{"@context":"https://openvex.dev/ns/v0.2.0","@id":"pkg:docker/synthetics-private-location-worker-fips@1.69.1","author":"security@datadoghq.com","author_role":"Vulnerability Management","last_updated":"2026-06-29T12:49:53.108854978Z","statements":[{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.108593Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.108593Z","products":[{"@id":"pkg:npm/ip-address@5.9.4"},{"@id":"pkg:npm/ip-address@9.0.5"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.108593Z","vulnerability":{"name":"CVE-2026-42338"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.098341Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.09834Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.09834Z","vulnerability":{"name":"CVE-2023-49502"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.098623Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.098623Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.098623Z","vulnerability":{"name":"CVE-2025-59375"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.09869Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.09869Z","products":[{"@id":"pkg:deb/ubuntu/libjpeg-turbo8@2.1.5-2ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libjpeg-turbo8@2.1.5-2ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=libjpeg-turbo"}],"status":"affected","timestamp":"2026-06-29T12:40:15.09869Z","vulnerability":{"name":"CVE-2018-10126"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.098776Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.098776Z","products":[{"@id":"pkg:deb/ubuntu/wget@1.21.4-1ubuntu4.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.098776Z","vulnerability":{"name":"CVE-2021-31879"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.09883Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.09883Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"affected","timestamp":"2026-06-29T12:40:15.09883Z","vulnerability":{"name":"CVE-2017-7475"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.098931Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.098931Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.098931Z","vulnerability":{"name":"CVE-2024-7055"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.099083Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.099083Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"affected","timestamp":"2026-06-29T12:40:15.099083Z","vulnerability":{"name":"CVE-2019-6988"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.099136Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.099135Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.099135Z","vulnerability":{"name":"CVE-2024-31578"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.099288Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.099288Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"affected","timestamp":"2026-06-29T12:40:15.099288Z","vulnerability":{"name":"CVE-2018-18064"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.09937Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.099369Z","products":[{"@id":"pkg:npm/request@2.88.2"}],"status":"affected","timestamp":"2026-06-29T12:40:15.099369Z","vulnerability":{"name":"CVE-2023-28155"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.099409Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.099408Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:40:15.099408Z","vulnerability":{"name":"CVE-2025-2174"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.099488Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.099486Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.099486Z","vulnerability":{"name":"CVE-2024-35368"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.099661Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.099661Z","products":[{"@id":"pkg:deb/ubuntu/wget@1.21.4-1ubuntu4.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.099661Z","vulnerability":{"name":"CVE-2024-10524"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.108665Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.108664Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"affected","timestamp":"2026-06-29T12:40:15.108664Z","vulnerability":{"name":"CVE-2024-10041"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.108877Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.108877Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.108877Z","vulnerability":{"name":"CVE-2026-48961"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.108935Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.108935Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-06-29T12:40:15.108935Z","vulnerability":{"name":"CVE-2026-11850"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.109095Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.109095Z","products":[{"@id":"pkg:deb/ubuntu/coreutils@9.4-3ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.109094Z","vulnerability":{"name":"CVE-2016-2781"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.10913Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.10913Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.10913Z","vulnerability":{"name":"CVE-2024-32228"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.109337Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.109337Z","products":[{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"}],"status":"affected","timestamp":"2026-06-29T12:40:15.109337Z","vulnerability":{"name":"CVE-2025-69720"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.109553Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.109553Z","products":[{"@id":"pkg:npm/protobufjs@7.6.1"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.109552Z","vulnerability":{"name":"CVE-2026-54269"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.109591Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.109591Z","products":[{"@id":"pkg:npm/%40opentelemetry/core@1.30.1"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.109591Z","vulnerability":{"name":"CVE-2026-54285"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.109649Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.109648Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.109648Z","vulnerability":{"name":"CVE-2026-12706"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.109882Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.109881Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.109881Z","vulnerability":{"name":"CVE-2026-44726"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.10995Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.10995Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.10995Z","vulnerability":{"name":"CVE-2024-36618"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.110169Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.110169Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"affected","timestamp":"2026-06-29T12:40:15.110169Z","vulnerability":{"name":"CVE-2023-39328"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.110222Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.110222Z","products":[{"@id":"pkg:deb/ubuntu/login@1%3A4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=shadow"},{"@id":"pkg:deb/ubuntu/login@4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/passwd@1%3A4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=shadow"},{"@id":"pkg:deb/ubuntu/passwd@4.13%2Bdfsg1-4ubuntu3.2?