{"7-zip-25.00":{"security":true,"name":{"default":"7-Zip 25.00","zh_CN":"7-Zip 25.00"},"caution":{"default":"Fixes a heap buffer overflow vulnerability - CVE-2025-53816 (Severity: Medium); Fixes a null pointer dereference vulnerability - CVE-2025-53817 (Severity: Medium)","zh_CN":"修复一处堆缓冲区溢出漏洞，漏洞编号 CVE-2025-53816（严重性：中）；修复一处空指针解引用漏洞，漏洞编号 CVE-2025-53817（严重性：中）"},"packages":{"7-zip":"25.00"},"type":"conventional"},"7-zip-25.01":{"security":true,"name":{"default":"7-Zip 25.01","zh_CN":"7-Zip 25.01"},"caution":{"default":"Fixes an arbitrary file write vulnerability on extraction that may lead to code execution - CVE-2025-55188 (Severity: Low)","zh_CN":"修复一处解压时可能导致任意文件写入并可进而触发代码执行的漏洞，漏洞编号 CVE-2025-55188（严重性：低）"},"packages":{"7-zip":"25.01"},"type":"conventional"},"aide-0.19.2":{"security":true,"name":{"default":"AIDE 0.19.2","zh_CN":"AIDE 0.19.2"},"caution":{"default":"Fixes an improper output neutralization vulnerability - CVE-2025-54389 (Severity: Medium); Fixes a null pointer dereference vulnerability - CVE-2025-54409 (Severity: Medium)","zh_CN":"修复一处输出无害化处理不当漏洞，漏洞编号 CVE-2025-54389（严重性：中）；修复一处空指针解引用漏洞，漏洞编号 CVE-2025-54409（严重性：中）"},"packages":{"aide":"0.19.2"},"type":"conventional"},"aiohttp-3.13.5":{"security":true,"name":{"default":"aiohttp 3.13.5"},"caution":{"default":"Fixes 5 security vulnerabilities (including 1 of critical severity, 1 of high severity and 3 of medium severity)","zh_CN":"修复 5 个安全漏洞（含 1 个严重漏洞、1 个高危漏洞和 3 个中危漏洞）"},"packages-v2":{"aiohttp":"< 3.13.5"},"type":"conventional"},"apache-arrow-23.0.1":{"security":true,"name":{"default":"Apache Arrow 23.0.1"},"caution":{"default":"Fixes a Use-After-Free vulnerability - CVE-2026-25087 (Severity: High)","zh_CN":"修复一个释放后使用 (Use-After-Free) 漏洞，漏洞编号 CVE-2026-25087（严重性：高）"},"packages-v2":{"apache-arrow":"< 23.0.1"},"type":"conventional"},"assimp-6.0.4":{"security":true,"name":{"default":"assimp 6.0.4"},"caution":{"default":"Fixes 10 security vulnerabilities (including 7 of high severity and 3 of medium severity)","zh_CN":"修复 10 处安全漏洞（含 7 个高危漏洞, 3 个中危漏洞）"},"packages-v2":{"assimp":"< 6.0.4"},"type":"conventional"},"bind-9.20.18":{"security":true,"name":{"default":"BIND 9.20.18"},"caution":{"default":"Fixes a vulnerability where malformed BRID/HHIT records can cause named(8) to terminate unexpectedly - CVE-2025-13878 (Severity: High)","zh_CN":"修复安全漏洞：畸形 BRID/HHIT 记录可能导致 named(8) 程序异常终止，漏洞编号 CVE-2025-13878（严重性：高）"},"packages-v2":{"bind":"< 1:9.20.18"},"type":"conventional"},"bind-9.20.23":{"security":true,"name":{"default":"Bind 9.20.23"},"caution":{"default":"Fixes 10 security vulnerabilities (including 1 of Critical, 5 of High, and 4 of Medium severity)","zh_CN":"修复 10 个安全漏洞（含 1 个严重漏洞、5 个高危漏洞和 4 个中危漏洞）"},"packages-v2":{"bind":"< 9.20.23"},"type":"conventional"},"botan-3.11.1":{"security":true,"name":{"default":"Botan 3.11.1"},"caution":{"default":"Fixes a heap over-read vulnerability - CVE-2026-32877 (severity: High), a vulnerability that omitted verifying the signature of the OCSP response - CVE-2026-32883 (severity: Medium) and a Name Constraints bypass