{"@context":"https://openvex.dev/ns/v0.2.0","@id":"pkg:docker/synthetics-private-location-worker-fips@1.69.0","author":"security@datadoghq.com","author_role":"Vulnerability Management","last_updated":"2026-06-29T12:49:54.344634647Z","statements":[{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.589071Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.589071Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.589071Z","vulnerability":{"name":"CVE-2023-49502"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.592022Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.592022Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.592022Z","vulnerability":{"name":"CVE-2025-1594"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.592184Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.592184Z","products":[{"@id":"pkg:deb/ubuntu/libpixman-1-0@0.42.2-1build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpixman-1-0@0.42.2-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pixman"}],"status":"affected","timestamp":"2026-06-29T12:36:12.592184Z","vulnerability":{"name":"CVE-2023-37769"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59222Z","impact_statement":"The brace-expansion is brought into the image transitively via minimatch. No production code in the synthetics worker imports brace-expansion directly. The expand() function is not used in synthetics-private-location-worker.","justification":"vulnerable_code_not_present","last_updated":"2026-06-29T12:36:12.59222Z","products":[{"@id":"pkg:npm/brace-expansion@5.0.2"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.59222Z","vulnerability":{"name":"CVE-2026-33750"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.592348Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.592348Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-06-29T12:36:12.592348Z","vulnerability":{"name":"CVE-2026-40355"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.592521Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.59252Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-06-29T12:36:12.59252Z","vulnerability":{"name":"CVE-2026-40356"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.592667Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.592667Z","products":[{"@id":"pkg:generic/node@24.15.0"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.592667Z","vulnerability":{"name":"CVE-2026-48937"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.592707Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.592707Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.592707Z","vulnerability":{"name":"CVE-2026-30999"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.592882Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.592882Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:36:12.592882Z","vulnerability":{"name":"CVE-2026-5450"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.593054Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.593054Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.593054Z","vulnerability":{"name":"CVE-2026-49402"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.593091Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.59309Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.59309Z","vulnerability":{"name":"CVE-2026-6385"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59326Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.59326Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.59326Z","vulnerability":{"name":"CVE-2026-9538"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.593316Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.593316Z","products":[{"@id":"pkg:deb/ubuntu/tar@1.35%2Bdfsg-3build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.593316Z","vulnerability":{"name":"CVE-2025-45582"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59335Z","impact_statement":"XBIN (eXtended BINary) is a text-art/ANSI art container format with no presence in web content. No web browser invokes FFmpeg's XBIN demuxer during normal browsing. The Synthetics Worker processes HTML pages and web assets through the browser runtime; it does not call FFmpeg's format detection or demuxing stack on any content. This attack vector (feeding arbitrary data to FFmpeg's demuxer) cannot be exercised in this deployment.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.59335Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.59335Z","vulnerability":{"name":"CVE-2023-6604"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.593546Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.593546Z","products":[{"@id":"pkg:deb/ubuntu/tar@1.35%2Bdfsg-3build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.593546Z","vulnerability":{"name":"CVE-2026-5704"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.593604Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.593604Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.593604Z","vulnerability":{"name":"CVE-2026-42497"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.593663Z","impact_statement":"The TTY (TeleTYpe/terminal output capture) demuxer in FFmpeg processes a niche format entirely unrelated to web content or browser media. Firefox's media pipeline does not call FFmpeg's TTY demuxer. This code path requires that FFmpeg's demuxer subsystem be invoked on TTY-format input, which cannot occur during the Synthetics Worker's browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.593663Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.593662Z","vulnerability":{"name":"CVE-2023-6602"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.593834Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.593834Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-06-29T12:36:12.593834Z","vulnerability":{"name":"CVE-2024-52616"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59394Z","impact_statement":"The vulnerable API requires passing an explicit output buffer (v3(name, ns, buf, offset)). The synthetics-worker uses only v4() for plain string generation, and that the worker's own UUID usage goes through jsr:@std/uuid (Deno stdlib), not the npm uuid package. There is no call that exercises the vulnerable buffer variants.","justification":"vulnerable_code_not_present","last_updated":"2026-06-29T12:36:12.59394Z","products":[{"@id":"pkg:npm/uuid@11.0.2"},{"@id":"pkg:npm/uuid@3.3.3"},{"@id":"pkg:npm/uuid@3.4.0"},{"@id":"pkg:npm/uuid@8.3.2"},{"@id":"pkg:npm/uuid@9.0.1"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.59394Z","vulnerability":{"name":"CVE-2026-41907"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744724Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744724Z","vulnerability":{"name":"CVE-2026-39820"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.594143Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.594142Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.594142Z","vulnerability":{"name":"CVE-2026-30998"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.594353Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.594353Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.594352Z","vulnerability":{"name":"CVE-2023-49528"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59452Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.594519Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.594519Z","vulnerability":{"name":"CVE-2025-22919"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59468Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.59468Z","products":[{"@id":"pkg:deb/ubuntu/xdg-utils@1.1.3-4.1ubuntu3?arch=all\u0026distro=ubuntu-24.04"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.59468Z","vulnerability":{"name":"CVE-2022-4055"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.594729Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.594729Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.594728Z","vulnerability":{"name":"CVE-2023-49501"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.594878Z","impact_statement":"Firefox implements HLS (HTTP Live Streaming) via its own native Gecko media pipeline and does not route HLS stream parsing through FFmpeg's HLS demuxer. The libavcodec-extra package is installed as a system codec library but Firefox does not invoke libavformat's HLS demuxer module. Application code has no direct FFmpeg API calls. The extension-bypass attack requires that FFmpeg's demuxer be invoked directly on attacker-controlled input, a condition that cannot be met in this deployment.