| CVE-2026-39821 |
critical |
9.6 |
9.6 |
|
|
|
8d ago |
The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode("xn--example-.com") incorrectly returns the name "example.com… |
| CVE-2023-44487 |
high |
7.5 |
9.0 |
|
|
|
3y ago |
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2023-45288 |
high |
— |
8.0 |
|
|
|
2y ago |
RHSA-2024:3346: git-lfs security update (Important) |
| CVE-2019-9512 |
high |
— |
8.0 |
|
|
|
4y ago |
RHSA-2019:4273: container-tools:1.0 security update (Important) |
| CVE-2019-9514 |
high |
— |
8.0 |
|
|
|
4y ago |
RHSA-2019:4273: container-tools:1.0 security update (Important) |
| CVE-2021-44716 |
high |
— |
8.0 |
|
|
|
5y ago |
RHSA-2022:0001: grafana security update (Important) |
| CVE-2026-33814 |
high |
7.5 |
7.5 |
|
|
|
23d ago |
When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0. |
| CVE-2026-25680 |
medium |
6.5 |
6.5 |
|
|
|
8d ago |
Invoking denial of service when parsing arbitrary HTML in golang.org/x/net/html |
| CVE-2026-42506 |
medium |
6.1 |
6.1 |
|
|
|
8d ago |
Invoking incorrect handling of namespaced elements in foreign content in golang.org/x/net/html |
| CVE-2026-42502 |
medium |
6.1 |
6.1 |
|
|
|
8d ago |
Invoking incorrect handling of HTML elements in foreign content in golang.org/x/net/html |
| CVE-2026-27136 |
medium |
6.1 |
6.1 |
|
|
|
8d ago |
Invoking duplicate attributes can cause XSS in golang.org/x/net/html |
| CVE-2026-25681 |
medium |
6.1 |
6.1 |
|
|
|
8d ago |
Invoking incorrect handling of character references in DOCTYPE nodes in golang.org/x/net/html |
| CVE-2023-3978 |
medium |
— |
5.5 |
|
|
|
3y ago |
RHSA-2023:6939: container-tools:rhel8 security and bug fix update (Moderate) |
| CVE-2023-39325 |
medium |
— |
5.5 |
|
|
|
3y ago |
RHSA-2023:5863: grafana security update (Moderate) |
| CVE-2022-41723 |
medium |
— |
5.5 |
|
|
|
3y ago |
RHSA-2023:7058: rhc security, bug fix, and enhancement update (Moderate) |
| CVE-2022-41717 |
medium |
— |
5.5 |
|
|
|
3y ago |
RHSA-2023:2866: git-lfs security and bug fix update (Moderate) |
| CVE-2022-27664 |
medium |
— |
5.5 |
|
|
|
3y ago |
RHSA-2024:0121: container-tools:4.0 security update (Moderate) |
| CVE-2021-31525 |
medium |
— |
5.5 |
|
|
|
4y ago |
RHSA-2021:3076: go-toolset:rhel8 security, bug fix, and enhancement update (Moderate) |