| | CVE-2025-9222 |  Red Hat | high | 8.7 | 0.0%
| | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18.… | Jan 9, 2026 | Jan 9, 2026 |
| | CVE-2025-68470 | Red Hat | medium | 6.5 | 0.0%
| | React Router is a router for React. In versions 6.0.0 through 6.30.1 and 7.0.0 through 7.9.5, an att… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2025-59057 | Red Hat | high | 7.6 | 0.0%
| ✓ Fix | React Router is a router for React. In @remix-run/react versions 1.15.0 through 2.17.0. and react-ro… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2025-61686 | Red Hat | critical | 9.1 | 0.0%
| | React Router is a router for React. In @react-router/node versions 7.0.0 through 7.9.3, @remix-run/d… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-21884 | Red Hat | high | 8.2 | 0.0%
| ✓ Fix | React Router is a router for React. In @remix-run/react version prior to 2.17.3. and react-router 7.… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22029 | Red Hat | high | 8.0 | 0.0%
| ✓ Fix | React Router is a router for React. In @remix-run/router version prior to 1.23.2. and react-router 7… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22030 | Red Hat | medium | 6.5 | 0.0%
| | React Router is a router for React. In @remix-run/server-runtime version prior to 2.17.3. and react-… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22610 | Red Hat | medium | 7.3 | 0.0%
| | Angular is a development platform for building mobile and desktop web applications using TypeScript/… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22690 | Red Hat | medium | 6.5 | 0.0%
| | pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible … | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22691 | Red Hat | medium | 6.5 | 0.0%
| | pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible … | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22693 | Red Hat | medium | 5.3 | 0.1%
| | HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22701 | Red Hat | medium | 5.3 | 0.0%
| | filelock is a platform-independent file lock for Python. Prior to version 3.20.3, a TOCTOU race cond… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22702 | Red Hat | medium | 4.5 | 0.0%
| | virtualenv is a tool for creating isolated virtual python environments. Prior to version 20.36.1, TO… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22703 | Red Hat | medium | 5.5 | 0.0%
| | Cosign provides code signing and transparency for containers and binaries. Prior to versions 2.6.2 a… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-22699 |  Check Point | high | 7.5 | 0.2%
| | RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including … | Jan 10, 2026 | Jan 22, 2026 |
| | CVE-2026-22773 | Red Hat | medium | 6.5 | 0.0%
| ✓ Fix | vLLM is an inference and serving engine for large language models (LLMs). In versions from 0.6.4 to … | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-0821 | Red Hat | high | 7.3 | 0.1%
| | A vulnerability was determined in quickjs-ng quickjs up to 0.11.0. This vulnerability affects the fu… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-0822 | Red Hat | high | 6.3 | 0.1%
| | A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the function j… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2026-0824 | Red Hat | medium | 3.5 | 0.1%
| | A security flaw has been discovered in questdb ui up to 1.11.9. Impacted is an unknown function of t… | Jan 10, 2026 | Jan 10, 2026 |
| | CVE-2025-68493 | Red Hat | high | 7.1 | 0.0%
| | Missing XML Validation vulnerability in Apache Struts, Apache Struts.
This issue affects Apache Stru… | Jan 11, 2026 | Jan 11, 2026 |
| | CVE-2025-68276 | Red Hat | medium | 5.5 | 0.0%
| | Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protoco… | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2025-68468 | Red Hat | medium | 6.5 | 0.0%
| | Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protoco… | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2025-68471 | Red Hat | medium | 6.5 | 0.0%
| | Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protoco… | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2026-22771 | Red Hat | high | 8.8 | 0.0%
| | Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based… | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2026-22776 | Red Hat | high | 7.5 | 0.1%
| | cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0… | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2026-22772 | Red Hat | medium | 5.8 | 0.0%
| ✓ Fix | Fulcio is a certificate authority for issuing code signing certificates for an OpenID Connect (OIDC)… | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2026-22695 | Red Hat | medium | 6.1 | 0.0%
| ✓ Fix | LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portabl… | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2026-22801 | Red Hat | medium | 6.6 | 0.0%
| ✓ Fix | LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portabl… | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2025-15514 | Red Hat | high | 7.5 | 0.1%
| | Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in… | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2024-58340 | Red Hat | medium | 5.3 | 0.1%
| | LangChain versions up to and including 0.3.1 contain a regular expression denial-of-service (ReDoS) … | Jan 12, 2026 | Jan 12, 2026 |
| | CVE-2026-0908 | Red Hat | low | — | 0.1%
| | Use after free in ANGLE in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to potenti… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2026-0899 | Red Hat | high | 8.8 | 0.1%
| | Out of bounds memory access in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote attacker … | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2026-0902 | Red Hat | medium | 6.5 | 0.1%
| | Inappropriate implementation in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote attacker… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2026-0904 | Red Hat | medium | 6.5 | 0.0%
| | Incorrect security UI in Digital Credentials in Google Chrome prior to 144.0.7559.59 allowed a remot… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2026-0905 | Red Hat | medium | 6.5 | 0.0%
| | Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an attack… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2026-0907 | Red Hat | low | 4.3 | 0.1%
| | Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacke… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2026-0900 | Red Hat | high | 8.8 | 0.1%
| | Inappropriate implementation in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote attacker… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-71094 | Red Hat | medium | 4.0 | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
net: usb: asix: validate PHY add… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-68802 | Red Hat | low | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
drm/xe: Limit num_syncs to preve… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-71079 | Red Hat | medium | — | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
net: nfc: fix deadlock between n… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-68804 | Red Hat | medium | — | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
platform/chrome: cros_ec_ishtp: … | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-71095 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
net: stmmac: fix the crash issue… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-68785 | Red Hat | low | 5.5 | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
net: openvswitch: fix middle att… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-71065 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to avoid potential dea… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-68811 | Red Hat | medium | 7.1 | 0.0%
| ✓ Fix | In the Linux kernel, the following vulnerability has been resolved:
svcrdma: use rc_pageoff for memc… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-68789 | Red Hat | medium | — | — | | No description is available for this CVE. | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-68771 | Red Hat | medium | — | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
ocfs2: fix kernel BUG in ocfs2_f… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-71093 | Red Hat | medium | 6.5 | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
e1000: fix OOB in e1000_tbi_shou… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-71091 | Red Hat | medium | 5.5 | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
team: fix check for port enabled… | Jan 13, 2026 | Jan 13, 2026 |
| | CVE-2025-71092 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
RDMA/bnxt_re: Fix OOB write in b… | Jan 13, 2026 | Jan 13, 2026 |