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.594878Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.594878Z","vulnerability":{"name":"CVE-2023-6601"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.595042Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.595041Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.595041Z","vulnerability":{"name":"CVE-2026-12087"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.595098Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.595098Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.595098Z","vulnerability":{"name":"CVE-2026-8461"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59527Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.59527Z","products":[{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=aom"}],"status":"affected","timestamp":"2026-06-29T12:36:12.595269Z","vulnerability":{"name":"CVE-2026-56211"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59532Z","impact_statement":"avformat_free_context() is an FFmpeg-specific API call used to release AVFormatContext objects in applications that directly use libavformat. Firefox does not call FFmpeg's avformat_free_context(), it manages its own media context lifecycle via its native Gecko media framework.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.59532Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.59532Z","vulnerability":{"name":"CVE-2025-25473"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.595479Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.595479Z","products":[{"@id":"pkg:npm/qs@6.14.2"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.595479Z","vulnerability":{"name":"CVE-2026-8723"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.595519Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.595519Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.595519Z","vulnerability":{"name":"CVE-2026-41080"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.595567Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.595567Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.595567Z","vulnerability":{"name":"CVE-2023-50008"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.595829Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.595829Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.595829Z","vulnerability":{"name":"CVE-2026-48959"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.595887Z","impact_statement":"Firefox does not support JPEG 2000 and does not invoke FFmpeg's jpeg2000dec decoder. The channel definition cdef atom is a JPEG 2000 container construct that would only be processed by explicitly running FFmpeg against a crafted JPEG 2000 file. No such execution path exists in the Synthetics Worker.","justification":"vulnerable_code_not_present","last_updated":"2026-06-29T12:36:12.595887Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.595887Z","vulnerability":{"name":"CVE-2025-9951"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.596043Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.596043Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.596043Z","vulnerability":{"name":"CVE-2025-0518"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.596195Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.596195Z","products":[{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=elfutils"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.596195Z","vulnerability":{"name":"CVE-2025-1352"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.596248Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.596248Z","products":[{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=jpeg-xl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.596248Z","vulnerability":{"name":"CVE-2025-70103"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.596301Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.596301Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:36:12.596301Z","vulnerability":{"name":"CVE-2026-4046"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.596462Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.596462Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.596462Z","vulnerability":{"name":"CVE-2024-32230"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.596624Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.596624Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.596624Z","vulnerability":{"name":"CVE-2023-50007"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.596843Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.596842Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.596842Z","vulnerability":{"name":"CVE-2024-31582"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.597082Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.597082Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:36:12.597081Z","vulnerability":{"name":"CVE-2026-5928"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.597275Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.597275Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-06-29T12:36:12.597274Z","vulnerability":{"name":"CVE-2024-52615"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.597391Z","impact_statement":"Firefox has never supported JPEG 2000 image/video decoding (the format was only supported in Safari/WebKit). No web content served during Synthetics Worker test execution would cause Firefox to invoke FFmpeg's jpeg2000dec decoder.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.597391Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.597391Z","vulnerability":{"name":"CVE-2025-22921"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.597555Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.597555Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.597554Z","vulnerability":{"name":"CVE-2026-30997"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.597784Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.597784Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"affected","timestamp":"2026-06-29T12:36:12.597784Z","vulnerability":{"name":"CVE-2026-54411"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.597978Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.597978Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.597977Z","vulnerability":{"name":"CVE-2025-63757"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.598149Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.598149Z","products":[{"@id":"pkg:npm/brace-expansion@5.0.2"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.598149Z","vulnerability":{"name":"CVE-2026-45149"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.598189Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.598189Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.598189Z","vulnerability":{"name":"CVE-2026-45186"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.598245Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.598245Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:36:12.598244Z","vulnerability":{"name":"CVE-2026-6238"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.598386Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.598386Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.598386Z","vulnerability":{"name":"CVE-2025-7700"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.598536Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.598535Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.598534Z","vulnerability":{"name":"CVE-2026-48962"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.598578Z","impact_statement":"The Firequalizer is an advanced IIR-based audio equalization filter residing in FFmpeg's libavfilter module. Firefox does not use FFmpeg's filter graph (libavfilter) at any point during media playback or audio processing. The libavfilter library is separate from the codec libraries used by the OS and is not invoked by the browser runtime. This filter can only be triggered by explicitly constructing an FFmpeg filter chain, an operation absent from this deployment's execution paths.