OSV - Open Source Vulnerabilities

BIT-gitlab-2026-4916

Bitnami/gitlab

Missing Authorization in GitLab

3 hours ago

Fix available
Severity - 2.7 (Low)

BIT-gitlab-2026-4332

Bitnami/gitlab

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

3 hours ago

Fix available
Severity - 5.4 (Medium)

BIT-gitlab-2026-2619

Bitnami/gitlab

Incorrect Authorization in GitLab

4 hours ago

Fix available
Severity - 4.3 (Medium)

BIT-gitlab-2026-2104

Bitnami/gitlab

Authorization Bypass Through User-Controlled Key in GitLab

4 hours ago

Fix available
Severity - 4.3 (Medium)

BIT-gitlab-2026-1516

Bitnami/gitlab

Improper Control of Generation of Code ('Code Injection') in GitLab

4 hours ago

Fix available
Severity - 5.7 (Medium)

BIT-gitlab-2026-1101

Bitnami/gitlab

Improper Validation of Specified Quantity in Input in GitLab

4 hours ago

Fix available
Severity - 6.5 (Medium)

BIT-gitlab-2025-9484

Bitnami/gitlab

Missing Authorization in GitLab

4 hours ago

Fix available
Severity - 4.3 (Medium)

BIT-gitlab-2025-12664

Bitnami/gitlab

Improper Validation of Specified Quantity in Input in GitLab

4 hours ago

Fix available
Severity - 7.5 (High)

RLSA-2026:7670

Rocky Linux:8/nodejs-nodemon
Rocky Linux:8/nodejs-packaging

Important: nodejs:24 security update

4 hours ago

Fix available
Severity - 7.5 (High)

BIT-tomcat-2026-34486

Bitnami/tomcat

Apache Tomcat: Fix for CVE-2026-29146 allowed bypass of EncryptInterceptor

4 hours ago

Fix available
Severity - 7.5 (High)

BIT-tomcat-2026-32990

Bitnami/tomcat

Apache Tomcat: Fix for CVE-2025-66614 is incomplete

4 hours ago

Fix available
Severity - 5.3 (Medium)

BIT-tomcat-2026-29129

Bitnami/tomcat

Apache Tomcat: TLS cipher order is not preserved

4 hours ago

Fix available
Severity - 7.5 (High)

BIT-golang-2026-33810

Bitnami/golang

Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509

4 hours ago

Fix available

BIT-golang-2026-32289

Bitnami/golang

JsBraceDepth Context Tracking Bugs (XSS) in html/template

4 hours ago

Fix available

BIT-golang-2026-32288

Bitnami/golang

Unbounded allocation for old GNU sparse in archive/tar

4 hours ago

Fix available

BIT-golang-2026-32283

Bitnami/golang

Unauthenticated TLS 1.3 KeyUpdate record can cause persistent connection retention and DoS in crypto/tls

4 hours ago

Fix available