OSV - Open Source Vulnerabilities

MGASA-2026-0009

Mageia:9/nodejs

Updated nodejs packages fix security vulnerabilities

1 hour ago

Fix available

MGASA-2026-0010

Mageia:9/libpng

Updated libpng packages fix security vulnerabilities

1 hour ago

Fix available

MGASA-2026-0011

Mageia:9/python-urllib3

Updated python-urllib3 packages fix security vulnerabilities

1 hour ago

Fix available

MGASA-2026-0012

Mageia:9/gimp

Updated gimp packages fix security vulnerabilities

1 hour ago

Fix available

ECHO-8e45-690d-3026

Echo/pyasn1

See record for full details

2 hours ago

No fix available

CVE-2026-22865

github.com/gradle/gradle

Gradle's failure to disable repositories failing to answer can expose builds to malicious artifacts

5 hours ago

Fix available
Severity - 8.6 (High)

CVE-2026-22816

github.com/gradle/gradle

Gradle fails to disable repositories which can expose builds to malicious artifacts

5 hours ago

Fix available
Severity - 8.6 (High)

CVE-2026-23745

github.com/isaacs/node-tar

node-tar Vulnerable to Arbitrary File Overwrite and Symlink Poisoning via Insufficient Path Sanitization

6 hours ago

Fix available
Severity - 8.2 (High)

GHSA-8qq5-rm4j-mr97

npm/tar

node-tar is Vulnerable to Arbitrary File Overwrite and Symlink Poisoning via Insufficient Path Sanitization

7 hours ago

Fix available
Severity - 8.2 (High)

GHSA-232v-j27c-5pp6

npm/@mcpjam/inspector

REC in MCPJam inspector due to HTTP Endpoint exposes

7 hours ago

Fix available
Severity - 9.8 (Critical)

GHSA-53wg-r69p-v3r7

npm/graphql-modules

GraphQL Modules has a Race Condition issue

7 hours ago

Fix available
Severity - 8.7 (High)

GHSA-38cw-85xc-xr9x

npm/@veramo/data-store

Veramo is Vulnerable to SQL Injection in Veramo Data Store ORM

7 hours ago

Fix available
Severity - 6.8 (Medium)

GHSA-cc8m-98fm-rc9g

Go/github.com/zalando/skipper

Skipper is vulnerable to arbitrary code execution through lua filters

7 hours ago

Fix available
Severity - 8.8 (High)

GHSA-qh8m-9qxx-53m5

Packagist/cakephp/cakephp

CakePHP PaginatorHelper::limitControl() vulnerable to reflected cross-site-scripting

7 hours ago

Fix available
Severity - 5.4 (Medium)

CGA-jgq8-jpw6-mpf8

Chainguard/datadog-cluster-agent-7.74
Wolfi/datadog-cluster-agent-7.74

See record for full details

7 hours ago

Fix available

CGA-frr2-g3xr-666v

Chainguard/py3-langchain
Chainguard/py3.10-langchain
Chainguard/py3.11-langchain
Chainguard/py3.12-langchain
Chainguard/py3.13-langchain
... 5 more

See record for full details

7 hours ago

Fix available