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.598577Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.598577Z","vulnerability":{"name":"CVE-2025-10256"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.598745Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.598745Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:36:12.598745Z","vulnerability":{"name":"CVE-2026-4437"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.598921Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.59892Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.59892Z","vulnerability":{"name":"CVE-2026-4739"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.598999Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.598999Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.598999Z","vulnerability":{"name":"CVE-2024-36613"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59919Z","impact_statement":"Firefox implements MPEG-DASH adaptive streaming natively through its Gecko media engine and does not delegate DASH playlist fetching or parsing to FFmpeg's libavformat DASH demuxer. The SSRF in this CVE requires that FFmpeg actively fetch URLs specified in a DASH manifest this requires FFmpeg to be directly invoked with network I/O enabled on untrusted input, which never occurs in this deployment","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.59919Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.59919Z","vulnerability":{"name":"CVE-2023-6605"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.599348Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.599348Z","products":[{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=aom"}],"status":"affected","timestamp":"2026-06-29T12:36:12.599347Z","vulnerability":{"name":"CVE-2026-56208"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.599401Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.599401Z","products":[{"@id":"pkg:npm/js-yaml@4.1.1"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.5994Z","vulnerability":{"name":"CVE-2026-53550"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.599499Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.599499Z","products":[{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=aom"}],"status":"affected","timestamp":"2026-06-29T12:36:12.599499Z","vulnerability":{"name":"CVE-2026-56209"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.599551Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.59955Z","products":[{"@id":"pkg:npm/ip-address@5.9.4"},{"@id":"pkg:npm/ip-address@9.0.5"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.59955Z","vulnerability":{"name":"CVE-2026-42338"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.599613Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.599613Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"affected","timestamp":"2026-06-29T12:36:12.599613Z","vulnerability":{"name":"CVE-2024-10041"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.599919Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.599919Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.599919Z","vulnerability":{"name":"CVE-2026-48961"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.600003Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.600003Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-06-29T12:36:12.600003Z","vulnerability":{"name":"CVE-2026-11850"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.600177Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.600177Z","products":[{"@id":"pkg:deb/ubuntu/coreutils@9.4-3ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.600177Z","vulnerability":{"name":"CVE-2016-2781"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.600219Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.600219Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.600219Z","vulnerability":{"name":"CVE-2024-32228"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.600406Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.600406Z","products":[{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"}],"status":"affected","timestamp":"2026-06-29T12:36:12.600405Z","vulnerability":{"name":"CVE-2025-69720"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.600642Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.600642Z","products":[{"@id":"pkg:npm/protobufjs@7.6.1"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.600642Z","vulnerability":{"name":"CVE-2026-54269"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.600685Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.600685Z","products":[{"@id":"pkg:npm/%40opentelemetry/core@1.30.1"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.600685Z","vulnerability":{"name":"CVE-2026-54285"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.600737Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.600737Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.600737Z","vulnerability":{"name":"CVE-2026-12706"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.600918Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.600918Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.600918Z","vulnerability":{"name":"CVE-2026-44726"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.601011Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.601011Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60101Z","vulnerability":{"name":"CVE-2024-36618"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.601186Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.601186Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"affected","timestamp":"2026-06-29T12:36:12.601186Z","vulnerability":{"name":"CVE-2023-39328"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.60124Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.60124Z","products":[{"@id":"pkg:deb/ubuntu/login@1%3A4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=shadow"},{"@id":"pkg:deb/ubuntu/login@4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/passwd@1%3A4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=shadow"},{"@id":"pkg:deb/ubuntu/passwd@4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60124Z","vulnerability":{"name":"CVE-2024-56433"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.601339Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.601339Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.601339Z","vulnerability":{"name":"CVE-2024-36617"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.601493Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.601493Z","products":[{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=aom"}],"status":"affected","timestamp":"2026-06-29T12:36:12.601493Z","vulnerability":{"name":"CVE-2026-56210"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.601551Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.601551Z","products":[{"@id":"pkg:deb/ubuntu/libharfbuzz0b@8.3.0-2build2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libharfbuzz0b@8.3.0-2build2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=harfbuzz"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60155Z","vulnerability":{"name":"CVE-2026-22693"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.6016Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.6016Z","products":[{"@id":"pkg:generic/node@24.15.0"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.6016Z","vulnerability":{"name":"CVE-2026-48931"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.601657Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.601657Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.601657Z","vulnerability":{"name":"CVE-2026-49440"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.601728Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.601728Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.601727Z","vulnerability":{"name":"CVE-2026-49401"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.601773Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.601773Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:36:12.601773Z","vulnerability":{"name":"CVE-2016-20013"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.601938Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.601938Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.601938Z","vulnerability":{"name":