retrieval from certs endpoint to IMDS\n * build(deps): bump the build group with 8 updates\n * build(deps): bump slab from 0.4.10 to 0.4.11\n * build(deps): bump actions/checkout from 4 to 5\n * upcloud: implement UpCloud provider\n * build(deps): bump the build group with 4 updates\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2975,SUSE-SLE-Micro-5.5-2026-2975",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2975-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2975-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262975-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2975-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048219.html"
},
{
"category": "self",
"summary": "SUSE Bug 1270175",
"url": "https://bugzilla.suse.com/1270175"
},
{
"category": "self",
"summary": "SUSE Bug 1270483",
"url": "https://bugzilla.suse.com/1270483"
},
{
"category": "self",
"summary": "SUSE Bug 1270555",
"url": "https://bugzilla.suse.com/1270555"
},
{
"category": "self",
"summary": "SUSE Bug 1270651",
"url": "https://bugzilla.suse.com/1270651"
},
{
"category": "self",
"summary": "SUSE Bug 1270787",
"url": "https://bugzilla.suse.com/1270787"
},
{
"category": "self",
"summary": "SUSE Bug 1270817",
"url": "https://bugzilla.suse.com/1270817"
},
{
"category": "self",
"summary": "SUSE Bug 1270886",
"url": "https://bugzilla.suse.com/1270886"
},
{
"category": "self",
"summary": "SUSE Bug 1270949",
"url": "https://bugzilla.suse.com/1270949"
},
{
"category": "self",
"summary": "SUSE Bug 1271348",
"url": "https://bugzilla.suse.com/1271348"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25541 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44662 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "Security update for afterburn",
"tracking": {
"current_release_date": "2026-07-14T11:38:45Z",
"generator": {
"date": "2026-07-14T11:38:45Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2975-1",
"initial_release_date": "2026-07-14T11:38:45Z",
"revision_history": [
{
"date": "2026-07-14T11:38:45Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"product_id": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.ppc64le",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.ppc64le",
"product_id": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.s390x",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.s390x",
"product_id": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"product_id": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25541"
}
],
"notes": [
{
"category": "general",
"text": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25541",
"url": "https://www.suse.com/security/cve/CVE-2026-25541"
},
{
"category": "external",
"summary": "SUSE Bug 1271347 for CVE-2026-25541",
"url": "https://bugzilla.suse.com/1271347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "important"
}
],
"title": "CVE-2026-25541"
},
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41678"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From to before 0.10.78, aes::unwrap_key() contains an incorrect assertion: it checks that out.len() + 8 \u003c= in_.len(), but this condition is reversed. The intended invariant is out.len() \u003e= in_.len() - 8, ensuring the output buffer is large enough. Because of the inverted check, the function only accepts buffers at or below the minimum required size and rejects larger ones. If a smaller buffer is provided the function will write past the end of out by in_.len() - 8 - out.len() bytes, causing an out-of-bounds write from a safe public function. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41678",
"url": "https://www.suse.com/security/cve/CVE-2026-41678"
},
{
"category": "external",
"summary": "SUSE Bug 1270641 for CVE-2026-41678",
"url": "https://bugzilla.suse.com/1270641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "important"
}
],
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41681"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41681",
"url": "https://www.suse.com/security/cve/CVE-2026-41681"
},
{
"category": "external",
"summary": "SUSE Bug 1270719 for CVE-2026-41681",
"url": "https://bugzilla.suse.com/1270719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-41681"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-44662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44662"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers (EVP_aes_{128,192,256}_wrap_pad). For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller\u0027s buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This only impacts users using AES key-wrap-with-padding ciphers. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44662",
