Gentoo

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202210-32 Related CVEs: CVE-2021-32765 Upstream summary: Hiredis is vulnerable to integer overflow if provided maliciously crafted or corrupted `RESP` `mult-bulk` protocol data. When parsing `multi-bulk` (array-like) replies, hiredis fails to check if […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202210-41 Related CVEs: CVE-2022-3168 CVE-2022-20128 Upstream summary: Multiple vulnerabilities have been discovered in android-tools. Please review the CVE identifiers referenced below for details. Table of contents Symptom & Impact Environment & Reproduction […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202210-31 Related CVEs: CVE-2021-3598 CVE-2021-3605 CVE-2021-3933 CVE-2021-3941 CVE-2021-20304 CVE-2021-23169 CVE-2021-45942 CVE-2020-11758  +12 more Upstream summary: Multiple vulnerabilities have been discovered in OpenEXR. Please review the CVE identifiers referenced below for details. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202210-33 Related CVEs: CVE-2021-46828 Upstream summary: Currently svc_run does not handle poll timeout and rendezvous_request does not handle EMFILE error returned from accept(2 as it used to. These two missing functionality were […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202209-22 Related CVEs: CVE-2022-41322 Upstream summary: Carter Sande discovered that maliciously constructed control sequences can cause Kitty to display a notification that, when clicked, can cause Kitty to execute arbitrary commands. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202209-25 Related CVEs: CVE-2022-41138 Upstream summary: Zutty does not correctly handle invalid DECRQSS commands, which can be exploited to run arbitrary commands in the terminal. Table of contents Symptom & Impact Environment […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202209-10 Related CVEs: CVE-2017-20148 Upstream summary: The pkg_postinst phase of the Logcheck ebuilds recursively chown the /etc/logcheck and /var/lib/logcheck directories. If the logcheck adds hardlinks to other files in these directories, the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202209-15 Related CVEs: CVE-2020-2585 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803  +12 more Upstream summary: Multiple vulnerabilities have been discovered in Oracle's JDK and JRE software suites. Please review the CVE identifiers […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202209-15 Related CVEs: CVE-2020-2585 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803  +12 more Upstream summary: Multiple vulnerabilities have been discovered in Oracle's JDK and JRE software suites. Please review the CVE identifiers […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Gentoo Linux 📖 ~4 min read  •  Source: Gentoo GLSA GLSA-202209-09 Related CVEs: CVE-2018-25047 CVE-2021-21408 CVE-2021-29454 CVE-2022-29221 CVE-2021-26119 CVE-2021-26120 Upstream summary: Multiple vulnerabilities have been discovered in Smarty. Please review the CVE identifiers referenced below for details. Table of contents Symptom & […]