vulnerability - CVE-2026-32884 (severity: Medium) ","zh_CN":"修复一个堆溢出漏洞（漏洞编号 CVE-2026-32877，严重性：高），一个因未验证 OCSP 响应签名导致的漏洞（漏洞编号 CVE-2026-32883，严重性：中）和一个名称约束绕过漏洞（漏洞编号 CVE-2026-32884，严重性：中）"},"packages-v2":{"botan":"< 3.11.1"},"type":"conventional"},"busybox-1.37.0-1":{"security":true,"name":{"default":"BusyBox 1.37.0 Security Update","zh_CN":"BusyBox 1.37.0 安全更新"},"caution":{"default":"Fixes a TOCTOU (Time-Of-Check to Time-of-Use) race condition vulnerability (severity: high)","zh_CN":"修复一处 TOCTOU（检查到使用时间）竞态条件漏洞（严重性：高）"},"packages":{"busybox":"1.37.0-1"},"type":"conventional"},"busybox-1.38.0":{"security":true,"name":{"default":"BusyBox 1.38.0"},"caution":{"default":"Fixes an UI Misrepresentation of Critical Information vulnerability (CVE-2025-46394, Severity: Low) and an Improper Access Control vulnerability (CVE-2025-60876, Severity: Medium)","zh_CN":"修复一个 UI 错误展示重要信息的漏洞（CVE-2023-39810，严重性：高）和一个访问控制不恰当漏洞（CVE-2025-60876，严重性：中）"},"packages-v2":{"busybox":"< 1.38.0"},"type":"conventional"},"cairosvg-2.9.0":{"security":true,"name":{"default":"CairoSVG 2.9.0"},"caution":{"default":"Fixes an Uncontrolled Recursion vulnerability (CVE-2026-31899, Severity: High)","zh_CN":"修复一个未经控制的递归漏洞（CVE-2026-31899，严重性：高）"},"packages-v2":{"cairosvg":"< 2.9.0"},"type":"conventional"},"calibre-9.4.0":{"security":true,"name":{"default":"Calibre 9.4.0"},"caution":{"default":"Fixes 7 security vulnerabilities (including 2 of critical severity, 3 of high severity and 2 of medium severity)","zh_CN":"修复 7 处安全漏洞（含 2 个严重漏洞、3 个高危漏洞和 2 个中危漏洞）"},"packages-v2":{"calibre":"< 9.4.0"},"type":"conventional"},"calibre-9.5.0":{"security":true,"name":{"default":"Calibre 9.5.0"},"caution":{"default":"Fixes a path traversal vulnerabilities (CVE-2026-30853, Severity: High)","zh_CN":"修复一个路径穿越漏洞，漏洞编号CVE-2026-30853（严重性：高）"},"packages-v2":{"calibre":"< 9.5.0"},"type":"conventional"},"calibre-9.6.0":{"security":true,"name":{"default":"Calibre 9.6.0"},"caution":{"default":"Fixes a Server-Side Request Forgery vulnerability - CVE-2026-33205 (severity: High) and a Path Traversal vulnerability - CVE-2026-33206 (severity: High) ","zh_CN":"修复一个服务端请求伪造漏洞，漏洞编号 CVE-2026-33205（严重性：高）和一个路径穿越漏洞，漏洞编号 CVE-2026-33206（严重性：高）"},"packages-v2":{"calibre":"< 9.6.0"},"type":"conventional"},"capnproto-1.3.0":{"security":true,"name":{"default":"Cap'n Proto 1.3.0"},"caution":{"default":"Fixes a out-of-bounds read vulnerabilities - CVE-2022-46149 (Severity: Medium)","zh_CN":"修复一个越界读取漏洞，漏洞编号 CVE-2022-46149（严重性：中）"},"packages-v2":{"capnproto":"< 1.3.0"},"type":"conventional"},"capnproto-1.4.0":{"security":true,"name":{"default":"Cap'n Proto 1.4.0"},"caution":{"default":"Fixes 2 HTTP request/response smuggling vulnerabilities - CVE-2026-32239, CVE-2026-32240 (Severity: Medium)","zh_CN":"修复两个 HTTP 请求响应走私漏洞，漏洞编号 CVE-2026-32239、CVE-2026-32240（严重性：中）"},"packages-v2":{"capnproto":"< 1.4.0"},"type":"conventional"},"chromium-135.0.7049.95":{"security":true,"name":{"default":"Chromium 135.0.7049.95"},"caution":{"default":"Fixes 2 security vulnerabilities (1 each of critical and high severities)","zh_CN":"修复 