Skip to content

several high and critical security issues in ubuntu2204-2026.01.0-392.pro5 #1002

New issue
New issue
Open
Open
several high and critical security issues in ubuntu2204-2026.01.0-392.pro5#1002
@pdabag

Description

@pdabag
pdabag
opened on Feb 18, 2026

hi

ubuntu2204-2026.01.0-392.pro5 built with

R_PRIMARY=4.5.2
R_SECONDARY=4.4.3
PY_PRIMARY=3.13.9
PY_SECONDARY=3.12.11

results in a lot of CVEs and GHSAs of high and critical severity. you want me to ask an LLM to open single tickets for each of these components? you have it on the radar?

NAME                                 INSTALLED                            FIXED-IN                      TYPE       VULNERABILITY        SEVERITY  
axios                                1.12.2                               1.13.5                        npm        GHSA-43fc-jf86-j433  High  
diff                                 1.0.0                                3.5.0                         npm        GHSA-h6ch-v84p-w6p9  High  
fast-xml-parser                      5.2.5                                5.3.4                         npm        GHSA-37qj-frw5-hhjh  High        
fast-xml-parser                      5.3.0                                5.3.4                         npm        GHSA-37qj-frw5-hhjh  High  
glob                                 10.4.5                               10.5.0                        npm        GHSA-5j98-mcp5-4vw2  High 
golang.org/x/crypto                  v0.35.0                              0.45.0                        go-module  GHSA-j5w8-q4qc-rx2x  Medium      
golang.org/x/crypto                  v0.35.0                              0.45.0                        go-module  GHSA-f6x5-jh6r-wrfv  Medium      
golang.org/x/crypto                  v0.36.0                              0.45.0                        go-module  GHSA-j5w8-q4qc-rx2x  Medium      
golang.org/x/crypto                  v0.36.0                              0.45.0                        go-module  GHSA-f6x5-jh6r-wrfv  Medium 
grunt                                1.0.0                                1.5.3                         npm        GHSA-rm36-94g8-835r  High        
grunt                                1.0.0                                1.3.0                         npm        GHSA-m5pj-vjjf-4m3h  High        
grunt                                1.0.0                                1.5.2                         npm        GHSA-j383-35pm-c5h4  Medium      
handlebars                           1.0.0                                3.0.8                         npm        GHSA-w457-6q6x-cgp9  Critical    
handlebars                           1.0.0                                4.7.7                         npm        GHSA-f2jv-r9rf-7988  Critical    
handlebars                           1.0.0                                4.7.7                         npm        GHSA-765h-qjxv-5f44  Critical    
handlebars                           1.0.0                                3.0.7                         npm        GHSA-q42p-pg8m-cqh6  High        
handlebars                           1.0.0                                3.0.8                         npm        GHSA-q2c6-c6pm-g3gh  High        
handlebars                           1.0.0                                3.0.8                         npm        GHSA-g9r4-xpmj-mj65  High        
handlebars                           1.0.0                                3.0.8                         npm        GHSA-3cqr-58rm-57f8  High        
handlebars                           1.0.0                                3.0.8                         npm        GHSA-2cf5-4w76-r9qv  High  
ini                                  1.0.0                                1.3.6                         npm        GHSA-qqgx-2p2h-9c37  High        
json                                 1.0.0                                10.0.0                        npm        GHSA-3c6g-pvg8-gqw2  High        
jupyterlab                           4.2.7                                4.4.8                         python     GHSA-vvfj-2jqx-52jm  Low         
jws                                  3.2.2                                3.2.3                         npm        GHSA-869p-cjfg-cm3x  High        
jws                                  4.0.0                                4.0.1                         npm        GHSA-869p-cjfg-cm3x  High  
libnode-dev                          12.22.9~dfsg-1ubuntu3.6                                            deb        CVE-2023-44487       High   
libnode72                            12.22.9~dfsg-1ubuntu3.6                                            deb        CVE-2023-44487       High    
npm                                  1.0.1                                6.13.3                        npm        GHSA-x8qc-rrcw-4r46  High        
npm                                  1.0.1                                5.7.1                         npm        GHSA-ph34-pc88-72gc  High        