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"}],"status":"affected","timestamp":"2026-06-29T12:40:15.110222Z","vulnerability":{"name":"CVE-2024-56433"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.110354Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.110354Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.110354Z","vulnerability":{"name":"CVE-2024-36617"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.11055Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.11055Z","products":[{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=aom"}],"status":"affected","timestamp":"2026-06-29T12:40:15.110549Z","vulnerability":{"name":"CVE-2026-56210"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.110636Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.110636Z","products":[{"@id":"pkg:deb/ubuntu/libharfbuzz0b@8.3.0-2build2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libharfbuzz0b@8.3.0-2build2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=harfbuzz"}],"status":"affected","timestamp":"2026-06-29T12:40:15.110635Z","vulnerability":{"name":"CVE-2026-22693"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.110702Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.110702Z","products":[{"@id":"pkg:generic/node@24.15.0"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.110702Z","vulnerability":{"name":"CVE-2026-48931"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.110816Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.110815Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.110815Z","vulnerability":{"name":"CVE-2026-49440"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.110877Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.110877Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.110877Z","vulnerability":{"name":"CVE-2026-49401"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.110938Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.110937Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:40:15.110937Z","vulnerability":{"name":"CVE-2016-20013"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111092Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.111092Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.111092Z","vulnerability":{"name":"CVE-2026-50219"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111142Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.111142Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.111142Z","vulnerability":{"name":"CVE-2025-27587"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111211Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.11121Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.11121Z","vulnerability":{"name":"CVE-2026-32777"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111258Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.111258Z","products":[{"@id":"pkg:deb/ubuntu/libnss3@2%3A3.98-1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nss"},{"@id":"pkg:deb/ubuntu/libnss3@3.98-1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=2"},{"@id":"pkg:deb/ubuntu/libnss3-tools@2%3A3.98-1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=nss"},{"@id":"pkg:deb/ubuntu/libnss3-tools@3.98-1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=2"}],"status":"affected","timestamp":"2026-06-29T12:40:15.111258Z","vulnerability":{"name":"CVE-2026-12318"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111335Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.111335Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:40:15.111335Z","vulnerability":{"name":"CVE-2026-5435"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111463Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.111463Z","products":[{"@id":"pkg:deb/ubuntu/libvo-amrwbenc0@0.1.3-2build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libvo-amrwbenc0@0.1.3-2build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=vo-amrwbenc"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.111463Z","vulnerability":{"name":"CVE-2019-2128"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111514Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.111513Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:40:15.111513Z","vulnerability":{"name":"CVE-2026-4438"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111682Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.111681Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.111681Z","vulnerability":{"name":"CVE-2025-66382"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111763Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.111763Z","products":[{"@id":"pkg:deb/ubuntu/xdg-utils@1.1.3-4.1ubuntu3?arch=all\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.111763Z","vulnerability":{"name":"CVE-2025-52968"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.11181Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.11181Z","products":[{"@id":"pkg:deb/ubuntu/libicu74@74.2-1ubuntu3.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libicu74@74.2-1ubuntu3.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=icu"}],"status":"affected","timestamp":"2026-06-29T12:40:15.11181Z","vulnerability":{"name":"CVE-2025-5222"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111869Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.111869Z","products":[{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=sqlite3"}],"status":"affected","timestamp":"2026-06-29T12:40:15.111869Z","vulnerability":{"name":"CVE-2026-11822"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.111918Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.111918Z","products":[{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsqlite3-0@3.45.1-1ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=sqlite3"}],"status":"affected","timestamp":"2026-06-29T12:40:15.111918Z","vulnerability":{"name":"CVE-2026-11824"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.112003Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.112003Z","products":[{"@id":"pkg:deb/ubuntu/dirmngr@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/dirmngr@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gnupg@2.4.4-2ubuntu17.4?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gnupg@2.4.4-2ubuntu17.4?arch=all\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gnupg-utils@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gnupg-utils@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpg@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpg@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpg-agent@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpg-agent@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgconf@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgconf@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgsm@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgsm@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/keyboxd@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/keyboxd@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"}],"status":"affected","timestamp":"2026-06-29T12:40:15.112003Z","vulnerability":{"name":"CVE-2022-3219"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.112525Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.112525Z","products":[{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=elfutils"}],"status":"affected","timestamp":"2026-06-29T12:40:15.112525Z","vulnerability":{"name":"CVE-2025-1376"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.112603Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.112602Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.112602Z","vulnerability":{"name":"CVE-2026-55517"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.112641Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.112641Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.112641Z","vulnerability":{"name":"CVE-2025-59728"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.112855Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.112855Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.112855Z","vulnerability":{"name":"CVE-2025-59733"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.113053Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.113053Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.113053Z","vulnerability":{"name":"CVE-2025-59734"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.113251Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.113251Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.11325Z","vulnerability":{"name":"CVE-2023-22656"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.113302Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.113302Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.113302Z","vulnerability":{"name":"CVE-2025-59731"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.113512Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.113512Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.113512Z","vulnerability":{"name":"CVE-2025-59732"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.113734Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.113734Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-06-29T12:40:15.113734Z","vulnerability":{"name":"CVE-2025-59529"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.113887Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.113887Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.113887Z","vulnerability":{"name":"CVE-2026-11999"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114014Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114014Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114014Z","vulnerability":{"name":"CVE-2026-32776"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114068Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114068Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114068Z","vulnerability":{"name":"CVE-2026-32778"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114119Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114119Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114119Z","vulnerability":{"name":"CVE-2023-47282"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114184Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114184Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.114184Z","vulnerability":{"name":"CVE-2026-49406"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114222Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114222Z","products":[{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libvpl2@2023.3.0-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=onevpl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114222Z","vulnerability":{"name":"CVE-2023-48727"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114268Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114268Z","products":[{"@id":"pkg:deb/ubuntu/libasound2-data@1.2.11-1ubuntu0.2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libasound2-data@1.2.11-1ubuntu0.2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=alsa-lib"},{"@id":"pkg:deb/ubuntu/libasound2t64@1.2.11-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libasound2t64@1.2.11-1ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=alsa-lib"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114268Z","vulnerability":{"name":"CVE-2026-56109"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114347Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114347Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114347Z","vulnerability":{"name":"CVE-2026-40962"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114546Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114546Z","products":[{"@id":"pkg:deb/ubuntu/coreutils@9.4-3ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114546Z","vulnerability":{"name":"CVE-2025-5278"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114608Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114608Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.114608Z","vulnerability":{"name":"CVE-2026-49411"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.11465Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.11465Z","products":[{"@id":"pkg:npm/tar@7.5.11"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.11465Z","vulnerability":{"name":"CVE-2026-53655"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114688Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114687Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114687Z","vulnerability":{"name":"CVE-2025-15649"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114786Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114785Z","products":[{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcairo-gobject2@1.18.0-3build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=cairo"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114785Z","vulnerability":{"name":"CVE-2025-50422"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114879Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114879Z","products":[{"@id":"pkg:deb/ubuntu/zlib1g@1%3A1.3.dfsg-3.1ubuntu2.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zlib"},{"@id":"pkg:deb/ubuntu/zlib1g@1.3.dfsg-3.1ubuntu2.1?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114879Z","vulnerability":{"name":"CVE-2026-27171"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.114948Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.114948Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.114948Z","vulnerability":{"name":"CVE-2026-27456"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.115372Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.115371Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.11537Z","vulnerability":{"name":"CVE-2026-56410"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.115424Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.115424Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.115424Z","vulnerability":{"name":"CVE-2026-56411"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.115477Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.115477Z","products":[{"@id":"pkg:deb/ubuntu/dirmngr@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/dirmngr@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gnupg@2.4.4-2ubuntu17.4?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gnupg@2.4.4-2ubuntu17.4?arch=all\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gnupg-utils@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gnupg-utils@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpg@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpg@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpg-agent@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpg-agent@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgconf@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgconf@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgsm@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgsm@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/gpgv@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"},{"@id":"pkg:deb/ubuntu/keyboxd@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/keyboxd@2.4.4-2ubuntu17.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=gnupg2"}],"status":"affected","timestamp":"2026-06-29T12:40:15.115477Z","vulnerability":{"name":"CVE-2026-57062"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.1161Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.1161Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.1161Z","vulnerability":{"name":"CVE-2026-49859"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.1162Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.1162Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.1162Z","vulnerability":{"name":"CVE-2026-49860"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.11625Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.11625Z","products":[{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=jpeg-xl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.11625Z","vulnerability":{"name":"CVE-2021-36691"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.116304Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.116304Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.116304Z","vulnerability":{"name":"CVE-2026-56412"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.116351Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.116351Z","products":[{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-systemd@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsystemd0@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsystemd-shared@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libudev1@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.16?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-dev@255.4-1ubuntu8.16?arch=all\u0026distro=ubuntu-24.04\u0026upstream=systemd"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/systemd-sysv@255.4-1ubuntu8.16?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=systemd"}],"status":"affected","timestamp":"2026-06-29T12:40:15.116351Z","vulnerability":{"name":"CVE-2026-40228"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.116646Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.116646Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.116645Z","vulnerability":{"name":"CVE-2026-56131"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.116694Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.116694Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.116694Z","vulnerability":{"name":"CVE-2026-56403"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.116759Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.116759Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.116759Z","vulnerability":{"name":"CVE-2026-56404"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.116808Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.116808Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.116807Z","vulnerability":{"name":"CVE-2026-56405"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.116852Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.116852Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.116852Z","vulnerability":{"name":"CVE-2026-56408"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.116893Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.116893Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.116893Z","vulnerability":{"name":"CVE-2026-56406"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.116945Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.116945Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.116944Z","vulnerability":{"name":"CVE-2026-56407"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117002Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117002Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.117002Z","vulnerability":{"name":"CVE-2026-49983"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117035Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117035Z","products":[{"@id":"pkg:generic/node@24.15.0"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.117035Z","vulnerability":{"name":"CVE-2026-48617"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117069Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117069Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117068Z","vulnerability":{"name":"CVE-2026-56409"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117132Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117132Z","products":[{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libncurses6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libncursesw6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libtinfo6@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/ncurses-base@6.4%2B20240113-1ubuntu2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=ncurses"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/ncurses-bin@6.4%2B20240113-1ubuntu2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ncurses"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117131Z","vulnerability":{"name":"CVE-2025-6141"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117379Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117379Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117379Z","vulnerability":{"name":"CVE-2026-56132"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117434Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117433Z","products":[{"@id":"pkg:deb/ubuntu/mtr-tiny@0.95-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mtr-tiny@0.95-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=mtr"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117433Z","vulnerability":{"name":"CVE-2025-49809"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117489Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117489Z","products":[{"@id":"pkg:deb/ubuntu/libbz2-1.0@1.0.8-5.1build0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libbz2-1.0@1.0.8-5.1build0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=bzip2"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117489Z","vulnerability":{"name":"CVE-2026-42250"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117542Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117542Z","products":[{"@id":"pkg:npm/%40tootallnate/once@2.0.0"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.117541Z","vulnerability":{"name":"CVE-2026-3449"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117577Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117577Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117577Z","vulnerability":{"name":"CVE-2025-12343"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117753Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117753Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117753Z","vulnerability":{"name":"CVE-2026-53612"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117803Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117803Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117803Z","vulnerability":{"name":"CVE-2026-53613"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117858Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117858Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117857Z","vulnerability":{"name":"CVE-2026-53614"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.117898Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.117897Z","products":[{"@id":"pkg:deb/ubuntu/bsdutils@1%3A2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux%402.39.3-9ubuntu6.5"},{"@id":"pkg:deb/ubuntu/bsdutils@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=1"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libblkid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libfdisk1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libmount1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libsmartcols1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libuuid1@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/mount@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=util-linux"},{"@id":"pkg:deb/ubuntu/util-linux@2.39.3-9ubuntu6.5?