Gentoo

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202309-09 Related CVEs: CVE-2018-16877 CVE-2018-16878 CVE-2019-3885 CVE-2020-25654 Upstream summary: Multiple vulnerabilities have been discovered in Pacemaker. Please review the CVE identifiers referenced below for details. Table of contents Symptom & Impact Environment […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202004-01 Related CVEs: CVE-2019-19330 CVE-2020-11100 Upstream summary: It was discovered that HAProxy incorrectly handled certain HTTP/2 headers. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202305-34 Related CVEs: CVE-2020-28601 CVE-2020-28602 CVE-2020-28603 CVE-2020-28604 CVE-2020-28605 CVE-2020-28606 CVE-2020-28607 CVE-2020-28608  +12 more Upstream summary: Multiple vulnerabilities have been discovered in CGAL. Please review the CVE identifiers referenced below for details. Table […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202003-38 Related CVEs: CVE-2019-11037 Upstream summary: An out-of-bounds write vulnerability was discovered in the Imagick PHP extension. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202305-14 Related CVEs: CVE-2020-36657 Upstream summary: Via unnecessary file ownership modifications in the pkg_postinst ebuild phase, the uptimed user could change arbitrary files to be owned by the uptimed user at emerge-time. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202003-45 Related CVEs: CVE-2017-18342 CVE-2020-14343 CVE-2020-1747 Upstream summary: It was found that using yaml.load() API on untrusted input could lead to arbitrary code execution. Table of contents Symptom & Impact Environment & […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202301-05 Related CVEs: CVE-2022-42889 Upstream summary: Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation is "${prefix:name}", where "prefix" is used to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202003-44 Related CVEs: CVE-2014-9862 Upstream summary: It was discovered that the implementation of bspatch did not check for a negative value on numbers of bytes read from the diff and extra streams. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202301-04 Related CVEs: CVE-2022-39286 Upstream summary: jupyter_core trusts files for execution in the current working directory without validating ownership of those files. Table of contents Symptom & Impact Environment & Reproduction Root […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202003-21 Related CVEs: CVE-2019-16884 CVE-2019-19921 CVE-2019-5736 CVE-2021-30465 Upstream summary: Multiple vulnerabilities have been discovered in runC. Please review the CVE identifiers referenced below for details. Table of contents Symptom & Impact Environment […]