Publish Advisories

GHSA-3v2x-94p8-whg9
GHSA-2vwv-vqpv-v8vc
GHSA-6vhj-8f7g-v7f7
GHSA-922m-q3x3-5pf9
GHSA-h5vx-6jh5-qhq7
GHSA-hfg6-72xh-m6qg
GHSA-hvj3-h37v-8xmq
GHSA-j666-j6hj-fpc7
GHSA-q397-v647-xvh6
GHSA-r23q-823p-vmf7
GHSA-x497-46w3-2gh7
GHSA-x7cq-7pqm-2pgr

Author: advisory-database[bot]

advisories/unreviewed/2026/02/GHSA-3v2x-94p8-whg9/GHSA-3v2x-94p8-whg9.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-3v2x-94p8-whg9",
-  "modified": "2026-02-20T18:31:27Z",
+  "modified": "2026-03-30T09:31:28Z",
   "published": "2026-02-19T18:31:52Z",
   "aliases": [
     "CVE-2026-25315"
@@ -26,6 +26,7 @@
   ],
   "database_specific": {
     "cwe_ids": [
+      "CWE-358",
       "CWE-862"
     ],
     "severity": "MODERATE",

advisories/unreviewed/2026/03/GHSA-2vwv-vqpv-v8vc/GHSA-2vwv-vqpv-v8vc.json

@@ -0,0 +1,33 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-2vwv-vqpv-v8vc",
+  "modified": "2026-03-30T09:31:29Z",
+  "published": "2026-03-30T09:31:29Z",
+  "aliases": [
+    "CVE-2026-5121"
+  ],
+  "details": "A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5121"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/libarchive/libarchive/pull/2934"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/security/cve/CVE-2026-5121"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-30T08:16:18Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-6vhj-8f7g-v7f7/GHSA-6vhj-8f7g-v7f7.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-6vhj-8f7g-v7f7",
+  "modified": "2026-03-30T09:31:29Z",
+  "published": "2026-03-30T09:31:29Z",
+  "aliases": [
+    "CVE-2026-3945"
+  ],
+  "details": "An integer overflow vulnerability in the HTTP chunked transfer encoding parser in tinyproxy up to and including version 1.11.3 allows an unauthenticated remote attacker to cause a denial of service (DoS). The issue occurs because chunk size values are parsed using strtol() without properly validating overflow conditions (e.g., errno == ERANGE). A crafted chunk size such as 0x7fffffffffffffff (LONG_MAX) bypasses the existing validation check (chunklen < 0), leading to a signed integer overflow during arithmetic operations (chunklen + 2). This results in incorrect size calculations, causing the proxy to attempt reading an extremely large amount of request-body data and holding worker connections open indefinitely. An attacker can exploit this behavior to exhaust all available worker slots, preventing new connections from being accepted and causing complete service unavailability. Upstream addressed this issue in commit bb7edc4; however, the latest stable release (1.11.3) remains affected at the time of publication.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3945"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/tinyproxy/tinyproxy/issues/602"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/tinyproxy/tinyproxy/pull/603"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/tinyproxy/tinyproxy/commit/969852c"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/tinyproxy/tinyproxy/commit/bb7edc4"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/tinyproxy/tinyproxy/releases"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-190"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-30T08:16:17Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-922m-q3x3-5pf9/GHSA-922m-q3x3-5pf9.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-922m-q3x3-5pf9",
+  "modified": "2026-03-30T09:31:28Z",
+  "published": "2026-03-30T09:31:28Z",
+  "aliases": [
+    "CVE-2025-3716"
+  ],
+  "details": "User enumeration in ESET Protect (on-prem) via Response Timing.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-3716"
+    },
+    {
+      "type": "WEB",
+      "url": "https://help.eset.com/changelogs/?product=protect&lang=en-US"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-204"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-30T08:16:16Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-h5vx-6jh5-qhq7/GHSA-h5vx-6jh5-qhq7.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-h5vx-6jh5-qhq7",
+  "modified": "2026-03-30T09:31:28Z",
+  "published": "2026-03-30T09:31:28Z",
+  "aliases": [
+    "CVE-2026-25704"
+  ],
+  "details": "A Privilege Dropping / Lowering Errors/Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in  cosmic-greeter can allow an attacker to regain privileges that should have been dropped and abuse them in the racy checking logic.\n\n\n\n\nThis issue affects cosmic-greeter before https://github.Com/pop-os/cosmic-greeter/pull/426.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25704"
+    },
+    {
+      "type": "WEB",
+      "url": "https://bugzilla.suse.com/show_bug.cgi?id=CVE-2026-25704"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-271"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-30T08:16:16Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-hfg6-72xh-m6qg/GHSA-hfg6-72xh-m6qg.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-hfg6-72xh-m6qg",
+  "modified": "2026-03-30T09:31:28Z",
+  "published": "2026-03-30T09:31:28Z",
+  "aliases": [
+    "CVE-2026-2328"
+  ],
+  "details": "An unauthenticated remote attacker can exploit insufficient input validation to access backend components beyond their intended scope via path traversal, resulting in exposure of sensitive information.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2328"
+    },
+    {
+      "type": "WEB",
+      "url": "https://certvde.com/de/advisories/VDE-2026-010"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-790"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-30T08:16:17Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-hvj3-h37v-8xmq/GHSA-hvj3-h37v-8xmq.json