npm                                  1.0.1                                6.13.3                        npm        GHSA-m6cx-g6qm-p2cx  High        
npm                                  1.0.1                                2.15.1                        npm        GHSA-m5h6-hr3q-22h5  High        
npm                                  1.0.1                                6.13.4                        npm        GHSA-4328-8hgf-7wjr  High        
npm                                  1.0.1                                6.14.6                        npm        GHSA-93f3-23rq-pjfp  Medium      
npm                                  1.0.1                                1.3.3                         npm        GHSA-v3jv-wrf4-5845  Low       
stdlib                               go1.20.12                            1.24.13, 1.25.7, 1.26.0-rc.3  go-module  CVE-2025-68121       Critical    
stdlib                               go1.20.12                            1.23.8, 1.24.2                go-module  CVE-2025-22871       Critical    
stdlib                               go1.20.12                            1.21.11, 1.22.4               go-module  CVE-2024-24790       Critical    
stdlib                               go1.20.12                            1.21.0-0                      go-module  CVE-2023-24531       Critical 
stdlib                               go1.20.12                            1.24.13, 1.25.7               go-module  CVE-2025-61732       High        
stdlib                               go1.20.12                            1.24.12, 1.25.6               go-module  CVE-2025-61731       High        
stdlib                               go1.20.12                            1.24.11, 1.25.5               go-module  CVE-2025-61729       High        
stdlib                               go1.20.12                            1.24.12, 1.25.6               go-module  CVE-2025-61726       High        
stdlib                               go1.20.12                            1.24.8, 1.25.2                go-module  CVE-2025-61725       High        
stdlib                               go1.20.12                            1.24.8, 1.25.2                go-module  CVE-2025-61723       High        
stdlib                               go1.20.12                            1.24.8, 1.25.2                go-module  CVE-2025-58188       High        
stdlib                               go1.20.12                            1.24.9, 1.25.3                go-module  CVE-2025-58187       High        
stdlib                               go1.20.12                            1.23.12, 1.24.6               go-module  CVE-2025-47907       High        
stdlib                               go1.20.12                            1.23.11, 1.24.5               go-module  CVE-2025-4674        High        
stdlib                               go1.20.12                            1.22.7, 1.23.1                go-module  CVE-2024-34158       High        
stdlib                               go1.20.12                            1.22.7, 1.23.1                go-module  CVE-2024-34156       High        
stdlib                               go1.20.12                            1.21.12, 1.22.5               go-module  CVE-2024-24791       High        
stdlib                               go1.20.12                            1.21.8, 1.22.1                go-module  CVE-2024-24784       High        
stdlib                               go1.20.12                            1.21.9, 1.22.2                go-module  CVE-2023-45288       High    
stdlib                               go1.23.8                             1.24.13, 1.25.7, 1.26.0-rc.3  go-module  CVE-2025-68121       Critical 
stdlib                               go1.23.8                             1.24.13, 1.25.7               go-module  CVE-2025-61732       High        
stdlib                               go1.23.8                             1.24.12, 1.25.6               go-module  CVE-2025-61731       High        
stdlib                               go1.23.8                             1.24.11, 1.25.5               go-module  CVE-2025-61729       High        
stdlib                               go1.23.8                             1.24.12, 1.25.6               go-module  CVE-2025-61726       High        
stdlib                               go1.23.8                             1.24.8, 1.25.2                go-module  CVE-2025-61725       High        
stdlib                               go1.23.8                             1.24.8, 1.25.2                go-module  CVE-2025-61723       High        
stdlib                               go1.23.8                             1.24.8, 1.25.2                go-module  CVE-2025-58188       High        
stdlib                               go1.23.8                             1.24.9, 1.25.3                go-module  CVE-2025-58187       High        