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.117897Z","vulnerability":{"name":"CVE-2026-53615"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.118106Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.118106Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.118106Z","vulnerability":{"name":"CVE-2026-11856"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.118169Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.118169Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.118169Z","vulnerability":{"name":"CVE-2026-8927"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.118754Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.118753Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-06-29T12:40:15.118753Z","vulnerability":{"name":"CVE-2026-36849"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.119423Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.119423Z","products":[{"@id":"pkg:npm/%40smithy/config-resolver@1.0.1"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.119422Z","vulnerability":{"name":"GHSA-6475-r3vj-m8vf"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.119458Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.119458Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.119458Z","vulnerability":{"name":"CVE-2026-10536"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.119504Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.119504Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.119504Z","vulnerability":{"name":"CVE-2026-12064"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.119553Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.119553Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.119553Z","vulnerability":{"name":"CVE-2026-8286"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.119595Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.119595Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.119595Z","vulnerability":{"name":"CVE-2026-8458"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.119635Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.119635Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.119635Z","vulnerability":{"name":"CVE-2026-8924"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.119672Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.119672Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.119672Z","vulnerability":{"name":"CVE-2026-8932"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.11973Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.11973Z","products":[{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libcurl4t64@8.5.0-2ubuntu10.9?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=curl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.11973Z","vulnerability":{"name":"CVE-2026-9547"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.355952Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"fixed","timestamp":"2026-06-29T12:40:15.355952Z","vulnerability":{"name":"CVE-2026-42496"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.355983Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"fixed","timestamp":"2026-06-29T12:40:15.355983Z","vulnerability":{"name":"CVE-2026-8376"}},{"action_statement":"","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.355994Z","products":[{"@id":"pkg:deb/ubuntu/libxml2@2.9.14%2Bdfsg-1.3ubuntu3.7?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"fixed","timestamp":"2026-06-29T12:40:15.355994Z","vulnerability":{"name":"CVE-2026-6653"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.099699Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.099699Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.099699Z","vulnerability":{"name":"CVE-2024-35367"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.09986Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.09986Z","products":[{"@id":"pkg:deb/ubuntu/libgcrypt20@1.10.3-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.09986Z","vulnerability":{"name":"CVE-2024-2236"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.099898Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.099897Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.099897Z","vulnerability":{"name":"CVE-2024-35365"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.100077Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.100076Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.100076Z","vulnerability":{"name":"CVE-2024-36619"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.100335Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.100335Z","products":[{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libssl3t64@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openssl"},{"@id":"pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.11?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.100334Z","vulnerability":{"name":"CVE-2024-41996"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.100418Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.100418Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.100417Z","vulnerability":{"name":"CVE-2024-35366"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.100601Z","impact_statement":"libx264 is an H.264 video encoder library. The attack vector described (RCE via a crafted AAC audio file) represents an unusual cross-format exploitation path that would require libx264 to process an AAC audio stream directly — a scenario that does not occur during normal H.264 encoding operations. In the Synthetics Worker, libx264 is a transitive dependency of libavcodec-extra; Firefox may use it for H.264 video encoding in limited contexts (e.g., getUserMedia/WebRTC), but the Synthetics Worker does not execute WebRTC sessions nor does it process untrusted AAC files through any pipeline that routes to libx264. The exploitation path (attacker-supplied AAC → libx264 memory corruption) cannot be triggered by the Synthetics Worker's operational model.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.100601Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libx264-164@0.164.3108%2Bgit31e19f9-1?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=2"},{"@id":"pkg:deb/ubuntu/libx264-164@2%3A0.164.3108%2Bgit31e19f9-1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=x264"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.100601Z","vulnerability":{"name":"CVE-2025-25467"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.100823Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.100822Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:40:15.100822Z","vulnerability":{"name":"CVE-2025-2176"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.100906Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.100906Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:40:15.100906Z","vulnerability":{"name":"CVE-2025-2175"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.100993Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.100993Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:40:15.100993Z","vulnerability":{"name":"CVE-2025-2173"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.10107Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.10107Z","products":[{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi0t64@0.2.42-2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=zvbi"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libzvbi-common@0.2.42-2?arch=all\u0026distro=ubuntu-24.04\u0026upstream=zvbi"}],"status":"affected","timestamp":"2026-06-29T12:40:15.10107Z","vulnerability":{"name":"CVE-2025-2177"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.101143Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.101143Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.101142Z","vulnerability":{"name":"CVE-2024-36616"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.101304Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.101303Z","products":[{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libopenjp2-7@2.5.0-2ubuntu0.