"CVE-2026-50219"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602008Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602008Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602008Z","vulnerability":{"name":"CVE-2025-27587"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.60209Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.60209Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60209Z","vulnerability":{"name":"CVE-2026-32777"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602142Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602141Z","products":[{"@id":"pkg:deb/ubuntu/libnss3@2%3A3.98-1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nss"},{"@id":"pkg:deb/ubuntu/libnss3@3.98-1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=2"},{"@id":"pkg:deb/ubuntu/libnss3-tools@2%3A3.98-1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nss"},{"@id":"pkg:deb/ubuntu/libnss3-tools@3.98-1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=2"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602141Z","vulnerability":{"name":"CVE-2026-12318"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602234Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602234Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602234Z","vulnerability":{"name":"CVE-2026-5435"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602365Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.602365Z","products":[{"@id":"pkg:deb/ubuntu/libvo-amrwbenc0@0.1.3-2build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libvo-amrwbenc0@0.1.3-2build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=vo-amrwbenc"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.602365Z","vulnerability":{"name":"CVE-2019-2128"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602414Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602414Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602414Z","vulnerability":{"name":"CVE-2026-4438"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602563Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602562Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602562Z","vulnerability":{"name":"CVE-2025-66382"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602617Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602617Z","products":[{"@id":"pkg:deb/ubuntu/xdg-utils@1.1.3-4.1ubuntu3?arch=all\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602617Z","vulnerability":{"name":"CVE-2025-52968"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602663Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602663Z","products":[{"@id":"pkg:deb/ubuntu/libicu74@74.2-1ubuntu3.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libicu74@74.2-1ubuntu3.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=icu"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602663Z","vulnerability":{"name":"CVE-2025-5222"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602733Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602733Z","products":[{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=sqlite3"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602732Z","vulnerability":{"name":"CVE-2026-11822"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.602814Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602813Z","products":[{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=sqlite3"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602813Z","vulnerability":{"name":"CVE-2026-11824"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.60291Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.602909Z","products":[{"@id":"pkg:deb/ubuntu/dirmngr@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/dirmngr@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gnupg@2.4.4-2ubuntu17.4?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gnupg@2.4.4-2ubuntu17.4?arch=all\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gnupg-utils@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gnupg-utils@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpg@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpg@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpg-agent@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpg-agent@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgconf@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgconf@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgsm@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgsm@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/keyboxd@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/keyboxd@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"}],"status":"affected","timestamp":"2026-06-29T12:36:12.602909Z","vulnerability":{"name":"CVE-2022-3219"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.603481Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.603481Z","products":[{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=elfutils"}],"status":"affected","timestamp":"2026-06-29T12:36:12.603481Z","vulnerability":{"name":"CVE-2025-1376"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.603558Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.603558Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.603558Z","vulnerability":{"name":"CVE-2026-55517"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.603602Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.603602Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.603602Z","vulnerability":{"name":"CVE-2025-59728"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.603786Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.603785Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.603785Z","vulnerability":{"name":"CVE-2025-59733"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.60403Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.60403Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60403Z","vulnerability":{"name":"CVE-2025-59734"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.604198Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.604198Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.604198Z","vulnerability":{"name":"CVE-2023-22656"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.604249Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.604249Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.604249Z","vulnerability":{"name":"CVE-2025-59731"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.604435Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.604435Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.604435Z","vulnerability":{"name":"CVE-2025-59732"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.604604Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.604604Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-06-29T12:36:12.604604Z","vulnerability":{"name":"CVE-2025-59529"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.604796Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.604796Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.604796Z","vulnerability":{"name":"CVE-2026-11999"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.604904Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.604904Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.604904Z","vulnerability":{"name":"CVE-2026-32776"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744734Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744734Z","vulnerability":{"name":"CVE-2026-27145"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.74474Z","products":[{"@id":"pkg:golang/golang.org/x/net@v0.52.0"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.74474Z","vulnerability":{"name":"CVE-2026-39821"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.604978Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.604978Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.604977Z","vulnerability":{"name":"CVE-2026-32778"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605036Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605036Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.605036Z","vulnerability":{"name":"CVE-2023-47282"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.60511Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.60511Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