stdlib                               go1.23.8                             1.23.12, 1.24.6               go-module  CVE-2025-47907       High        
stdlib                               go1.23.8                             1.23.11, 1.24.5               go-module  CVE-2025-4674        High  
stdlib                               go1.24.5                             1.24.13, 1.25.7, 1.26.0-rc.3  go-module  CVE-2025-68121       Critical    
stdlib                               go1.24.5                             1.24.13, 1.25.7               go-module  CVE-2025-61732       High        
stdlib                               go1.24.5                             1.24.12, 1.25.6               go-module  CVE-2025-61731       High        
stdlib                               go1.24.5                             1.24.11, 1.25.5               go-module  CVE-2025-61729       High        
stdlib                               go1.24.5                             1.24.12, 1.25.6               go-module  CVE-2025-61726       High        
stdlib                               go1.24.5                             1.24.8, 1.25.2                go-module  CVE-2025-61725       High        
stdlib                               go1.24.5                             1.24.8, 1.25.2                go-module  CVE-2025-61723       High        
stdlib                               go1.24.5                             1.24.8, 1.25.2                go-module  CVE-2025-58188       High        
stdlib                               go1.24.5                             1.24.9, 1.25.3                go-module  CVE-2025-58187       High        
stdlib                               go1.24.5                             1.23.12, 1.24.6               go-module  CVE-2025-47907       High   
stdlib                               go1.25.0                             1.24.13, 1.25.7, 1.26.0-rc.3  go-module  CVE-2025-68121       Critical    
stdlib                               go1.25.0                             1.25.6                        go-module  CVE-2025-68119       High        
stdlib                               go1.25.0                             1.24.13, 1.25.7               go-module  CVE-2025-61732       High        
stdlib                               go1.25.0                             1.24.12, 1.25.6               go-module  CVE-2025-61731       High        
stdlib                               go1.25.0                             1.24.11, 1.25.5               go-module  CVE-2025-61729       High        
stdlib                               go1.25.0                             1.24.12, 1.25.6               go-module  CVE-2025-61726       High        
stdlib                               go1.25.0                             1.24.8, 1.25.2                go-module  CVE-2025-61725       High        
stdlib                               go1.25.0                             1.24.8, 1.25.2                go-module  CVE-2025-61723       High        
stdlib                               go1.25.0                             1.24.8, 1.25.2                go-module  CVE-2025-58188       High        
stdlib                               go1.25.0                             1.24.9, 1.25.3                go-module  CVE-2025-58187       High    
stdlib                               go1.25.1                             1.24.13, 1.25.7, 1.26.0-rc.3  go-module  CVE-2025-68121       Critical    
stdlib                               go1.25.1                             1.25.6                        go-module  CVE-2025-68119       High        
stdlib                               go1.25.1                             1.24.13, 1.25.7               go-module  CVE-2025-61732       High        
stdlib                               go1.25.1                             1.24.12, 1.25.6               go-module  CVE-2025-61731       High        
stdlib                               go1.25.1                             1.24.11, 1.25.5               go-module  CVE-2025-61729       High        
stdlib                               go1.25.1                             1.24.12, 1.25.6               go-module  CVE-2025-61726       High        
stdlib                               go1.25.1                             1.24.8, 1.25.2                go-module  CVE-2025-61725       High        
stdlib                               go1.25.1                             1.24.8, 1.25.2                go-module  CVE-2025-61723       High        
stdlib                               go1.25.1                             1.24.8, 1.25.2                go-module  CVE-2025-58188       High        
stdlib                               go1.25.1                             1.24.9, 1.25.3                go-module  CVE-2025-58187       High 
tar-fs                               2.1.3                                2.1.4                         npm        GHSA-vj76-c3g6-qr5v  High

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions