Common Vulnerabilities and Exposures (CVE)

CVE-2026-48948

Jul 8, 2026 09:52:52 UTC

An improper access check allows user to download vcard exports of com_contact contacts that are inaccessible.

CVE-2026-48949

Jul 8, 2026 09:52:37 UTC

Lack of validation leads to an XSS vulnerability in the MFA management views.

CVE-2026-48954

Jul 8, 2026 09:52:30 UTC

Improper validation leads to a generic XSS vector in the language override feature.

CVE-2026-50263

Jul 8, 2026 09:47:42 UTC

A use-after-free flaw was found in the X.Org X server and Xwayland in CreateSaverWindow(). A client can trigger a use-after-free read after changing window attributes and forcing the screen saver, leading to information disclosure.

CVE-2026-50262

Jul 8, 2026 09:47:40 UTC

An out-of-bounds read flaw was found in the X.Org X server and Xwayland in __glXDisp_ChangeDrawableAttributes(). A wrong size validation check can read a client-controlled number of bytes, exceeding the request buffer, leading to informatio...

CVE-2026-50264

Jul 8, 2026 09:47:38 UTC

An out-of-bounds write flaw was found in the X.Org X server and Xwayland in DRIGetBuffers/DRIGetBuffersWithFormat. A client that requests multiple DRI2BufferBackLeft attachments and one DRI2BufferFrontLeft can trigger an out-of-bounds heap ...

CVE-2026-50261

Jul 8, 2026 09:47:34 UTC

A use-after-free flaw was found in the X.Org X server and Xwayland in SyncChangeCounter(). A client that sets up multiple SyncCounters can trigger a use-after-free when destroying those counters via a second client connection while changing...

CVE-2026-50260

Jul 8, 2026 09:47:33 UTC

A use-after-free flaw was found in the X.Org X server and Xwayland in FreeCounter(). A client that sets up multiple SyncCounters and awaits on those triggers can trigger a use-after-free when destroying those counters via a second client co...

CVE-2026-50259

Jul 8, 2026 09:47:29 UTC

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. _XkbSetMapChecks() declares a fixed-size stack buffer mapWidths[256] indexed by key type index. The helper function CheckKeyTypes() writes to this buffer at a ...

CVE-2026-50258

Jul 8, 2026 09:47:24 UTC

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. The X server has multiple stack buffers sized XkbMaxShiftLevel * XkbNumKbdGroups but CheckKeyTypes() does not verify or clamp non-canonical key types to XkbMax...

CVE-2026-50256

Jul 8, 2026 09:47:19 UTC

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server...

CVE-2026-50257

Jul 8, 2026 09:47:19 UTC

A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence(). A client that sets up multiple fence triggers can trigger a use-after-free function pointer call. An attacker would connect to the X server to set u...

CVE-2026-56003

Jul 8, 2026 09:25:41 UTC

A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2 ComputeScaledProperties() before libXfont2 before 2.0.8 could be used by attackers using authenticated X clients to execute code ...

CVE-2026-10840

Jul 8, 2026 09:24:00 UTC

A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group write access to Kueue and cert-manager custom resources via the tekton-scheduler-role ClusterRol...

CVE-2026-56002

Jul 8, 2026 09:12:51 UTC

A heap bufferflow in pcfReadFont() due to missing glyph bounds checking in libXfont2 before 2.0.8  allows attackers authenticated as X client to execute code within the X server.