.605109Z","vulnerability":{"name":"CVE-2026-49406"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605155Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605155Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.605155Z","vulnerability":{"name":"CVE-2023-48727"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605208Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605208Z","products":[{"@id":"pkg:deb/ubuntu/libasound2-data@1.2.11-1ubuntu0.2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libasound2-data@1.2.11-1ubuntu0.2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=alsa-lib"},{"@id":"pkg:deb/ubuntu/libasound2t64@1.2.11-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libasound2t64@1.2.11-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=alsa-lib"}],"status":"affected","timestamp":"2026-06-29T12:36:12.605208Z","vulnerability":{"name":"CVE-2026-56109"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605299Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605299Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.605299Z","vulnerability":{"name":"CVE-2026-40962"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605461Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605461Z","products":[{"@id":"pkg:deb/ubuntu/coreutils@9.4-3ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.605461Z","vulnerability":{"name":"CVE-2025-5278"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605512Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605512Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.605512Z","vulnerability":{"name":"CVE-2026-49411"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605547Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605547Z","products":[{"@id":"pkg:npm/tar@7.5.11"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.605547Z","vulnerability":{"name":"CVE-2026-53655"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605593Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605593Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.605593Z","vulnerability":{"name":"CVE-2025-15649"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605652Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605651Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"affected","timestamp":"2026-06-29T12:36:12.605651Z","vulnerability":{"name":"CVE-2025-50422"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605752Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605752Z","products":[{"@id":"pkg:deb/ubuntu/zlib1g@1%3A1.3.dfsg-3.1ubuntu2.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zlib"},{"@id":"pkg:deb/ubuntu/zlib1g@1.3.dfsg-3.1ubuntu2.1?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"}],"status":"affected","timestamp":"2026-06-29T12:36:12.605751Z","vulnerability":{"name":"CVE-2026-27171"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.605804Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.605804Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.605804Z","vulnerability":{"name":"CVE-2026-27456"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.606166Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.606166Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.606166Z","vulnerability":{"name":"CVE-2026-56410"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.606216Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.606216Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.606216Z","vulnerability":{"name":"CVE-2026-56411"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.606267Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.606267Z","products":[{"@id":"pkg:deb/ubuntu/dirmngr@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/dirmngr@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gnupg@2.4.4-2ubuntu17.4?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gnupg@2.4.4-2ubuntu17.4?arch=all\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gnupg-utils@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gnupg-utils@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpg@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpg@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpg-agent@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpg-agent@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgconf@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgconf@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgsm@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgsm@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/keyboxd@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/keyboxd@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"}],"status":"affected","timestamp":"2026-06-29T12:36:12.606267Z","vulnerability":{"name":"CVE-2026-57062"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.606846Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.606846Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.606846Z","vulnerability":{"name":"CVE-2026-49859"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.606903Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.606902Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.606902Z","vulnerability":{"name":"CVE-2026-49860"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.606947Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.606947Z","products":[{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=jpeg-xl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.606947Z","vulnerability":{"name":"CVE-2021-36691"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.607146Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.607146Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.607145Z","vulnerability":{"name":"CVE-2026-56412"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.607213Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.607212Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.16?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.16?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-06-29T12:36:12.607212Z","vulnerability":{"name":"CVE-2026-40228"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.607566Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.607566Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.607566Z","vulnerability":{"name":"CVE-2026-56131"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.607638Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.607637Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.607637Z","vulnerability":{"name":"CVE-2026-56403"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.607691Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.60769Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60769Z","vulnerability":{"name":"CVE-2026-56404"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.607777Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.607777Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.607777Z","vulnerability":{"name":"CVE-2026-56405"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.607836Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.607836Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.607835Z","vulnerability":{"name":"CVE-2026-56408"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.607887Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.607886Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.607886Z","vulnerability":{"name":"CVE-2026-56406"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.607935Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.607935Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.607934Z","vulnerability":{"name":"CVE-2026-56407"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608092Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608092Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.608092Z","vulnerability":{"name":"CVE-2026-56409"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608157Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608156Z","products":[{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"}],"status":"affected","timestamp":"2026-06-29T12:36:12.608155Z","vulnerability":{"name":"CVE-2025-6141"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.60838Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