Publish Advisories

GHSA-hm8v-8c3v-cxfq
GHSA-8r55-rv5w-6pfm
GHSA-q4hc-vp2m-fr47
GHSA-r837-hpv7-pc2f
GHSA-x7c5-fjpp-2mcc

Author: advisory-database[bot]

advisories/unreviewed/2025/10/GHSA-hm8v-8c3v-cxfq/GHSA-hm8v-8c3v-cxfq.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-hm8v-8c3v-cxfq",
-  "modified": "2026-02-23T15:31:14Z",
+  "modified": "2026-02-24T12:31:40Z",
   "published": "2025-10-03T12:33:14Z",
   "aliases": [
     "CVE-2025-11234"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://access.redhat.com/errata/RHSA-2026:3077"
     },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2026:3165"
+    },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/security/cve/CVE-2025-11234"

advisories/unreviewed/2026/02/GHSA-8r55-rv5w-6pfm/GHSA-8r55-rv5w-6pfm.json

@@ -0,0 +1,35 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-8r55-rv5w-6pfm",
+  "modified": "2026-02-24T12:31:40Z",
+  "published": "2026-02-24T12:31:40Z",
+  "aliases": [
+    "CVE-2025-27555"
+  ],
+  "details": "Airflow versions before 2.11.1 have a vulnerability that allows authenticated users with audit log access to see sensitive values in audit logs which they should not see. When sensitive connection parameters were set via airflow CLI, values of those variables appeared in the audit log and were stored unencrypted in the Airflow database. While this risk is limited to users with audit log access, it is recommended to upgrade to Airflow 2.11.1 or a later version, which addresses this issue. Users who previously used the CLI to set connections should manually delete entries with those connection sensitive values from the log table. This is similar but not the same issue as CVE-2024-50378",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27555"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/apache/airflow/pull/61882"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.apache.org/thread/nxovkp319jo8vg498gql1yswtb2frbkw"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-201"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-02-24T10:16:02Z"
+  }
+}

advisories/unreviewed/2026/02/GHSA-q4hc-vp2m-fr47/GHSA-q4hc-vp2m-fr47.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-q4hc-vp2m-fr47",
-  "modified": "2026-02-23T18:32:02Z",
+  "modified": "2026-02-24T12:31:40Z",
   "published": "2026-02-23T18:32:02Z",
   "aliases": [
     "CVE-2025-14905"
@@ -19,6 +19,10 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14905"
     },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2026:3189"
+    },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/security/cve/CVE-2025-14905"

advisories/unreviewed/2026/02/GHSA-r837-hpv7-pc2f/GHSA-r837-hpv7-pc2f.json

@@ -0,0 +1,39 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-r837-hpv7-pc2f",
+  "modified": "2026-02-24T12:31:40Z",
+  "published": "2026-02-24T12:31:40Z",
+  "aliases": [
+    "CVE-2024-56373"
+  ],
+  "details": "DAG Author (who already has quite a lot of permissions) could manipulate database of Airflow 2 in the way to execute arbitrary code in the web-server context, which they should normally not be able to do, leading to potentially remote code execution in the context of web-server (server-side) as a result of a user viewing historical task information.\n\nThe functionality responsible for that (log template history) has been disabled by default in 2.11.1 and users should upgrade to Airflow 3 if they want to continue to use log template history. They can also manually modify historical log file names if they want to see historical logs that were generated before the last log template change.",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56373"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/apache/airflow/pull/61880"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.apache.org/thread/2vrmrhcht6g7cp5yjxpnrk2wtrncm6cy"
+    },
+    {
+      "type": "WEB",
+      "url": "http://www.openwall.com/lists/oss-security/2026/02/23/3"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-94"
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-02-24T10:16:02Z"
+  }
+}

advisories/unreviewed/2026/02/GHSA-x7c5-fjpp-2mcc/GHSA-x7c5-fjpp-2mcc.json

@@ -0,0 +1,36 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-x7c5-fjpp-2mcc",
+  "modified": "2026-02-24T12:31:40Z",
+  "published": "2026-02-24T12:31:40Z",
+  "aliases": [
+    "CVE-2026-2664"
+  ],
+  "details": "An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker Desktop for Windows, Linux and macOS up to version 4.61.0 could allow a local attacker to cause an unspecified impact by writing to /proc/docker entries. The issue has been fixed in Docker Desktop 4.62.0 .",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2664"
+    },
+    {
+      "type": "WEB",
+      "url": "https://docs.docker.com/desktop/release-notes/#4620"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-125"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-02-24T10:16:03Z"
+  }
+}