Search CVE reports


Toggle filters

261 – 270 of 42294 results

Status is adjusted based on your filters.


CVE-2026-55895

Medium priority
Vulnerable

Vim is an open source, command line text editor. Prior to 9.2.0663, a Vimscript code injection vulnerability exists in s:NetrwLocalRmFile() in the netrw plugin (runtime/pack/dist/opt/netrw/autoload/netrw.vim) when deleting a local...

1 affected package

vim

Package 20.04 LTS
vim Vulnerable
Show less packages

CVE-2026-55892

Medium priority
Vulnerable

Vim is an open source, command line text editor. Prior to 9.2.0662, the dump_prefixes() function in src/spell.c walks a spell-file prefix trie iteratively with a depth counter while dumping the prefixes that apply to a word. The...

1 affected package

vim

Package 20.04 LTS
vim Vulnerable
Show less packages

CVE-2026-55693

Medium priority
Vulnerable

Vim is an open source, command line text editor. Prior to 9.2.0653, the tree_count_words() function in src/spellfile.c fills in the word-count fields of a spell-file word trie by walking it iteratively with a depth counter. The...

1 affected package

vim

Package 20.04 LTS
vim Vulnerable
Show less packages

CVE-2026-12844

Medium priority
Needs evaluation

List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function. pairwise() collects the values returned by the block into a heap buffer sized to the longer input array, then grows the buffer...

1 affected package

liblist-someutils-xs-perl

Package 20.04 LTS
liblist-someutils-xs-perl Needs evaluation
Show less packages

CVE-2026-57437

Medium priority
Needs evaluation

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::XPathContext did not keep its source document alive for garbage collection. If an XPathContext outlived its...

1 affected package

ruby-nokogiri

Package 20.04 LTS
ruby-nokogiri Needs evaluation
Show less packages

CVE-2026-57436

Medium priority
Needs evaluation

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::Document#root= validated only that the new root was a Nokogiri::XML::Node, allowing a DTD node to be set as the...

1 affected package

ruby-nokogiri

Package 20.04 LTS
ruby-nokogiri Needs evaluation
Show less packages

CVE-2026-57435

Medium priority
Needs evaluation

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri’s CRuby native extension could leave a Ruby wrapper pointing to freed memory when replacing the value of an...

1 affected package

ruby-nokogiri

Package 20.04 LTS
ruby-nokogiri Needs evaluation
Show less packages

CVE-2026-57434

Medium priority
Needs evaluation

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri contains a bug when calling certain methods on allocated-but-uninitialized native wrapper classes that inherit from...

1 affected package

ruby-nokogiri

Package 20.04 LTS
ruby-nokogiri Needs evaluation
Show less packages

CVE-2026-57236

Medium priority
Needs evaluation

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, calling Document#encoding= with an invalid encoding (e.g., a non-string, or a string containing a null byte) raises an exception,...

1 affected package

ruby-nokogiri

Package 20.04 LTS
ruby-nokogiri Needs evaluation
Show less packages

CVE-2026-57235

Medium priority
Needs evaluation

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::NodeSet#[] (and its alias #slice) checked the requested index against the node set's bounds using...

1 affected package

ruby-nokogiri

Package 20.04 LTS
ruby-nokogiri Needs evaluation
Show less packages