Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2

Linux-pam: linux-pam directory traversal

Glib-networking: uninitialized memory dereferences on glib-networking through glib-networking/tls/openssl/gtlsbio.c via g_tls_bio_new_from_iostream() and g_tls_bio_new_from_datagram_based()

Glib-networking: out of bound reads on glib-networking through tls/openssl/gtlscertificate-openssl.c via "g_tls_certificate_openssl_get_property()"

Cache poisoning via the ECS-enabled Rebirthday Attack

Libssh: invalid return code for chacha20 poly1305 with openssl backend

astral-tokio-tar has a path traversal in tar extraction

Chromium: CVE-2025-5959 Type Confusion in V8

Chromium: CVE-2025-5958 Use after free in Media

quic-go has Client Crash Due to Premature HANDSHAKE_DONE Frame

Azure Compute Resource Provider Elevation of Privilege Vulnerability

Remote Procedure Call Denial of Service Vulnerability

Microsoft Configuration Manager Spoofing Vulnerability

Azure Notification Service Elevation of Privilege Vulnerability

Microsoft Defender for Linux Denial of Service Vulnerability

Azure Monitor Agent Elevation of Privilege Vulnerability

MITRE: CVE-2025-59489 Unity Gaming Engine Editor vulnerability

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.

Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c.

Windows URL Parsing Remote Code Execution Vulnerability