"url": "https://www.suse.com/security/cve/CVE-2026-44662"
},
{
"category": "external",
"summary": "SUSE Bug 1270872 for CVE-2026-44662",
"url": "https://bugzilla.suse.com/1270872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-44662"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
SUSE-SU-2026:2976-1
Vulnerability from csaf_suse - Published: 2026-07-14 11:39 - Updated: 2026-07-14 11:39| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/s… | self |
| https://www.suse.com/support/update/announcement/… | self |
| https://lists.suse.com/pipermail/sle-updates/2026… | self |
| https://bugzilla.suse.com/1270175 | self |
| https://bugzilla.suse.com/1270483 | self |
| https://bugzilla.suse.com/1270555 | self |
| https://bugzilla.suse.com/1270651 | self |
| https://bugzilla.suse.com/1270787 | self |
| https://bugzilla.suse.com/1270817 | self |
| https://bugzilla.suse.com/1270886 | self |
| https://bugzilla.suse.com/1270949 | self |
| https://bugzilla.suse.com/1271348 | self |
| https://www.suse.com/security/cve/CVE-2026-25541/ | self |
| https://www.suse.com/security/cve/CVE-2026-41676/ | self |
| https://www.suse.com/security/cve/CVE-2026-41677/ | self |
| https://www.suse.com/security/cve/CVE-2026-41678/ | self |
| https://www.suse.com/security/cve/CVE-2026-41681/ | self |
| https://www.suse.com/security/cve/CVE-2026-41898/ | self |
| https://www.suse.com/security/cve/CVE-2026-42327/ | self |
| https://www.suse.com/security/cve/CVE-2026-44662/ | self |
| https://www.suse.com/security/cve/CVE-2026-45784/ | self |
| https://www.suse.com/security/cve/CVE-2026-25541 | external |
| https://bugzilla.suse.com/1271347 | external |
| https://www.suse.com/security/cve/CVE-2026-41676 | external |
| https://bugzilla.suse.com/1270137 | external |
| https://www.suse.com/security/cve/CVE-2026-41677 | external |
| https://bugzilla.suse.com/1270540 | external |
| https://www.suse.com/security/cve/CVE-2026-41678 | external |
| https://bugzilla.suse.com/1270641 | external |
| https://www.suse.com/security/cve/CVE-2026-41681 | external |
| https://bugzilla.suse.com/1270719 | external |
| https://www.suse.com/security/cve/CVE-2026-41898 | external |
| https://bugzilla.suse.com/1270798 | external |
| https://www.suse.com/security/cve/CVE-2026-42327 | external |
| https://bugzilla.suse.com/1270454 | external |
| https://www.suse.com/security/cve/CVE-2026-44662 | external |
| https://bugzilla.suse.com/1270872 | external |
| https://www.suse.com/security/cve/CVE-2026-45784 | external |
| https://bugzilla.suse.com/1270946 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for afterburn",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for afterburn fixes the following issues\n\nUpdate to version 5.10.0.git73.b97f772.\n\nSecurity issues fixed:\n\n- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1\n (bsc#1270175).\n- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length\n (bsc#1270555).\n- CVE-2026-41678: openssl: incorrect bounds assertion in `aes::unwrap_key()` can lead to OOB write (bsc#1270651).\n- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270787).\n- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent\n memory to network peers (bsc#1270817).\n- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` when processing certificates with non-UTF-8\n OCSP URLs (bsc#1270483).\n- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding (bsc#1270886).\n- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers\n (bsc#1270949).\n- CVE-2026-25541: bytes: integer overflow in `BytesMut:reserve` can lead to undefined behavior and crashes\n (bsc#1271348).\n\nOther updates and bugfixes:\n\n- Version 5.10.0.git73.b97f772:\n * build(deps): bump anyhow from 1.0.99 to 1.0.103\n https://github.com/coreos/afterburn/pull/1284\n * build(deps): bump libflate from 2.1.0 to 2.2.2\n https://github.com/coreos/afterburn/pull/1283\n * build(deps): bump openssl from 0.10.79 to 0.10.80\n https://github.com/coreos/afterburn/pull/1277\n- Version 5.10.0.git70.9cc2a7b:\n * build(deps): bump openssl from 0.10.78 to 0.10.79\n * providers/hetzner: Add the HETZNER_PUBLIC_IPV6 attribute\n * providers/hetzner: Add support for network configuration\n * build(deps): bump rustls-webpki from 0.103.10 to 0.103.13\n * build(deps): bump openssl from 0.10.73 to 0.10.78\n * docs: Add AGENTS.md and CLAUDE.md for AI coding assistants\n * build(deps): bump rand from 0.9.2 to 0.9.4\n * opencode: add skills for provider scaffolding and release automation\n * ibmcloud-classic: Add missing network_id to fixture\n * kubevirt: Support static gateway and DNS with DHCP\n * build(deps): bump rustls-webpki from 0.103.6 to 0.103.10\n * fix(proxmoxve): Define DNS entries for every interface\n * Makefile: download `90-afterburn-authorized-keys-file.conf` for rpm building\n * Sync repo templates \u2699\n * build(deps): bump bytes from 1.10.1 to 1.11.1\n * util/dhcp: Fix clippy lints\n * build(deps): bump actions/checkout from 4 to 6\n * build(deps): bump actions/upload-artifact from 4 to 5\n * kubevirt: modprobe for virtio_blk; remove dracut preload\n * kubevirt: Add NoCloud network configuration support\n * kubevirt: Support config drive network data\n * kubevirt: Refactor the provider to follow the proxmoxve structure\n * dracut: Add virtio_blk module preload to afterburn-network-kargs service\n * docs: Add release notes\n * cargo: Afterburn release 5.10.0\n- Version 5.10.0:\n * docs/release-notes: update for release 5.10.0\n * cargo: update dependencies\n * microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat\n * docs/release-notes: Add entry for Azure SharedConfig XML parsing fix\n * microsoft/azure: Fix SharedConfig parsing of XML attributes\n * microsoft/azure: Mock goalstate.SharedConfig output in tests\n * providers/azure: switch SSH key retrieval from certs endpoint to IMDS\n * build(deps): bump the build group with 8 updates\n * build(deps): bump slab from 0.4.10 to 0.4.11\n * build(deps): bump actions/checkout from 4 to 5\n * upcloud: implement UpCloud provider\n * build(deps): bump the build group with 4 updates\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2976,SUSE-SLE-Micro-5.3-2026-2976",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2976-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2976-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262976-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2976-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048218.html"
},
{
"category": "self",
"summary": "SUSE Bug 1270175",
"url": "https://bugzilla.suse.com/1270175"
},
{
"category": "self",
"summary": "SUSE Bug 1270483",
"url": "https://bugzilla.suse.com/1270483"
},
{
"category": "self",
"summary": "SUSE Bug 1270555",
"url": "https://bugzilla.suse.com/1270555"
},
{
"category": "self",
"summary": "SUSE Bug 1270651",
"url": "https://bugzilla.suse.com/1270651"
},
{
"category": "self",
"summary": "SUSE Bug 1270787",
"url": "https://bugzilla.suse.com/1270787"
},
{
"category": "self",
"summary": "SUSE Bug 1270817",
"url": "https://bugzilla.suse.com/1270817"
},
{
"category": "self",
"summary": "SUSE Bug 1270886",
"url": "https://bugzilla.suse.com/1270886"
},
{
"category": "self",
"summary": "SUSE Bug 1270949",
"url": "https://bugzilla.suse.com/1270949"
},
{
"category": "self",
"summary": "SUSE Bug 1271348",
"url": "https://bugzilla.suse.com/1271348"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25541 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44662 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "Security update for afterburn",
"tracking": {
"current_release_date": "2026-07-14T11:39:57Z",
"generator": {
"date": "2026-07-14T11:39:57Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2976-1",
"initial_release_date": "2026-07-14T11:39:57Z",
"revision_history": [
{
"date": "2026-07-14T11:39:57Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25541"
}
],
"notes": [
{
"category": "general",
"text": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25541",
"url": "https://www.suse.com/security/cve/CVE-2026-25541"
},
{
"category": "external",
"summary": "SUSE Bug 1271347 for CVE-2026-25541",
"url": "https://bugzilla.suse.com/1271347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "important"
}
],
"title": "CVE-2026-25541"
},
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41678"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From to before 0.10.78, aes::unwrap_key() contains an incorrect assertion: it checks that out.len() + 8 \u003c= in_.len(), but this condition is reversed. The intended invariant is out.len() \u003e= in_.len() - 8, ensuring the output buffer is large enough. Because of the inverted check, the function only accepts buffers at or below the minimum required size and rejects larger ones. If a smaller buffer is provided the function will write past the end of out by in_.len() - 8 - out.len() bytes, causing an out-of-bounds write from a safe public function. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41678",
"url": "https://www.suse.com/security/cve/CVE-2026-41678"
},
{
"category": "external",
"summary": "SUSE Bug 1270641 for CVE-2026-41678",