.60838Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60838Z","vulnerability":{"name":"CVE-2026-56132"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608438Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608438Z","products":[{"@id":"pkg:deb/ubuntu/mtr-tiny@0.95-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mtr-tiny@0.95-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mtr"}],"status":"affected","timestamp":"2026-06-29T12:36:12.608438Z","vulnerability":{"name":"CVE-2025-49809"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608488Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608488Z","products":[{"@id":"pkg:deb/ubuntu/libbz2-1.0@1.0.8-5.1build0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libbz2-1.0@1.0.8-5.1build0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=bzip2"}],"status":"affected","timestamp":"2026-06-29T12:36:12.608488Z","vulnerability":{"name":"CVE-2026-42250"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608536Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608536Z","products":[{"@id":"pkg:npm/%40tootallnate/once@2.0.0"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.608536Z","vulnerability":{"name":"CVE-2026-3449"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.60858Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.60858Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60858Z","vulnerability":{"name":"CVE-2025-12343"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608762Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608762Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.608762Z","vulnerability":{"name":"CVE-2026-53612"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608815Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608815Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.608814Z","vulnerability":{"name":"CVE-2026-53613"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608865Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608865Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.608865Z","vulnerability":{"name":"CVE-2026-53614"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608915Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608914Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.608914Z","vulnerability":{"name":"CVE-2026-53615"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.60913Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.60913Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60913Z","vulnerability":{"name":"CVE-2026-11856"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.609191Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.60919Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.60919Z","vulnerability":{"name":"CVE-2026-8927"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.609661Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.609661Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-06-29T12:36:12.609661Z","vulnerability":{"name":"CVE-2026-36849"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.610352Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.610352Z","products":[{"@id":"pkg:npm/%40smithy/config-resolver@1.0.1"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.610352Z","vulnerability":{"name":"GHSA-6475-r3vj-m8vf"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.61039Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.61039Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.610389Z","vulnerability":{"name":"CVE-2026-10536"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.610438Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.610438Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.610438Z","vulnerability":{"name":"CVE-2026-12064"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.61049Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.61049Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.610489Z","vulnerability":{"name":"CVE-2026-8286"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.610533Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.610533Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.610533Z","vulnerability":{"name":"CVE-2026-8458"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.610576Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.610576Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.610576Z","vulnerability":{"name":"CVE-2026-8924"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.610625Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.610624Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.610624Z","vulnerability":{"name":"CVE-2026-8932"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.610668Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.610668Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.610668Z","vulnerability":{"name":"CVE-2026-9547"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744617Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744617Z","vulnerability":{"name":"CVE-2026-45447"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744653Z","products":[{"@id":"pkg:npm/shell-quote@1.8.3"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744653Z","vulnerability":{"name":"CVE-2026-9277"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744665Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744665Z","vulnerability":{"name":"CVE-2026-39836"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744669Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744669Z","vulnerability":{"name":"CVE-2026-33811"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744674Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744674Z","vulnerability":{"name":"CVE-2026-42499"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744681Z","products":[{"@id":"pkg:npm/fast-xml-parser@5.3.8"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.74468Z","vulnerability":{"name":"CVE-2026-33036"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744685Z","products":[{"@id":"pkg:golang/golang.org/x/net@v0.52.0"},{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744684Z","vulnerability":{"name":"CVE-2026-33814"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744691Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744691Z","vulnerability":{"name":"CVE-2026-42504"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744704Z","products":[{"@id":"pkg:npm/ws@8.17.1"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744704Z","vulnerability":{"name":"CVE-2026-48779"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744746Z","products":[{"@id":"pkg:npm/tmp@0.2.5"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744746Z","vulnerability":{"name":"CVE-2026-44705"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744755Z","products":[{"@id":"pkg:npm/form-data@2.5.4"},{"@id":"pkg:npm/form-data@2.5.5"},{"@id":"pkg:npm/form-data@3.0.4"},{"@id":"pkg:npm/form-data@4.0.5"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744755Z","vulnerability":{"name":"CVE-2026-12143"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744759Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744758Z","vulnerability":{"name":"CVE-2026-34980"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744765Z","products":[{"@id":"pkg:npm/fast-xml-parser@5.3.8"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744765Z","vulnerability":{"name":"CVE-2026-33349"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744769Z","products":[{"@id":"pkg:npm/protobufjs@7.5.6"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744769Z","vulnerability":{"name":"CVE-2026-48712"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744779Z","products":[{"@id":"pkg:npm/ws@8.17.1"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744779Z","vulnerability":{"name":"CVE-2026-45736"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744785Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744784Z","vulnerability":{"name":"CVE-2026-39826"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744796Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744795Z","vulnerability":{"name":"CVE-2026-41079"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744802Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744802Z","vulnerability":{"name":"CVE-2026-34978"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744811Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744811Z","vulnerability":{"name":"CVE-2026-39825"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744818Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744818Z","vulnerability":{"name":"CVE-2026-42507"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744826Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744826Z","vulnerability":{"name":"CVE-2026-34979"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744831Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744831Z","vulnerability":{"name":"CVE-2026-42766"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744841Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744841Z","vulnerability":{"name":"CVE-2026-39823"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744845Z","products":[{"@id":"pkg:deb/ubuntu/libgbm1@25.2.8-0ubuntu0.24.04.