| | CVE-2026-23078 |  Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
ALSA: scarlett2: Fix buffer over… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23076 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
ALSA: ctxfi: Fix potential OOB a… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23045 | Red Hat | medium | 3.3 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
net/ena: fix missing lock when u… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23085 | Red Hat | low | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
irqchip/gic-v3-its: Avoid trunca… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23062 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
platform/x86: hp-bioscfg: Fix ke… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23108 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
can: usb_8dev: usb_8dev_read_bul… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23088 | Red Hat | low | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
tracing: Fix crash on synthetic … | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23081 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
net: phy: intel-xway: fix OF nod… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23090 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
slimbus: core: fix device refere… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23104 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
ice: fix devlink reload call tra… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23055 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
i2c: riic: Move suspend handling… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-23087 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
scsi: xen: scsiback: Fix potenti… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-25223 | Red Hat | high | 7.5 | 0.0%
| | Fastify is a fast and low overhead web framework, for Node.js. Prior to version 5.7.2, a validation … | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2026-25224 | Red Hat | low | 3.7 | 0.0%
| | Fastify is a fast and low overhead web framework, for Node.js. Prior to version 5.7.3, a denial-of-s… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-14550 | Red Hat | medium | 7.5 | 0.1%
| ✓ Fix | An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28.
`ASGIRequest`… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2026-1312 | Red Hat | high | 8.5 | 0.0%
| ✓ Fix | An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28.
`.QuerySet.or… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2026-1287 | Red Hat | high | 8.3 | 0.0%
| ✓ Fix | An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28.
`FilteredRela… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2026-1285 | Red Hat | medium | 7.5 | 0.1%
| ✓ Fix | An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28.
`django.utils… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2026-1207 | Red Hat | high | 8.3 | 5.5%
| ✓ Fix | An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28.
Raster lookup… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-13473 | Red Hat | low | 5.3 | 0.0%
| | An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28.
The `django.c… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-67483 | Red Hat | low | 3.7 | 0.0%
| | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-67484 | Red Hat | medium | 4.7 | 0.0%
| | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-67475 | Red Hat | medium | 4.6 | 0.0%
| | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-67476 | Red Hat | low | 4.3 | 0.0%
| | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-67477 | Red Hat | medium | 4.8 | 0.0%
| | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-67479 | Red Hat | low | 0.0 | 0.0%
| | Vulnerability in Wikimedia Foundation MediaWiki, Wikimedia Foundation Cite. This vulnerability is as… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-11261 | Red Hat | medium | 4.6 | 0.0%
| | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-61645 | Red Hat | high | 4.6 | 0.0%
| | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2026-1801 | Red Hat | low | 5.3 | 0.0%
| | A flaw was found in libsoup, an HTTP client/server library. This HTTP Request Smuggling vulnerabilit… | Feb 3, 2026 | Feb 3, 2026 |
| | CVE-2025-61637 | Red Hat | medium | 4.6 | 0.0%
| | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2025-61640 | Red Hat | medium | 4.6 | 0.0%
| | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2025-61642 | Red Hat | medium | 4.6 | 0.0%
| | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2025-6594 | Red Hat | high | 8.1 | 0.0%
| | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2025-6597 | Red Hat | medium | 0.0 | 0.0%
| | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2025-6927 | Red Hat | low | 5.3 | 0.0%
| | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-22778 | Red Hat | critical | 9.8 | 0.1%
| ✓ Fix | vLLM is an inference and serving engine for large language models (LLMs). From 0.8.3 to before 0.14.… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-24040 | Red Hat | medium | 7.5 | 0.0%
| | jsPDF is a library to generate PDFs in JavaScript. Prior to 4.1.0, the addJS method in the jspdf Nod… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-24043 | Red Hat | medium | 5.8 | 0.0%
| | jsPDF is a library to generate PDFs in JavaScript. Prior to 4.1.0, user control of the first argumen… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-24133 | Red Hat | medium | 6.5 | 0.0%
| | jsPDF is a library to generate PDFs in JavaScript. Prior to 4.1.0, user control of the first argumen… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-24737 | Red Hat | high | 8.3 | 0.0%
| | jsPDF is a library to generate PDFs in JavaScript. Prior to 4.1.0, user control of properties and me… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-1703 | Red Hat | low | 3.9 | 0.0%
| | When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted ou… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-1764 | Red Hat | medium | 5.6 | — | | A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor. When proce… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-1765 | Red Hat | medium | 5.6 | — | | A flaw was found in the `tracker-extract-mp3` component of GNOME localsearch (previously known as tr… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-1766 | Red Hat | medium | 5.6 | — | | A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifical… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-1767 | Red Hat | medium | 5.6 | — | | A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracke… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2025-6208 | Red Hat | medium | 5.3 | 0.1%
| | The `SimpleDirectoryReader` component in `llama_index.core` version 0.12.23 suffers from uncontrolle… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-1757 | Red Hat | medium | 6.2 | 0.0%
| | A flaw was identified in the interactive shell of the xmllint utility, part of the libxml2 project, … | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-1760 | Red Hat | medium | 5.3 | 0.0%
| | A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer … | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-1761 | Red Hat | high | 8.6 | 1.4%
| ✓ Fix | A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsin… | Feb 2, 2026 | Feb 2, 2026 |
| | CVE-2026-23016 | Red Hat | medium | 6.1 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
inet: frags: drop fraglist connt… | Jan 31, 2026 | Jan 31, 2026 |