"url": "https://bugzilla.suse.com/1270641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "important"
}
],
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41681"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41681",
"url": "https://www.suse.com/security/cve/CVE-2026-41681"
},
{
"category": "external",
"summary": "SUSE Bug 1270719 for CVE-2026-41681",
"url": "https://bugzilla.suse.com/1270719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-41681"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-44662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44662"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers (EVP_aes_{128,192,256}_wrap_pad). For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller\u0027s buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This only impacts users using AES key-wrap-with-padding ciphers. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44662",
"url": "https://www.suse.com/security/cve/CVE-2026-44662"
},
{
"category": "external",
"summary": "SUSE Bug 1270872 for CVE-2026-44662",
"url": "https://bugzilla.suse.com/1270872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-44662"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
SUSE-SU-2026:2977-1
Vulnerability from csaf_suse - Published: 2026-07-14 11:44 - Updated: 2026-07-14 11:44| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/s… | self |
| https://www.suse.com/support/update/announcement/… | self |
| https://lists.suse.com/pipermail/sle-updates/2026… | self |
| https://bugzilla.suse.com/1270175 | self |
| https://bugzilla.suse.com/1270483 | self |
| https://bugzilla.suse.com/1270555 | self |
| https://bugzilla.suse.com/1270651 | self |
| https://bugzilla.suse.com/1270787 | self |
| https://bugzilla.suse.com/1270817 | self |
| https://bugzilla.suse.com/1270886 | self |
| https://bugzilla.suse.com/1270949 | self |
| https://bugzilla.suse.com/1271348 | self |
| https://www.suse.com/security/cve/CVE-2026-25541/ | self |
| https://www.suse.com/security/cve/CVE-2026-41676/ | self |
| https://www.suse.com/security/cve/CVE-2026-41677/ | self |
| https://www.suse.com/security/cve/CVE-2026-41678/ | self |
| https://www.suse.com/security/cve/CVE-2026-41681/ | self |
| https://www.suse.com/security/cve/CVE-2026-41898/ | self |
| https://www.suse.com/security/cve/CVE-2026-42327/ | self |
| https://www.suse.com/security/cve/CVE-2026-44662/ | self |
| https://www.suse.com/security/cve/CVE-2026-45784/ | self |
| https://www.suse.com/security/cve/CVE-2026-25541 | external |
| https://bugzilla.suse.com/1271347 | external |
| https://www.suse.com/security/cve/CVE-2026-41676 | external |
| https://bugzilla.suse.com/1270137 | external |
| https://www.suse.com/security/cve/CVE-2026-41677 | external |
| https://bugzilla.suse.com/1270540 | external |
| https://www.suse.com/security/cve/CVE-2026-41678 | external |
| https://bugzilla.suse.com/1270641 | external |
| https://www.suse.com/security/cve/CVE-2026-41681 | external |
| https://bugzilla.suse.com/1270719 | external |
| https://www.suse.com/security/cve/CVE-2026-41898 | external |
| https://bugzilla.suse.com/1270798 | external |
| https://www.suse.com/security/cve/CVE-2026-42327 | external |
| https://bugzilla.suse.com/1270454 | external |
| https://www.suse.com/security/cve/CVE-2026-44662 | external |
| https://bugzilla.suse.com/1270872 | external |
| https://www.suse.com/security/cve/CVE-2026-45784 | external |
| https://bugzilla.suse.com/1270946 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for afterburn",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for afterburn fixes the following issues\n\nUpdate to version 5.10.0.git73.b97f772.\n\nSecurity issues fixed:\n\n- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1\n (bsc#1270175).\n- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length\n (bsc#1270555).\n- CVE-2026-41678: openssl: incorrect bounds assertion in `aes::unwrap_key()` can lead to OOB write (bsc#1270651).\n- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270787).\n- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent\n memory to network peers (bsc#1270817).\n- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` when processing certificates with non-UTF-8\n OCSP URLs (bsc#1270483).\n- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding (bsc#1270886).\n- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers\n (bsc#1270949).\n- CVE-2026-25541: bytes: integer overflow in `BytesMut:reserve` can lead to undefined behavior and crashes\n (bsc#1271348).