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libgbm1@25.2.8-0ubuntu0.24.04.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mesa"},{"@id":"pkg:deb/ubuntu/mesa-libgallium@25.2.8-0ubuntu0.24.04.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mesa-libgallium@25.2.8-0ubuntu0.24.04.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mesa"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744845Z","vulnerability":{"name":"CVE-2026-40393"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744853Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744853Z","vulnerability":{"name":"CVE-2026-42501"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744858Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744858Z","vulnerability":{"name":"CVE-2026-45445"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744868Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744868Z","vulnerability":{"name":"CVE-2026-27447"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744873Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744873Z","vulnerability":{"name":"CVE-2026-34180"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744882Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744882Z","vulnerability":{"name":"CVE-2026-34990"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744886Z","products":[{"@id":"pkg:golang/golang.org/x/net@v0.52.0"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744886Z","vulnerability":{"name":"CVE-2026-25680"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744896Z","products":[{"@id":"pkg:npm/protobufjs@7.5.6"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744896Z","vulnerability":{"name":"CVE-2026-45740"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744901Z","products":[{"@id":"pkg:npm/fast-xml-parser@5.3.8"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744901Z","vulnerability":{"name":"CVE-2026-41650"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744912Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744911Z","vulnerability":{"name":"CVE-2026-34182"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744919Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744919Z","vulnerability":{"name":"CVE-2026-7383"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744935Z","products":[{"@id":"pkg:deb/ubuntu/liblzma5@5.6.1%2Breally5.4.5-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/liblzma5@5.6.1%2Breally5.4.5-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=xz-utils"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744935Z","vulnerability":{"name":"CVE-2026-34743"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744939Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744939Z","vulnerability":{"name":"CVE-2026-42767"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744962Z","products":[{"@id":"pkg:golang/golang.org/x/net@v0.52.0"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744962Z","vulnerability":{"name":"CVE-2026-42506"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744966Z","products":[{"@id":"pkg:golang/golang.org/x/net@v0.52.0"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744966Z","vulnerability":{"name":"CVE-2026-25681"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744975Z","products":[{"@id":"pkg:golang/golang.org/x/net@v0.52.0"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744974Z","vulnerability":{"name":"CVE-2026-27136"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744979Z","products":[{"@id":"pkg:golang/golang.org/x/net@v0.52.0"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744978Z","vulnerability":{"name":"CVE-2026-42502"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744985Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744985Z","vulnerability":{"name":"CVE-2026-39817"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744989Z","products":[{"@id":"pkg:golang/stdlib@1.25.9"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744989Z","vulnerability":{"name":"CVE-2026-39819"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.744996Z","products":[{"@id":"pkg:deb/ubuntu/libgcrypt20@1.10.3-2build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.744996Z","vulnerability":{"name":"CVE-2026-41989"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.745003Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.745003Z","vulnerability":{"name":"CVE-2026-9076"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.745007Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.745007Z","vulnerability":{"name":"CVE-2026-39316"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.74505Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.74505Z","vulnerability":{"name":"CVE-2026-42770"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.745058Z","products":[{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcups2t64@2.4.7-1.2ubuntu7.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cups"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.745058Z","vulnerability":{"name":"CVE-2026-39314"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.745109Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.9?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.745108Z","vulnerability":{"name":"CVE-2026-45446"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.745132Z","products":[{"@id":"pkg:deb/ubuntu/libgraphite2-3@1.3.14-2build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libgraphite2-3@1.3.14-2build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=graphite2"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.745132Z","vulnerability":{"name":"CVE-2026-50593"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.74515Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.15?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.15?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.15?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.74515Z","vulnerability":{"name":"CVE-2026-40226"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.745154Z","products":[{"@id":"pkg:golang/golang.org/x/sys@v0.42.0"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.745153Z","vulnerability":{"name":"CVE-2026-39824"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.745163Z","products":[{"@id":"pkg:npm/%40grpc/grpc-js@1.8.22"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.745163Z","vulnerability":{"name":"CVE-2026-48068"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.745167Z","products":[{"@id":"pkg:npm/%40grpc/grpc-js@1.8.22"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.745167Z","vulnerability":{"name":"CVE-2026-48069"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.745176Z","products":[{"@id":"pkg:npm/follow-redirects@1.15.11"}],"status":"fixed","timestamp":"2026-06-29T12:36:12.745176Z","vulnerability":{"name":"GHSA-r4q5-vmmm-2653"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.589308Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.589307Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:36:12.589307Z","vulnerability":{"name":"CVE-2025-59375"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.589374Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.589374Z","products":[{"@id":"pkg:deb/ubuntu/libjpeg-turbo8@2.1.5-2ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libjpeg-turbo8@2.1.5-2ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libjpeg-turbo"}],"status":"affected","timestamp":"2026-06-29T12:36:12.589373Z","vulnerability":{"name":"CVE-2018-10126"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.589428Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.589428Z","products":[{"@id":"pkg:deb/ubuntu/wget@1.21.4-1ubuntu4.