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=openjpeg2"}],"status":"affected","timestamp":"2026-06-29T12:40:15.101303Z","vulnerability":{"name":"CVE-2023-39329"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.101347Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.101347Z","products":[{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libtiff6@4.5.1%2Bgit230720-4ubuntu2.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=tiff"}],"status":"affected","timestamp":"2026-06-29T12:40:15.101347Z","vulnerability":{"name":"CVE-2026-4775"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.10139Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.10139Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.10139Z","vulnerability":{"name":"CVE-2025-1594"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.101546Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.101546Z","products":[{"@id":"pkg:deb/ubuntu/libpixman-1-0@0.42.2-1build1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpixman-1-0@0.42.2-1build1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pixman"}],"status":"affected","timestamp":"2026-06-29T12:40:15.101546Z","vulnerability":{"name":"CVE-2023-37769"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.101588Z","impact_statement":"The brace-expansion is brought into the image transitively via minimatch. No production code in the synthetics worker imports brace-expansion directly. The expand() function is not used in synthetics-private-location-worker.","justification":"vulnerable_code_not_present","last_updated":"2026-06-29T12:40:15.101588Z","products":[{"@id":"pkg:npm/brace-expansion@5.0.2"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.101588Z","vulnerability":{"name":"CVE-2026-33750"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.101627Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.101627Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-06-29T12:40:15.101627Z","vulnerability":{"name":"CVE-2026-40355"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.101806Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.101806Z","products":[{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libgssapi-krb5-2@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libk5crypto3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5-3@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libkrb5support0@1.20.1-6ubuntu2.6?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=krb5"}],"status":"affected","timestamp":"2026-06-29T12:40:15.101806Z","vulnerability":{"name":"CVE-2026-40356"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.101956Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.101956Z","products":[{"@id":"pkg:generic/node@24.15.0"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.101956Z","vulnerability":{"name":"CVE-2026-48937"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.101993Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.101993Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.101993Z","vulnerability":{"name":"CVE-2026-30999"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.102188Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.102188Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:40:15.102188Z","vulnerability":{"name":"CVE-2026-5450"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.102387Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.102387Z","products":[{"@id":"pkg:generic/deno@2.6.8"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.102387Z","vulnerability":{"name":"CVE-2026-49402"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.102433Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.102433Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.102433Z","vulnerability":{"name":"CVE-2026-6385"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.102638Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.102638Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.102638Z","vulnerability":{"name":"CVE-2026-9538"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.102696Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.102696Z","products":[{"@id":"pkg:deb/ubuntu/tar@1.35%2Bdfsg-3build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.102696Z","vulnerability":{"name":"CVE-2025-45582"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.102737Z","impact_statement":"XBIN (eXtended BINary) is a text-art/ANSI art container format with no presence in web content. No web browser invokes FFmpeg's XBIN demuxer during normal browsing. The Synthetics Worker processes HTML pages and web assets through the browser runtime; it does not call FFmpeg's format detection or demuxing stack on any content. This attack vector (feeding arbitrary data to FFmpeg's demuxer) cannot be exercised in this deployment.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.102737Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.102737Z","vulnerability":{"name":"CVE-2023-6604"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.102903Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.102903Z","products":[{"@id":"pkg:deb/ubuntu/tar@1.35%2Bdfsg-3build1?arch=amd64\u0026distro=ubuntu-24.04"}],"status":"affected","timestamp":"2026-06-29T12:40:15.102903Z","vulnerability":{"name":"CVE-2026-5704"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.102949Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.102948Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.102948Z","vulnerability":{"name":"CVE-2026-42497"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.102992Z","impact_statement":"The TTY (TeleTYpe/terminal output capture) demuxer in FFmpeg processes a niche format entirely unrelated to web content or browser media. Firefox's media pipeline does not call FFmpeg's TTY demuxer. This code path requires that FFmpeg's demuxer subsystem be invoked on TTY-format input, which cannot occur during the Synthetics Worker's browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.102992Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.102991Z","vulnerability":{"name":"CVE-2023-6602"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.103142Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.103141Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-06-29T12:40:15.103141Z","vulnerability":{"name":"CVE-2024-52616"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.103242Z","impact_statement":"The vulnerable API requires passing an explicit output buffer (v3(name, ns, buf, offset)). The synthetics-worker uses only v4() for plain string generation, and that the worker's own UUID usage goes through jsr:@std/uuid (Deno stdlib), not the npm uuid package. There is no call that exercises the vulnerable buffer