← Find more feeds

seclists.org

Open Source Security

Get the latest updates from Open Source Security directly as they happen.

Follow now 40 followers

Latest posts

Last updated about 10 hours ago

Re: CVE-2025-54947: Apache StreamPark: Use hard-coded key vulnerability

about 10 hours ago

Posted by Solar Designer on Dec 12Hi Thank you for bringing these...

Read full

CVE-2025-54981: Apache StreamPark: Weak Encryption Algorithm in StreamPark

about 15 hours ago

Posted by Huajie Wang on Dec 12Severity: important Affected versions: - Apache...

Read full

CVE-2025-54947: Apache StreamPark: Use hard-coded key vulnerability

about 15 hours ago

Posted by Huajie Wang on Dec 12Severity: important Affected versions: - Apache...

Read full

CVE-2025-65995: Apache Airflow: Disclosure of secrets to UI via kwargs

about 15 hours ago

Posted by Ephraim Anierobi on Dec 12Severity: moderate Affected versions: - Apache...

Read full

CVE-2025-66388: Apache Airflow: Secrets in rendered templates not redacted properly and exposed in the UI

about 15 hours ago

Posted by Ephraim Anierobi on Dec 12Severity: low Affected versions: - Apache...

Read full

CVE-2025-58137: Apache Fineract: IDOR via self-service API

1 day ago

Posted by Adam Monsen on Dec 11Severity: important Affected versions: - Apache...

Read full

CVE-2025-58130: Apache Fineract: Server Key not masked

1 day ago

Posted by Adam Monsen on Dec 11Severity: low Affected versions: - Apache...

Read full

CVE-2025-23408: Apache Fineract: weak password policy

1 day ago

Posted by Adam Monsen on Dec 11Severity: moderate Affected versions: - Apache...

Read full

Re: CVE-2025-8110 in Gogs self-hosted git service

1 day ago

Posted by Martin Weinelt on Dec 11Per gusted, a Forgejo developer, the...

Read full

Re: CVE-2025-8110 in Gogs self-hosted git service

1 day ago

Posted by Jakub Wilk on Dec 11* Alan Coopersmith <alan.coopersmith () oracle...

Read full

Update: EXIM-Security-2025-12-09.1: Exim 4.99: Remote heap corruption

1 day ago

Posted by Heiko Schlittermann on Dec 11Update: Coordinated release date Heiko Schlittermann...

Read full

Re: LibreOffice puts searched text into the PRIMARY selection (Linux, X11)

2 days ago

Posted by Vincent Lefevre on Dec 10Here, with LibreOffice, this is worse...

Read full

Or log in

Everything you care about in one place

Open Source Security

Latest posts

Re: CVE-2025-54947: Apache StreamPark: Use hard-coded key vulnerability

CVE-2025-54981: Apache StreamPark: Weak Encryption Algorithm in StreamPark

CVE-2025-54947: Apache StreamPark: Use hard-coded key vulnerability

CVE-2025-65995: Apache Airflow: Disclosure of secrets to UI via kwargs

CVE-2025-66388: Apache Airflow: Secrets in rendered templates not redacted properly and exposed in the UI

CVE-2025-58137: Apache Fineract: IDOR via self-service API

CVE-2025-58130: Apache Fineract: Server Key not masked

CVE-2025-23408: Apache Fineract: weak password policy

Re: CVE-2025-8110 in Gogs self-hosted git service

Re: CVE-2025-8110 in Gogs self-hosted git service

Update: EXIM-Security-2025-12-09.1: Exim 4.99: Remote heap corruption

Re: LibreOffice puts searched text into the PRIMARY selection (Linux, X11)

Try Feeder for free