CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2026-2219
https://notcve.org/view.php?id=CVE-2026-2219
07 Mar 2026 — It was discovered that dpkg-deb (a component of dpkg, the Debian package management system) does not properly validate the end of the data stream when uncompressing a zstd-compressed .deb archive, which may result in denial of service (infinite loop spinning the CPU). Se descubrió que dpkg-deb (un componente de dpkg, el sistema de gestión de paquetes de Debian) no valida correctamente el final del flujo de datos al descomprimir un archivo .deb comprimido con zstd, lo que puede resultar en denegación de serv... • https://bugs.debian.org/1129722 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2026-2661 – Squirrel sqobject.h operator heap-based overflow
https://notcve.org/view.php?id=CVE-2026-2661
18 Feb 2026 — A security flaw has been discovered in Squirrel up to 3.2. This affects the function SQObjectPtr::operator in the library squirrel/sqobject.h. The manipulation results in heap-based buffer overflow. The attack needs to be approached locally. The exploit has been released to the public and may be used for attacks. • https://github.com/albertodemichelis/squirrel/issues/310 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2026-2659 – Squirrel sqfuncstate.cpp PopTarget out-of-bounds
https://notcve.org/view.php?id=CVE-2026-2659
18 Feb 2026 — A vulnerability was determined in Squirrel up to 3.2. Affected by this vulnerability is the function SQFuncState::PopTarget of the file src/squirrel/squirrel/sqfuncstate.cpp. Executing a manipulation of the argument _target_stack can lead to out-of-bounds read. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. • https://github.com/albertodemichelis/squirrel/issues/311 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2026-2653 – admesh normals.c stl_check_normal_vector heap-based overflow
https://notcve.org/view.php?id=CVE-2026-2653
18 Feb 2026 — A security flaw has been discovered in admesh up to 0.98.5. This issue affects the function stl_check_normal_vector of the file src/normals.c. Performing a manipulation results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit has been released to the public and may be used for attacks. • https://github.com/admesh/admesh • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2024-31884 – Red Hat Security Advisory 2026-2800-03
https://notcve.org/view.php?id=CVE-2024-31884
17 Feb 2026 — pybind: Improper use of Pybind A new version of Red Hat build of Ceph Storage has been released. •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 0CVE-2026-2447 – Heap buffer overflow in libvpx
https://notcve.org/view.php?id=CVE-2026-2447
16 Feb 2026 — Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2. • https://bugzilla.mozilla.org/show_bug.cgi?id=2014390 • CWE-122: Heap-based Buffer Overflow •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-14282 – Dropbear: privilege escalation via unix domain socket forwardings
https://notcve.org/view.php?id=CVE-2025-14282
12 Feb 2026 — A flaw was found in Dropbear. When running in multi-user mode and authenticating users, the dropbear ssh server does the socket forwardings requested by the remote client as root, only switching to the logged-in user upon spawning a shell or performing some operations like reading the user's files. With the recent ability of also using unix domain sockets as the forwarding destination any user able to log in via ssh can connect to any unix socket with the root's credentials, bypassing both file system restr... • https://github.com/mkj/dropbear/pull/391 • CWE-266: Incorrect Privilege Assignment •
CVSS: 8.5EPSS: 0%CPEs: 2EXPL: 0CVE-2026-2007 – PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory
https://notcve.org/view.php?id=CVE-2026-2007
12 Feb 2026 — Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted input string. The attacker has limited control over the byte patterns to be written, but we have not ruled out the viability of attacks that lead to privilege escalation. PostgreSQL 18.1 and 18.0 are affected. • https://www.postgresql.org/support/security/CVE-2026-2007 • CWE-122: Heap-based Buffer Overflow •
CVSS: 6.3EPSS: 0%CPEs: 3EXPL: 0CVE-2026-2391 – qs's arrayLimit bypass in comma parsing allows denial of service
https://notcve.org/view.php?id=CVE-2026-2391
12 Feb 2026 — ### Summary The `arrayLimit` option in qs does not enforce limits for comma-separated values when `comma: true` is enabled, allowing attackers to cause denial-of-service via memory exhaustion. This is a bypass of the array limit enforcement, similar to the bracket notation bypass addressed in GHSA-6rw7-vpxm-498p (CVE-2025-15284). ### Details When the `comma` option is set to `true` (not the default, but configurable in applications), qs allows parsing comma-separated strings as arrays (e.g., `?param=a,b,c` ... • https://github.com/ljharb/qs/commit/f6a7abff1f13d644db9b05fe4f2c98ada6bf8482 • CWE-20: Improper Input Validation •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2026-2003 – PostgreSQL oidvector discloses a few bytes of memory
https://notcve.org/view.php?id=CVE-2026-2003
12 Feb 2026 — Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. Multiple security issues were discovered in PostgreSQL, which may result in memory disclosure or the execution of arbitrary code. For the oldstable distribution (bookworm), th... • https://www.postgresql.org/support/security/CVE-2026-2003 • CWE-1287: Improper Validation of Specified Type of Input •