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.589428Z","vulnerability":{"name":"CVE-2021-31879"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.589484Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.589484Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"affected","timestamp":"2026-06-29T12:36:12.589484Z","vulnerability":{"name":"CVE-2017-7475"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.589566Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.589566Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.589566Z","vulnerability":{"name":"CVE-2024-7055"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608012Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608012Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.608012Z","vulnerability":{"name":"CVE-2026-49983"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.589786Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.589785Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"affected","timestamp":"2026-06-29T12:36:12.589785Z","vulnerability":{"name":"CVE-2019-6988"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.589845Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.589845Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.589845Z","vulnerability":{"name":"CVE-2024-31578"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590008Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590008Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590008Z","vulnerability":{"name":"CVE-2018-18064"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590086Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590086Z","products":[{"@id":"pkg:npm/request@2.88.2"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590086Z","vulnerability":{"name":"CVE-2023-28155"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590126Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590126Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590126Z","vulnerability":{"name":"CVE-2025-2174"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590208Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590208Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590208Z","vulnerability":{"name":"CVE-2024-35368"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590351Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590351Z","products":[{"@id":"pkg:deb/ubuntu/wget@1.21.4-1ubuntu4.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590351Z","vulnerability":{"name":"CVE-2024-10524"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590386Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590386Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590386Z","vulnerability":{"name":"CVE-2024-35367"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590537Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590537Z","products":[{"@id":"pkg:deb/ubuntu/libgcrypt20@1.10.3-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590537Z","vulnerability":{"name":"CVE-2024-2236"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590573Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590573Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590573Z","vulnerability":{"name":"CVE-2024-35365"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590737Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590737Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590736Z","vulnerability":{"name":"CVE-2024-36619"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590894Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590894Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590894Z","vulnerability":{"name":"CVE-2024-41996"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.590964Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.590964Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.590963Z","vulnerability":{"name":"CVE-2024-35366"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59117Z","impact_statement":"libx264 is an H.264 video encoder library. The attack vector described (RCE via a crafted AAC audio file) represents an unusual cross-format exploitation path that would require libx264 to process an AAC audio stream directly — a scenario that does not occur during normal H.264 encoding operations. In the Synthetics Worker, libx264 is a transitive dependency of libavcodec-extra; Firefox may use it for H.264 video encoding in limited contexts (e.g., getUserMedia/WebRTC), but the Synthetics Worker does not execute WebRTC sessions nor does it process untrusted AAC files through any pipeline that routes to libx264. The exploitation path (attacker-supplied AAC → libx264 memory corruption) cannot be triggered by the Synthetics Worker's operational model.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:36:12.59117Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libx264-164@0.164.3108%2Bgit31e19f9-1?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=2"},{"@id":"pkg:deb/ubuntu/libx264-164@2%3A0.164.3108%2Bgit31e19f9-1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=x264"}],"status":"not_affected","timestamp":"2026-06-29T12:36:12.59117Z","vulnerability":{"name":"CVE-2025-25467"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.591381Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.591381Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:36:12.591381Z","vulnerability":{"name":"CVE-2025-2176"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.591466Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.591466Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:36:12.591466Z","vulnerability":{"name":"CVE-2025-2175"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.591539Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.591539Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:36:12.591539Z","vulnerability":{"name":"CVE-2025-2173"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.591627Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.591627Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:36:12.591627Z","vulnerability":{"name":"CVE-2025-2177"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.591709Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.591709Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:36:12.591709Z","vulnerability":{"name":"CVE-2024-36616"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.59192Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.59192Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"affected","timestamp":"2026-06-29T12:36:12.59192Z","vulnerability":{"name":"CVE-2023-39329"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.591976Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.591976Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-06-29T12:36:12.591976Z","vulnerability":{"name":"CVE-2026-4775"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:36:12.608054Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:36:12.608052Z","products":[{"@id":"pkg:generic/node@24.15.0"}],"status":"under_investigation","timestamp":"2026-06-29T12:36:12.608052Z","vulnerability":{"name":"CVE-2026-48617"}},{"action_statement":"This vulnerability was fixed in: 1.69.1","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.355952Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.592262Z","vulnerability":{"name":"CVE-2026-42496"}},{"action_statement":"This vulnerability was fixed in: 1.69.1","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.355983Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:36:12.5943Z","vulnerability":{"name":"CVE-2026-8376"}},{"action_statement":"This vulnerability was fixed in: 1.69.1","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.355994Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.7?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:36:12.598888Z","vulnerability":{"name":"CVE-2026-6653"}}],"timestamp":"2026-06-24T13:44:37.368538236Z","tooling":"","version":4}