PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server

PostgreSQL pg_dump lets superuser of origin server execute arbitrary code in psql client

PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table

Resource exhaustion via malformed DNSKEY handling

Chromium: CVE-2025-8583 Inappropriate implementation in Permissions

Chromium: CVE-2025-8582 Insufficient validation of untrusted input in DOM

Chromium: CVE-2025-8581 Inappropriate implementation in Extensions

Chromium: CVE-2025-8580 Inappropriate implementation in Filesystems

Chromium: CVE-2025-8579 Inappropriate implementation in Gemini Live in Chrome

Chromium: CVE-2025-8578 Use after free in Cast

Chromium: CVE-2025-8577 Inappropriate implementation in Picture In Picture

Chromium: CVE-2025-8576 Use after free in Extensions

libtiff tiff2ps tiff2ps.c PS_Lvl2page null pointer dereference

Chromium: CVE-2025-8292 Use after free in Media Stream

ZIP64 End of Central Directory (EOCD) Locator record offset not checked

Libssh: memory exhaustion via repeated key exchange in libssh

GNU Binutils DWARF Section dwarf.c process_debug_info memory leak

GNU Binutils BFD Library elf.c bfd_elf_get_str_section null pointer dereference

Rejected reason: Maintainers have included reasons at https://gitlab.gnome.org/GNOME/libsoup/-/issues/465

Tarfile infinite loop during parsing with negative member offset