CVE Vulnerabilities - 16 April 2026

This update fixes two security issues in Terraform's providers for local storage, randomness, and TLS. If not patched, these issues could allow attackers to consume corrupted files or bypass authoriza...

This update fixes two critical bugs in the tiff software that could cause the program to crash or produce incorrect results, potentially leading to data corruption. These issues were found in the way ...

This update for Tiff fixes two critical issues that could cause data corruption or crashes in the application. If left unpatched, these vulnerabilities could allow malicious users to manipulate or des...

An update for Ubuntu Linux fixes a security issue that could allow an attacker to bypass access controls using the login program. Additionally, the update addresses issues with partition management an...

A patch has been released for rootio-tar in Debian 13 to prevent unauthorized access to sensitive data. This vulnerability allows attackers to access sensitive information. Update your system to the l...

The rootio-glibc software had a vulnerability that allowed attackers to potentially execute malicious code on a system remotely. This issue has been fixed by the developers, and updates are available....

A patch has been released for a vulnerability in the rootio-glibc package on Root:Debian:13. This issue could allow an attacker with local access to read or write sensitive files. It's recommended to ...

A vulnerability in the rootio-glibc package on Root devices could allow unauthorized access to sensitive data. This issue has been fixed in updated versions of the software, so it's essential to apply...

The rootio-glibc package in Root:Debian:13 has a security issue that could allow an attacker to gain unauthorized access. This issue has been fixed, so it's essential to update the package to the late...

A patch has been released to fix a critical security issue in the rootio-glibc package on Root:Debian:13. This issue could allow an attacker to execute arbitrary code on the system. We recommend updat...

A patch has been released for a vulnerability in the rootio-glibc package on Debian 13. If left unpatched, an attacker could potentially take control of the system. Update to a fixed version of rootio...

An update has been released for rootio-glibc, which fixes a security issue that could allow unauthorized access to system files on a Root Debian 13 system. This could potentially lead to data loss or ...

An update for the Python PyJWT library is available to fix a vulnerability that could allow an attacker to inject arbitrary data into certain types of JSON Web Tokens (JWTs). This is a security risk b...

A security update for CUPS fixes a vulnerability that could allow an attacker with local access to print a document and then access administrative functions for all printers. This could be used to gai...

FreeRDP, a tool for remote desktop connections, has security updates to prevent hackers from taking control of your server or executing malicious code. This update is important if you use remote deskt...

This update for plexus-utils fixes a security weakness that could allow an attacker to access and manipulate files on a system. This is a potential security risk, so it's recommended to update to the ...

Plexus-Utils, a library used by some software, has a security issue that could allow an attacker to access files they shouldn't be able to. This update fixes the problem and we recommend updating to v...

A vulnerability in the spdystream library for Go can cause a service to consume all available memory and crash. This can happen if a malicious peer sends a specially crafted message to the service. Th...

A security update is available for Azure Storage AzCopy to prevent unauthorized access to sensitive data. This update fixes a bug that could allow an attacker to access restricted areas of the system....

A security update is available for Corosync, a tool used in high-availability clusters. This update fixes two security issues that could allow an attacker to crash the system or access sensitive infor...

Corosync, a software used for clustering and high availability, has released an update to fix a pair of issues that could allow an attacker to crash the system or access sensitive information. If left...

A security update for python-PyJWT addresses an issue where unknown header extensions could be accepted, potentially leading to security risks. This could allow an attacker to manipulate the token's p...

An update for the Python PyJWT library fixes a security issue that could allow attackers to bypass security checks by using unknown header extensions. This affects Python users who rely on PyJWT for s...