Security Bugs

thunderbird [CVE-2006-0836] Address Book Import Remote DoS Vulnerability

security

src:docker.io docker.io: CVE-2025-54410

security upstream

src:ognl ognl: CVE-2025-53192

security upstream

src:libstb libstb: CVE-2025-3407

security upstream

smpeg-plaympeg smpeg-plaympeg has mailcap entries with quoted %-escapes

stable testing unstable security patch

src:assimp assimp: CVE-2024-48425

upstream fixed-upstream security

graphviz CVE-2019-9904

stable testing unstable fixed-upstream security upstream

src:trafficserver trafficserver: CVE-2024-38311 CVE-2024-56195 CVE-2024-56202

security upstream

src:assimp assimp: CVE-2025-5204

security upstream

src:grpc grpc: CVE-2023-4785

security

src:quickjs quickjs: CVE-2025-12745

security upstream fixed-upstream

src:ruby-addressable ruby-addressable: CVE-2026-35611

upstream security

src:node-elliptic node-elliptic: CVE-2025-14505

security upstream

src:grpc grpc: CVE-2023-33953

security

src:grpc grpc: CVE-2023-32732

security

fakeroot Fw: fakeroot: Shared library and command injections in multiple arguments

security

src:tar tar: CVE-2026-5704

upstream security

src:node-yarnpkg node-yarnpkg: CVE-2025-8262

security upstream

src:freeimage freeimage: CVE-2024-28562 CVE-2024-28563 CVE-2024-28564 CVE-2024-28565 CVE-2024-28566 CVE-2024-28567 CVE-2024-28568 CVE-2024-28569 CVE-2024-28570 CVE-2024-28571 CVE-2024-28572 CVE-2024-28573 CVE-2024-28574 CVE-2024-28574 CVE-2024-28575 CVE-2024-28576 CVE-2024-28577 CVE-2024-28578 CVE-2024-28579 CVE-2024-28580 CVE-2024-28581 CVE-2024-28582 CVE-2024-28583 CVE-2024-28584

security

libmpeg2-4 [libmpeg2] NULL pointer dereference in mpeg2_init_fbuf() via crafted MPEG video

security upstream