Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how freedesktop.org compares to other vendors in security performance

View Risk Score →

oss-secOn the issue of MIME handlers that execute arbitrary code (e.g. Wine)

First published (updated )
https://seclists.org/oss-sec/2026/q2/632

oss-secOn the issue of MIME handlers that execute arbitrary code (e.g. Wine)

First published (updated )
https://seclists.org/oss-sec/2026/q2/627

oss-secOn the issue of MIME handlers that execute arbitrary code (e.g. Wine)

First published (updated )
https://seclists.org/oss-sec/2026/q2/621

oss-secOn the issue of MIME handlers that execute arbitrary code (e.g. Wine)

First published (updated )
https://seclists.org/oss-sec/2026/q2/610

oss-secOn the issue of MIME handlers that execute arbitrary code (e.g. Wine)

First published (updated )
https://seclists.org/oss-sec/2026/q2/574
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

oss-secOn the issue of MIME handlers that execute arbitrary code (e.g. Wine)

First published (updated )
https://seclists.org/oss-sec/2026/q2/573

oss-secFW: libinput Security Advisory: multiple security issues in libinput

First published (updated )
https://seclists.org/oss-sec/2026/q2/5

Fedoraproject FedoraLibinput: libinput: information disclosure via dangling pointer in lua plugin handling

Risk 34
Severity
5.5
First published (updated )
CVE-2026-35094

freedesktop.org libinputAn attacker that can deploy a lua file {/usr/share,/etc}/libinput/plugins and possibly XDG_CONFIG_HO…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2453840

Freedesktop LibinputLibinput: libinput: unauthorized code execution and information disclosure through lua bytecode plugins

Risk 76
Severity
8.8
First published (updated )
CVE-2026-35093
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

freedesktop.org libinputAn attacker that can deploy a pre-compiled lua bytecode file in {/usr/share,/etc}/libinput/plugins a…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2453839

redhat Enterprise LinuxPolkit: polkit: denial of service via unbounded input processing through standard input

Risk 24
Severity
5.5
EPSS
0.01%
First published (updated )
CVE-2026-4897

freedesktop.org polkitThe helper supports two ways to receive the cookie: via `argv[2]` when `argc == 3`, or via stdin whe…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2451739

freedesktop.org polkitWhen polkit is processing a XML policy with 32 or more nested elements in depth, an out-of-bounds wr…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2379675

xdg-open bypassing SameSite=Strict

First published (updated )
https://seclists.org/oss-sec/2025/q2/271
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

freedesktop.org xdg-utilsCSRF

Risk 12
Severity
2.7
EPSS
0.01%
First published (updated )
CVE-2025-52968

Title: Format string vulnerability in libinput Report URL: https://gitlab.freedesktop.org/libinput/l…

First published (updated )
https://seclists.org/oss-sec/2022/q2/47

freedesktop.org xdg-utilsA flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: …

Risk 18
Severity
4
First published (updated )
REDHAT-BUG-1899769

freedesktop.org pdftoopvpBuffer Overflow

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1027548

freedesktop.org popplerA number of invalid memory access flaws were reported in poppler (fixed in version 0.22.1): - Fix i…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-917108
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

freedesktop.org D-BUSA stack overflow flaw was found in the way the D-BUS message bus service / messaging facility valida…

Risk 18
Severity
4
First published (updated )
REDHAT-BUG-663673

freedesktop.org UDisksBastian Blank reported: [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576687 an informatio…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-580005

freedesktop.org DeviceKitA privilege escalation flaw was found in the way DeviceKit used to handle labels for pluggable stora…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-523178

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203