variants.","justification":"vulnerable_code_not_present","last_updated":"2026-06-29T12:40:15.103241Z","products":[{"@id":"pkg:npm/uuid@11.0.2"},{"@id":"pkg:npm/uuid@3.3.3"},{"@id":"pkg:npm/uuid@3.4.0"},{"@id":"pkg:npm/uuid@8.3.2"},{"@id":"pkg:npm/uuid@9.0.1"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.103241Z","vulnerability":{"name":"CVE-2026-41907"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.103426Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.103426Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.103426Z","vulnerability":{"name":"CVE-2026-30998"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.103579Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.103579Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.103579Z","vulnerability":{"name":"CVE-2023-49528"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.103775Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.103775Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.103775Z","vulnerability":{"name":"CVE-2025-22919"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.103929Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.103929Z","products":[{"@id":"pkg:deb/ubuntu/xdg-utils@1.1.3-4.1ubuntu3?arch=all\u0026distro=ubuntu-24.04"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.103929Z","vulnerability":{"name":"CVE-2022-4055"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.10397Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.10397Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.10397Z","vulnerability":{"name":"CVE-2023-49501"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.10416Z","impact_statement":"Firefox implements HLS (HTTP Live Streaming) via its own native Gecko media pipeline and does not route HLS stream parsing through FFmpeg's HLS demuxer. The libavcodec-extra package is installed as a system codec library but Firefox does not invoke libavformat's HLS demuxer module. Application code has no direct FFmpeg API calls. The extension-bypass attack requires that FFmpeg's demuxer be invoked directly on attacker-controlled input, a condition that cannot be met in this deployment.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.104159Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.104159Z","vulnerability":{"name":"CVE-2023-6601"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.104334Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.104334Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.104334Z","vulnerability":{"name":"CVE-2026-12087"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.104385Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.104385Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.104384Z","vulnerability":{"name":"CVE-2026-8461"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.104538Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.104538Z","products":[{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=aom"}],"status":"affected","timestamp":"2026-06-29T12:40:15.104537Z","vulnerability":{"name":"CVE-2026-56211"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.104571Z","impact_statement":"avformat_free_context() is an FFmpeg-specific API call used to release AVFormatContext objects in applications that directly use libavformat. Firefox does not call FFmpeg's avformat_free_context(), it manages its own media context lifecycle via its native Gecko media framework.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.104571Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.104571Z","vulnerability":{"name":"CVE-2025-25473"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.104781Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.104781Z","products":[{"@id":"pkg:npm/qs@6.14.2"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.104781Z","vulnerability":{"name":"CVE-2026-8723"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.104837Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.104837Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.104837Z","vulnerability":{"name":"CVE-2026-41080"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.104891Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.104891Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.104891Z","vulnerability":{"name":"CVE-2023-50008"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.105062Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.105062Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.105062Z","vulnerability":{"name":"CVE-2026-48959"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.105105Z","impact_statement":"Firefox does not support JPEG 2000 and does not invoke FFmpeg's jpeg2000dec decoder. The channel definition cdef atom is a JPEG 2000 container construct that would only be processed by explicitly running FFmpeg against a crafted JPEG 2000 file. No such execution path exists in the Synthetics Worker.","justification":"vulnerable_code_not_present","last_updated":"2026-06-29T12:40:15.105104Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.105104Z","vulnerability":{"name":"CVE-2025-9951"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.105249Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.105249Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.105249Z","vulnerability":{"name":"CVE-2025-0518"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.105396Z","impact_statement":"The ffmpeg-related packages identified in the scan are transitive dependencies introduced through the browser components used by the Synthetics worker. They are not directly invoked by Datadog application code, but are installed as part of the underlying operating system and Chrome dependencies required for browser-based test execution.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.105396Z","products":[{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libelf1t64@0.190-1.1ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=elfutils"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.105395Z","vulnerability":{"name":"CVE-2025-1352"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.105452Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.105451Z","products":[{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libjxl0.7@0.7.0-10.2ubuntu6.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=jpeg-xl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.105451Z","vulnerability":{"name":"CVE-2025-70103"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.1055Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.1055Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:40:15.1055Z","vulnerability":{"name":"CVE-2026-4046"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.105645Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.105645Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.105645Z","vulnerability":{"name":"CVE-2024-32230"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.10583Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.10583Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.10583Z","vulnerability":{"name":"CVE-2023-50007"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.105987Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.105987Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.105987Z","vulnerability":{"name":"CVE-2024-31582"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.10624Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.10624Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:40:15.10624Z","vulnerability":{"name":"CVE-2026-5928"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.106384Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.106383Z","products":[{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-client3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common3@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libavahi-common-data@0.8-13ubuntu6.2?