| | CVE-2026-22815 | Red Hat | medium | 5.3 | — | | A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework for Python. Insufficient r… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34514 | Red Hat | medium | 5.3 | — | | A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework for asyncio and Python. A … | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34515 | Red Hat | medium | 5.3 | — | | A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework. On Windows systems, the s… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34516 | Red Hat | medium | 5.3 | — | | A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework for asyncio and Python. A … | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34517 | Red Hat | low | 3.7 | — | | A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework for Python. A remote attac… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34518 | Red Hat | low | 3.7 | — | | A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework for asyncio and Python. Wh… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34519 | Red Hat | medium | 5.3 | — | | A flaw was found in aiohttp, an asynchronous HTTP client/server framework for Python. A remote attac… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34520 | Red Hat | low | 3.7 | — | | A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework for Python. The default C … | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34525 | Red Hat | medium | 5.4 | — | | A flaw was found in aiohttp, an asynchronous HTTP client/server framework for Python. This vulnerabi… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34545 | Red Hat | high | 8.8 | 0.0%
| | OpenEXR provides the specification and reference implementation of the EXR file format, an image sto… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34544 | Red Hat | medium | 6.6 | 0.0%
| | OpenEXR provides the specification and reference implementation of the EXR file format, an image sto… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34543 | Red Hat | medium | 6.5 | 0.0%
| | OpenEXR provides the specification and reference implementation of the EXR file format, an image sto… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-5313 | Red Hat | medium | 6.5 | 0.0%
| | A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbi__gif… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-5314 | Red Hat | medium | 6.5 | 0.1%
| | A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_intern… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-5315 | Red Hat | medium | 6.5 | 0.2%
| | A vulnerability was determined in Nothings stb up to 1.26. The affected element is the function stbt… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23415 | Red Hat | medium | 5.5 | 0.0%
| | A flaw was found in the Linux kernel. A timing issue, known as a race condition, exists within the f… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-23412 | Red Hat | medium | 5.5 | 0.0%
| | A flaw was found in the Linux kernel's netfilter BPF (Berkeley Packet Filter) component. A local att… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-23413 | Red Hat | medium | 5.5 | 0.0%
| | A flaw was found in the Linux kernel's clsact qdisc. This use-after-free vulnerability occurs due to… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-23416 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel. An issue in the memory management (mm/mseal) component, specif… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-23417 | Red Hat | low | 5.5 | 0.0%
| | A flaw was found in the Linux kernel's Berkeley Packet Filter (BPF) component. This vulnerability oc… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-23414 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's Transport Layer Security (TLS) subsystem. When processing TLS… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-5317 | Red Hat | medium | 6.3 | 0.0%
| | A flaw was found in Nothings stb, a library used for processing audio. A remote attacker can exploit… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-5318 | Red Hat | medium | 6.5 | 0.0%
| | A flaw was found in LibRaw. A remote attacker could exploit this vulnerability by manipulating the '… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-4636 | Red Hat | high | 8.1 | — | ✓ Fix | A flaw was found in Keycloak. An authenticated user with the uma_protection role can bypass User-Man… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-4634 | Red Hat | high | 7.5 | — | ✓ Fix | A flaw was found in Keycloak. An unauthenticated attacker can exploit this vulnerability by sending … | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-4325 | Red Hat | medium | 5.3 | — | ✓ Fix | A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper ty… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-4282 | Red Hat | high | 7.4 | — | ✓ Fix | A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper ty… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-3872 | Red Hat | high | 7.3 | — | ✓ Fix | A flaw was found in Keycloak. This issue allows an attacker, who controls another path on the same w… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31931 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network Intrusion Detection System (IDS), Intrusion Prevention Syste… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31932 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network Intrusion Detection System (IDS), Intrusion Prevention Syste… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31933 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network Intrusion Detection System (IDS), Intrusion Prevention Syste… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31934 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network Intrusion Detection System (IDS), Intrusion Prevention Syste… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-5342 | Red Hat | medium | 5.3 | — | | A flaw was found in LibRaw. A remote attacker could exploit this vulnerability by manipulating the `… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31935 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata. A remote attacker can exploit this vulnerability by sending a flood of… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31937 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network intrusion detection, prevention, and security monitoring eng… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-32871 | Red Hat | high | 8.5 | 0.1%
| | FastMCP is a Pythonic way to build MCP servers and clients. Prior to version 3.2.0, the OpenAPIProvi… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-35385 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contr… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34230 | Red Hat | medium | 5.3 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Util… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-26961 | Red Hat | low | 3.7 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Mult… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34831 | Red Hat | medium | 4.8 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::File… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34763 | Red Hat | medium | 5.3 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Dire… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34785 | Red Hat | high | 7.5 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Stat… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-35386 | Red Hat | low | 3.6 | 0.0%
| ✓ Fix | In OpenSSH before 10.3, command execution can occur via shell metacharacters in a username within a … | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34786 | Red Hat | medium | 6.5 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Stat… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34826 | Red Hat | medium | 5.3 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Util… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34829 | Red Hat | high | 7.5 | 0.1%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Mult… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34830 | Red Hat | medium | 5.9 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Send… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-35387 | Red Hat | low | 3.1 | 0.1%
| ✓ Fix | OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcc… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-35388 | Red Hat | low | 2.2 | 0.0%
| ✓ Fix | OpenSSH before 10.3 omits connection multiplexing confirmation for proxy-mode multiplexing sessions. | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-32762 | Red Hat | medium | 4.8 | 0.0%
| | Rack is a modular Ruby web server interface. From versions 3.0.0.beta1 to before 3.1.21 and 3.2.0 to… | Apr 2, 2026 | Apr 2, 2026 |