\n\nOther updates and bugfixes:\n\n- Version 5.10.0.git73.b97f772:\n * build(deps): bump anyhow from 1.0.99 to 1.0.103\n https://github.com/coreos/afterburn/pull/1284\n * build(deps): bump libflate from 2.1.0 to 2.2.2\n https://github.com/coreos/afterburn/pull/1283\n * build(deps): bump openssl from 0.10.79 to 0.10.80\n https://github.com/coreos/afterburn/pull/1277\n- Version 5.10.0.git70.9cc2a7b:\n * build(deps): bump openssl from 0.10.78 to 0.10.79\n * providers/hetzner: Add the HETZNER_PUBLIC_IPV6 attribute\n * providers/hetzner: Add support for network configuration\n * build(deps): bump rustls-webpki from 0.103.10 to 0.103.13\n * build(deps): bump openssl from 0.10.73 to 0.10.78\n * docs: Add AGENTS.md and CLAUDE.md for AI coding assistants\n * build(deps): bump rand from 0.9.2 to 0.9.4\n * opencode: add skills for provider scaffolding and release automation\n * ibmcloud-classic: Add missing network_id to fixture\n * kubevirt: Support static gateway and DNS with DHCP\n * build(deps): bump rustls-webpki from 0.103.6 to 0.103.10\n * fix(proxmoxve): Define DNS entries for every interface\n * Makefile: download `90-afterburn-authorized-keys-file.conf` for rpm building\n * Sync repo templates \u2699\n * build(deps): bump bytes from 1.10.1 to 1.11.1\n * util/dhcp: Fix clippy lints\n * build(deps): bump actions/checkout from 4 to 6\n * build(deps): bump actions/upload-artifact from 4 to 5\n * kubevirt: modprobe for virtio_blk; remove dracut preload\n * kubevirt: Add NoCloud network configuration support\n * kubevirt: Support config drive network data\n * kubevirt: Refactor the provider to follow the proxmoxve structure\n * dracut: Add virtio_blk module preload to afterburn-network-kargs service\n * docs: Add release notes\n * cargo: Afterburn release 5.10.0\n- Version 5.10.0:\n * docs/release-notes: update for release 5.10.0\n * cargo: update dependencies\n * microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat\n * docs/release-notes: Add entry for Azure SharedConfig XML parsing fix\n * microsoft/azure: Fix SharedConfig parsing of XML attributes\n * microsoft/azure: Mock goalstate.SharedConfig output in tests\n * providers/azure: switch SSH key retrieval from certs endpoint to IMDS\n * build(deps): bump the build group with 8 updates\n * build(deps): bump slab from 0.4.10 to 0.4.11\n * build(deps): bump actions/checkout from 4 to 5\n * upcloud: implement UpCloud provider\n * build(deps): bump the build group with 4 updates\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2977,SUSE-SLE-Micro-5.4-2026-2977",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2977-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2977-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262977-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2977-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048217.html"
},
{
"category": "self",
"summary": "SUSE Bug 1270175",
"url": "https://bugzilla.suse.com/1270175"
},
{
"category": "self",
"summary": "SUSE Bug 1270483",
"url": "https://bugzilla.suse.com/1270483"
},
{
"category": "self",
"summary": "SUSE Bug 1270555",
"url": "https://bugzilla.suse.com/1270555"
},
{
"category": "self",
"summary": "SUSE Bug 1270651",
"url": "https://bugzilla.suse.com/1270651"
},
{
"category": "self",
"summary": "SUSE Bug 1270787",
"url": "https://bugzilla.suse.com/1270787"
},
{
"category": "self",
"summary": "SUSE Bug 1270817",
"url": "https://bugzilla.suse.com/1270817"
},
{
"category": "self",
"summary": "SUSE Bug 1270886",
"url": "https://bugzilla.suse.com/1270886"
},
{
"category": "self",
"summary": "SUSE Bug 1270949",
"url": "https://bugzilla.suse.com/1270949"
},
{
"category": "self",
"summary": "SUSE Bug 1271348",
"url": "https://bugzilla.suse.com/1271348"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25541 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44662 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "Security update for afterburn",
"tracking": {
"current_release_date": "2026-07-14T11:44:35Z",
"generator": {
"date": "2026-07-14T11:44:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2977-1",
"initial_release_date": "2026-07-14T11:44:35Z",
"revision_history": [
{
"date": "2026-07-14T11:44:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25541"
}
],
"notes": [
{
"category": "general",
"text": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25541",
"url": "https://www.suse.com/security/cve/CVE-2026-25541"
},
{
"category": "external",
"summary": "SUSE Bug 1271347 for CVE-2026-25541",
"url": "https://bugzilla.suse.com/1271347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "important"
}
],
"title": "CVE-2026-25541"
},