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=avahi"}],"status":"affected","timestamp":"2026-06-29T12:40:15.106383Z","vulnerability":{"name":"CVE-2024-52615"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.106488Z","impact_statement":"Firefox has never supported JPEG 2000 image/video decoding (the format was only supported in Safari/WebKit). No web content served during Synthetics Worker test execution would cause Firefox to invoke FFmpeg's jpeg2000dec decoder.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.106488Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.106487Z","vulnerability":{"name":"CVE-2025-22921"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.106629Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.106629Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.106629Z","vulnerability":{"name":"CVE-2026-30997"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.106788Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.106788Z","products":[{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam0g@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-modules@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-modules-bin@1.5.3-5ubuntu5.5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=pam"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libpam-runtime@1.5.3-5ubuntu5.5?arch=all\u0026distro=ubuntu-24.04\u0026upstream=pam"}],"status":"affected","timestamp":"2026-06-29T12:40:15.106788Z","vulnerability":{"name":"CVE-2026-54411"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.106996Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.106996Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.106996Z","vulnerability":{"name":"CVE-2025-63757"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.107173Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.107172Z","products":[{"@id":"pkg:npm/brace-expansion@5.0.2"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.107172Z","vulnerability":{"name":"CVE-2026-45149"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.107213Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.107213Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.107213Z","vulnerability":{"name":"CVE-2026-45186"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.107261Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.107261Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:40:15.107261Z","vulnerability":{"name":"CVE-2026-6238"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.107414Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.107414Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.107414Z","vulnerability":{"name":"CVE-2025-7700"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.107633Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.107633Z","products":[{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/perl-base@5.38.2-3.2ubuntu0.3?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=perl"}],"status":"affected","timestamp":"2026-06-29T12:40:15.107633Z","vulnerability":{"name":"CVE-2026-48962"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.107674Z","impact_statement":"The Firequalizer is an advanced IIR-based audio equalization filter residing in FFmpeg's libavfilter module. Firefox does not use FFmpeg's filter graph (libavfilter) at any point during media playback or audio processing. The libavfilter library is separate from the codec libraries used by the OS and is not invoked by the browser runtime. This filter can only be triggered by explicitly constructing an FFmpeg filter chain, an operation absent from this deployment's execution paths.","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.107674Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.107674Z","vulnerability":{"name":"CVE-2025-10256"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.107831Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.107831Z","products":[{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc6@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libc-bin@2.39-0ubuntu8.7?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=glibc"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/locales@2.39-0ubuntu8.7?arch=all\u0026distro=ubuntu-24.04\u0026upstream=glibc"}],"status":"affected","timestamp":"2026-06-29T12:40:15.107831Z","vulnerability":{"name":"CVE-2026-4437"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.10799Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.10799Z","products":[{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libexpat1@2.6.1-2ubuntu0.4?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=expat"}],"status":"affected","timestamp":"2026-06-29T12:40:15.10799Z","vulnerability":{"name":"CVE-2026-4739"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.108035Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.108034Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"affected","timestamp":"2026-06-29T12:40:15.108034Z","vulnerability":{"name":"CVE-2024-36613"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.108277Z","impact_statement":"Firefox implements MPEG-DASH adaptive streaming natively through its Gecko media engine and does not delegate DASH playlist fetching or parsing to FFmpeg's libavformat DASH demuxer. The SSRF in this CVE requires that FFmpeg actively fetch URLs specified in a DASH manifest this requires FFmpeg to be directly invoked with network I/O enabled on untrusted input, which never occurs in this deployment","justification":"vulnerable_code_not_in_execute_path","last_updated":"2026-06-29T12:40:15.108276Z","products":[{"@id":"pkg:deb/ubuntu/libavcodec-extra60@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra60@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavcodec-extra@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libavutil58@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libavutil58@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"},{"@id":"pkg:deb/ubuntu/libswresample4@6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026epoch=7"},{"@id":"pkg:deb/ubuntu/libswresample4@7%3A6.1.1-3ubuntu5?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=ffmpeg"}],"status":"not_affected","timestamp":"2026-06-29T12:40:15.108276Z","vulnerability":{"name":"CVE-2023-6605"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.108448Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.108447Z","products":[{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=aom"}],"status":"affected","timestamp":"2026-06-29T12:40:15.108447Z","vulnerability":{"name":"CVE-2026-56208"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.108502Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.108502Z","products":[{"@id":"pkg:npm/js-yaml@4.1.1"}],"status":"under_investigation","timestamp":"2026-06-29T12:40:15.108502Z","vulnerability":{"name":"CVE-2026-53550"}},{"action_statement":"","action_statement_timestamp":"2026-06-29T12:40:15.108541Z","impact_statement":"","justification":"","last_updated":"2026-06-29T12:40:15.108541Z","products":[{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04"},{"@id":"pkg:deb/ubuntu/libaom3@3.8.2-2ubuntu0.1?arch=amd64\u0026distro=ubuntu-24.04\u0026upstream=aom"}],"status":"affected","timestamp":"2026-06-29T12:40:15.108541Z","vulnerability":{"name":"CVE-2026-56209"}}],"timestamp":"2026-06-26T13:04:27.129453633Z","tooling":"","version":2}