Search CVE reports


Toggle filters

1 – 10 of 525 results


CVE-2026-58102

Medium priority
Needs evaluation

Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts. When building the extension hash (via extensions(), extensions_by_long_name(),...

1 affected package

libcrypt-openssl-x509-perl

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libcrypt-openssl-x509-perl Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-58101

Medium priority
Needs evaluation

Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3_EXT_d2i(ext) returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth_att dereference...

1 affected package

libcrypt-openssl-x509-perl

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libcrypt-openssl-x509-perl Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-60002

Medium priority

Some fixes available 3 of 14

ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchange. (This outcome occurs only on the client side.)

2 affected packages

openssh, openssh-ssh1

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openssh Fixed Fixed Fixed Needs evaluation Needs evaluation
openssh-ssh1 Ignored Ignored Ignored Ignored Ignored
Show less packages

CVE-2026-60001

Medium priority

Some fixes available 3 of 14

sshd in OpenSSH before 10.4 does not always honor the minimum authentication delay.

2 affected packages

openssh, openssh-ssh1

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openssh Fixed Fixed Fixed Needs evaluation Needs evaluation
openssh-ssh1 Ignored Ignored Ignored Ignored Ignored
Show less packages

CVE-2026-60000

Medium priority

Some fixes available 3 of 14

sshd in OpenSSH before 10.4 allows remote attackers to cause a denial of service (resource consumption from excessive authentication attempts) because MaxAuthTries was mishandled for GSSAPIAuthentication.

2 affected packages

openssh, openssh-ssh1

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openssh Fixed Fixed Fixed Needs evaluation Needs evaluation
openssh-ssh1 Ignored Ignored Ignored Ignored Ignored
Show less packages

CVE-2026-59999

Medium priority

Some fixes available 3 of 14

In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not.

2 affected packages

openssh, openssh-ssh1

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openssh Fixed Fixed Fixed Needs evaluation Needs evaluation
openssh-ssh1 Ignored Ignored Ignored Ignored Ignored
Show less packages

CVE-2026-59998

Medium priority

Some fixes available 3 of 14

sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory.

2 affected packages

openssh, openssh-ssh1

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openssh Fixed Fixed Fixed Needs evaluation Needs evaluation
openssh-ssh1 Ignored Ignored Ignored Ignored Ignored
Show less packages

CVE-2026-59997

Medium priority

Some fixes available 3 of 14

internal-sftp in sshd in OpenSSH before 10.4 recognizes only the first 9 command-line arguments, which can be important if a later command-line argument would have helped to ensure the intended security properties of an SFTP connection.

2 affected packages

openssh, openssh-ssh1

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openssh Fixed Fixed Fixed Needs evaluation Needs evaluation
openssh-ssh1 Ignored Ignored Ignored Ignored Ignored
Show less packages

CVE-2026-59996

Medium priority

Some fixes available 3 of 14

scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.

2 affected packages

openssh, openssh-ssh1

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openssh Fixed Fixed Fixed Needs evaluation Needs evaluation
openssh-ssh1 Ignored Ignored Ignored Ignored Ignored
Show less packages

CVE-2026-59995

Medium priority

Some fixes available 3 of 14

sftp in OpenSSH before 10.4 does not properly constrain the location of downloaded files when "sftp server:/path ." is used with an attacker-controlled server.

2 affected packages

openssh, openssh-ssh1

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
openssh Fixed Fixed Fixed Needs evaluation Needs evaluation
openssh-ssh1 Ignored Ignored Ignored Ignored Ignored
Show less packages