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41678"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From to before 0.10.78, aes::unwrap_key() contains an incorrect assertion: it checks that out.len() + 8 \u003c= in_.len(), but this condition is reversed. The intended invariant is out.len() \u003e= in_.len() - 8, ensuring the output buffer is large enough. Because of the inverted check, the function only accepts buffers at or below the minimum required size and rejects larger ones. If a smaller buffer is provided the function will write past the end of out by in_.len() - 8 - out.len() bytes, causing an out-of-bounds write from a safe public function. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41678",
"url": "https://www.suse.com/security/cve/CVE-2026-41678"
},
{
"category": "external",
"summary": "SUSE Bug 1270641 for CVE-2026-41678",
"url": "https://bugzilla.suse.com/1270641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "important"
}
],
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41681"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41681",
"url": "https://www.suse.com/security/cve/CVE-2026-41681"
},
{
"category": "external",
"summary": "SUSE Bug 1270719 for CVE-2026-41681",
"url": "https://bugzilla.suse.com/1270719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-41681"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-44662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44662"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers (EVP_aes_{128,192,256}_wrap_pad). For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller\u0027s buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This only impacts users using AES key-wrap-with-padding ciphers. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44662",
"url": "https://www.suse.com/security/cve/CVE-2026-44662"
},
{
"category": "external",
"summary": "SUSE Bug 1270872 for CVE-2026-44662",
"url": "https://bugzilla.suse.com/1270872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-44662"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
ubuntu-cve-2026-25541
Vulnerability from osv_ubuntu
Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition "v_capacity >= new_cap + offset" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-bytes+either-dev",
"binary_version": "0.4.12-1"
},
{
"binary_name": "librust-bytes+i128-dev",
"binary_version": "0.4.12-1"
},
{
"binary_name": "librust-bytes+serde-dev",
"binary_version": "0.4.12-1"
},
{
"binary_name": "librust-bytes-dev",
"binary_version": "0.4.12-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "rust-bytes",
"purl": "pkg:deb/ubuntu/rust-bytes@0.4.12-1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.4.12-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-bytes+serde-dev",
"binary_version": "1.1.0-1"
},
{
"binary_name": "librust-bytes-dev",
"binary_version": "1.1.0-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "rust-bytes",
"purl": "pkg:deb/ubuntu/rust-bytes@1.1.0-1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.4.12-1",
"1.1.0-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-bytes+serde-dev",
"binary_version": "1.5.0-1"
},
{
"binary_name": "librust-bytes-dev",
"binary_version": "1.5.0-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "rust-bytes",
"purl": "pkg:deb/ubuntu/rust-bytes@1.5.0-1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.4.0-1",
"1.5.0-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-bytes-dev",
"binary_version": "1.9.0-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "rust-bytes",
"purl": "pkg:deb/ubuntu/rust-bytes@1.9.0-1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.9.0-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-bytes-dev",
"binary_version": "1.11.1-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "rust-bytes",
"purl": "pkg:deb/ubuntu/rust-bytes@1.11.1-1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.9.0-1",
"1.10.1-1",
"1.11.0-1",
"1.11.1-1"
]
}
],
"aliases": [],
"details": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.",
"id": "UBUNTU-CVE-2026-25541",
"modified": "2026-05-20T15:26:05Z",
"published": "2026-02-04T22:16:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-25541"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25541"
},
{
"type": "REPORT",
"url": "https://rustsec.org/advisories/RUSTSEC-2026-0007.html"
},
{
"type": "REPORT",
"url": "https://github.com/advisories/GHSA-434x-w66g-qw3r"
}
],
"related": [],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P",
"type": "CVSS_V4"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2026-25541"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.