Security Bugs

braa out-of-bounds stack read via crafted BER length in braaasn.c

security upstream

src:dcmtk dcmtk: CVE-2025-14841

upstream fixed-upstream security

src:node-form-data node-form-data: CVE-2025-7783

security upstream

src:dcmtk dcmtk: CVE-2025-14607

upstream fixed-upstream security

src:roundcube roundcube: Multiple security vulnerabilities

upstream security

src:keystone keystone: CVE-2026-33551

upstream security

src:ironic ironic: CVE-2026-44916

upstream security

src:biosig biosig: CVE-2025-54494 CVE-2025-54493 CVE-2025-54492 CVE-2025-54491 CVE-2025-54490 CVE-2025-54489 CVE-2025-54488 CVE-2025-54487 CVE-2025-54486 CVE-2025-54485 CVE-2025-54484 CVE-2025-54483 CVE-2025-54482 CVE-2025-54481 CVE-2025-54480 CVE-2025-54462 CVE-2025-53853 CVE-2025-53557 CVE-2025-53518 CVE-2025-53511 CVE-2025-52581 CVE-2025-52461 CVE-2025-48005 CVE-2025-46411

upstream security

src:ironic CVE-2026-42997 / OSSA-2026-010: Credential Forwarding to Arbitrary Endpoints via Ironic’s idrac Configuration molds Feature

upstream patch security

src:redis redis: CVE-2025-27151

security upstream

src:libfcgi libfcgi: CVE-2025-23016

upstream security patch fixed-upstream