| | CVE-2026-31399 | Red Hat | medium | 4.7 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
nvdimm/bus: Fix potential use af… | Apr 3, 2026 | Apr 3, 2026 |
| | CVE-2026-31395 | Red Hat | high | 7.0 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
bnxt_en: fix OOB access in DBG_B… | Apr 3, 2026 | Apr 3, 2026 |
| | CVE-2026-23435 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
perf/x86: Move event pointer set… | Apr 3, 2026 | Apr 3, 2026 |
| | CVE-2026-31403 | Red Hat | medium | 7.0 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
NFSD: Hold net reference for the… | Apr 3, 2026 | Apr 3, 2026 |
| | CVE-2026-31400 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
sunrpc: fix cache_request leak i… | Apr 3, 2026 | Apr 3, 2026 |
| | CVE-2026-23444 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
wifi: mac80211: always free skb … | Apr 3, 2026 | Apr 3, 2026 |
| | CVE-2026-32173 | Microsoft | high | 8.6 | 0.1%
| | Improper authentication in Azure SRE Agent allows an unauthorized attacker to disclose information o… | Apr 2, 2026 | Apr 24, 2026 |
| | CVE-2026-34760 | Red Hat | medium | 5.9 | 0.1%
| | vLLM is an inference and serving engine for large language models (LLMs). From version 0.5.5 to befo… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34743 | Red Hat | medium | 5.3 | 0.1%
| ✓ Fix | XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to versio… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34742 | Red Hat | high | 8.0 | — | | A flaw was found in the Model Context Protocol (MCP) Go SDK. When an HTTP-based MCP server is run on… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34601 | Red Hat | high | 7.5 | 0.0%
| | xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34591 | Red Hat | medium | 6.5 | 0.0%
| | Poetry is a dependency manager for Python. From version 1.4.0 to before version 2.3.3, a crafted whe… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2025-65114 | Apache | high | 7.5 | 0.0%
| | Apache Traffic Server allows request smuggling if chunked messages are malformed.
This issue affec… | Apr 2, 2026 | Apr 6, 2026 |
| | CVE-2025-58136 | Apache | high | 7.5 | 0.0%
| | A bug in POST request handling causes a crash under a certain condition.
This issue affects Apache … | Apr 2, 2026 | Apr 6, 2026 |
| | CVE-2026-26962 | Red Hat | medium | 4.8 | 0.0%
| | Rack is a modular Ruby web server interface. From version 3.2.0 to before version 3.2.6, Rack::Multi… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34835 | Red Hat | medium | 4.8 | 0.2%
| | Rack is a modular Ruby web server interface. From versions 3.0.0.beta1 to before 3.1.21, and 3.2.0 t… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-35414 | Red Hat | medium | 4.8 | 0.0%
| ✓ Fix | OpenSSH before 10.3 mishandles the authorized_keys principals option in uncommon scenarios involving… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34827 | Red Hat | high | 7.5 | 0.0%
| | Rack is a modular Ruby web server interface. From versions 3.0.0.beta1 to before 3.1.21, and 3.2.0 t… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-32762 | Red Hat | medium | 4.8 | 0.0%
| | Rack is a modular Ruby web server interface. From versions 3.0.0.beta1 to before 3.1.21 and 3.2.0 to… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-35388 | Red Hat | low | 2.2 | 0.0%
| ✓ Fix | OpenSSH before 10.3 omits connection multiplexing confirmation for proxy-mode multiplexing sessions. | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-35387 | Red Hat | low | 3.1 | 0.1%
| ✓ Fix | OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcc… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34830 | Red Hat | medium | 5.9 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Send… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34829 | Red Hat | high | 7.5 | 0.1%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Mult… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34826 | Red Hat | medium | 5.3 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Util… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34786 | Red Hat | medium | 6.5 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Stat… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-35386 | Red Hat | low | 3.6 | 0.0%
| ✓ Fix | In OpenSSH before 10.3, command execution can occur via shell metacharacters in a username within a … | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34785 | Red Hat | high | 7.5 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Stat… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34763 | Red Hat | medium | 5.3 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Dire… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34831 | Red Hat | medium | 4.8 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::File… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-26961 | Red Hat | low | 3.7 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Mult… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-34230 | Red Hat | medium | 5.3 | 0.0%
| | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Util… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-35385 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contr… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-32871 | Red Hat | high | 8.5 | 0.1%
| | FastMCP is a Pythonic way to build MCP servers and clients. Prior to version 3.2.0, the OpenAPIProvi… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31937 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network intrusion detection, prevention, and security monitoring eng… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31935 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata. A remote attacker can exploit this vulnerability by sending a flood of… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-5342 | Red Hat | medium | 5.3 | — | | A flaw was found in LibRaw. A remote attacker could exploit this vulnerability by manipulating the `… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31934 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network Intrusion Detection System (IDS), Intrusion Prevention Syste… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31933 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network Intrusion Detection System (IDS), Intrusion Prevention Syste… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31932 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network Intrusion Detection System (IDS), Intrusion Prevention Syste… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-31931 | Red Hat | high | 7.5 | — | | A flaw was found in Suricata, a network Intrusion Detection System (IDS), Intrusion Prevention Syste… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-3872 | Red Hat | high | 7.3 | — | ✓ Fix | A flaw was found in Keycloak. This issue allows an attacker, who controls another path on the same w… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-4282 | Red Hat | high | 7.4 | — | ✓ Fix | A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper ty… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-4325 | Red Hat | medium | 5.3 | — | ✓ Fix | A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper ty… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-4634 | Red Hat | high | 7.5 | — | ✓ Fix | A flaw was found in Keycloak. An unauthenticated attacker can exploit this vulnerability by sending … | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-4636 | Red Hat | high | 8.1 | — | ✓ Fix | A flaw was found in Keycloak. An authenticated user with the uma_protection role can bypass User-Man… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-5318 | Red Hat | medium | 6.5 | 0.0%
| | A flaw was found in LibRaw. A remote attacker could exploit this vulnerability by manipulating the '… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-5317 | Red Hat | medium | 6.3 | 0.0%
| | A flaw was found in Nothings stb, a library used for processing audio. A remote attacker can exploit… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-23414 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's Transport Layer Security (TLS) subsystem. When processing TLS… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-23417 | Red Hat | low | 5.5 | 0.0%
| | A flaw was found in the Linux kernel's Berkeley Packet Filter (BPF) component. This vulnerability oc… | Apr 2, 2026 | Apr 2, 2026 |
| | CVE-2026-23416 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel. An issue in the memory management (mm/mseal) component, specif… | Apr 2, 2026 | Apr 2, 2026 |