@@ -0,0 +1,44 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-hvj3-h37v-8xmq",
+  "modified": "2026-03-30T09:31:29Z",
+  "published": "2026-03-30T09:31:28Z",
+  "aliases": [
+    "CVE-2026-4415"
+  ],
+  "details": "Gigabyte Control Center developed by GIGABYTE has an Arbitrary File Write vulnerability. When the pairing feature is enabled, unauthenticated remote attackers can write arbitrary files to any location on the underlying operating system, leading to arbitrary code execution or privilege escalation.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4415"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.twcert.org.tw/en/cp-139-10804-689cd-2.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.twcert.org.tw/tw/cp-132-10803-ae014-1.html"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-23"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-30T08:16:18Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-j666-j6hj-fpc7/GHSA-j666-j6hj-fpc7.json

@@ -0,0 +1,44 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-j666-j6hj-fpc7",
+  "modified": "2026-03-30T09:31:28Z",
+  "published": "2026-03-30T09:31:28Z",
+  "aliases": [
+    "CVE-2026-5119"
+  ],
+  "details": "A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, leading to potential session hijacking or user impersonation.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5119"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/security/cve/CVE-2026-5119"
+    },
+    {
+      "type": "WEB",
+      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452932"
+    },
+    {
+      "type": "WEB",
+      "url": "https://gitlab.gnome.org/GNOME/libsoup/-/issues/502"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-319"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-30T07:15:58Z"
+  }
+}

advisories/unreviewed/2026/03/GHSA-q397-v647-xvh6/GHSA-q397-v647-xvh6.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-q397-v647-xvh6",
-  "modified": "2026-03-26T18:31:29Z",
+  "modified": "2026-03-30T09:31:28Z",
   "published": "2026-03-25T12:30:24Z",
   "aliases": [
     "CVE-2026-31788"
@@ -22,6 +22,10 @@
       "type": "WEB",
       "url": "https://git.kernel.org/stable/c/389bae9a4409934e8b8d4dbdaaf02a3ae71cf8e4"
     },
+    {
+      "type": "WEB",
+      "url": "https://git.kernel.org/stable/c/453b8fb68f3641fea970db88b7d9a153ed2a37e8"
+    },
     {
       "type": "WEB",
       "url": "https://git.kernel.org/stable/c/78432d8f0372c71c518096395537fa12be7ff24e"

advisories/unreviewed/2026/03/GHSA-r23q-823p-vmf7/GHSA-r23q-823p-vmf7.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-r23q-823p-vmf7",
+  "modified": "2026-03-30T09:31:28Z",
+  "published": "2026-03-30T09:31:28Z",
+  "aliases": [
+    "CVE-2025-15379"
+  ],
+  "details": "A command injection vulnerability exists in MLflow's model serving container initialization code, specifically in the `_install_model_dependencies_to_env()` function. When deploying a model with `env_manager=LOCAL`, MLflow reads dependency specifications from the model artifact's `python_env.yaml` file and directly interpolates them into a shell command without sanitization. This allows an attacker to supply a malicious model artifact and achieve arbitrary command execution on systems that deploy the model. The vulnerability affects versions 3.8.0 and is fixed in version 3.8.2.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15379"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/mlflow/mlflow/commit/361b6f620adf98385c6721e384fb5ef9a30bb05e"
+    },
+    {
+      "type": "WEB",
+      "url": "https://huntr.com/bounties/dc9c1c20-7879-4050-87df-4d095fe5ca75"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-77"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-03-30T08:16:15Z"
+  }
+}