2 个安全漏洞（含 1 个严重漏洞，1 个高危漏洞）"},"packages":{"chromium":"135.0.7049.95"},"type":"conventional"},"ciel-3.10.2":{"security":true,"name":{"default":"Ciel 3.10.2"},"caution":{"default":"Fixes a Container Escape vulnerability","zh_CN":"修复一个容器逃逸 (Container Escape) 漏洞"},"packages-v2":{"ciel":"< 3.10.2"},"type":"conventional"},"clash-verge-service-fix-get-root-access":{"security":true,"name":{"default":"Clash Verge Service Security Update","zh_CN":"Clash Verge 服务安全更新"},"caution":{"default":"Fixes a remote code execution vulnerability exploitable via parameter manipulation","zh_CN":"修复一处可通过操纵程序参数利用的远程代码执行漏洞"},"packages":{"clash-verge-service":"0+git20250324-2"},"type":"conventional"},"cloud-init-26.1":{"security":true,"name":{"default":"cloud-init 26.1"},"caution":{"default":"Fixes an Improper Authentication vulnerability (CVE-2024-6174, Severity: High) and an Incorrect Permission Assignment for Critical Resource vulnerability (CVE-2024-11584, Severity: Medium)","zh_CN":"修复一个鉴权错误漏洞（CVE-2024-6174，严重性：高）和一个关键资源权限分配错误漏洞（CVE-2024-11584，严重性：中）"},"packages-v2":{"cloud-init":"< 26.1"},"type":"conventional"},"cni-plugins-1.9.0":{"security":true,"name":{"default":"cni-plugins 1.9.0"},"caution":{"default":"Fixes an information exposure vulnerability - CVE-2025-67499 (Severity: Moderate)","zh_CN":"修复一处信息泄露漏洞，漏洞编号 CVE-2025-67499（严重性：中）"},"packages-v2":{"cni-plugins":">= 1.6.0 && < 1.9.0"},"type":"conventional"},"configobj-5.0.9":{"security":true,"name":{"default":"configobj 5.0.9"},"caution":{"default":"Fixes a ReDoS vulnerabilities - CVE-2023-26112 (Severity: Low)","zh_CN":"修复一个正则表达式拒绝服务攻击漏洞，漏洞编号 CVE-2023-26112（严重性：低）"},"packages-v2":{"configobj":"< 5.0.9"},"type":"conventional"},"confuse-3.3":{"security":true,"name":{"default":"confuse 3.3"},"caution":{"default":"Fixes a memory leak vulnerability - CVE-2018-19760 (Severity: High)","zh_CN":"修复一个内存泄漏漏洞，漏洞编号 CVE-2018-19760（严重性：高）"},"packages-v2":{"confuse":"< 3.3"},"type":"conventional"},"core-12.1.3":{"security":false,"must_match_all":false,"name":{"default":"AOSC OS Core 12.1.3","zh_CN":"安同 OS 核心包，版本 12.1.3"},"caution":{"default":"Fixes inconsistent CMake configuration in zlib (zlib-ng), causing some software to fail to build","zh_CN":"修复 zlib (zlib-ng) 软件包中 CMake 配置与包内文件不一致的问题，该问题先前导致部分软件无法正常构建"},"packages":{"linux+api":"2:6.12.23","zlib":"1:2.2.4-2","aosc-aaa":"12.1.3"},"type":"conventional"},"core-12.2.0":{"security":false,"must_match_all":true,"name":{"default":"AOSC OS Core 12.2.0","zh_CN":"安同 OS 核心包，版本 12.2.0"},"caution":{"default":"Updates GCC to 14.3.0 and enables support for systemd dynamic users","zh_CN":"更新 GCC 至 14.3.0 并开启 systemd 动态用户支持"},"packages":{"aosc-aaa":"12.2.0","gcc-runtime":"14.3.0","glibc":"1:2.40-3","linux+api":"2:6.12.30"},"type":"conventional"},"core-13-fixes-20251218":{"security":false,"must_match_all":false,"name":{"default":"AOSC OS Core 13.0.2","zh_CN":"安同 OS 核心包，版本 13.0.2"},"caution":{"default":"Fixes link-time errors when against static GCC libraries, link-time errors on AArch64 hosts when compiler-optimized atomic operations functions (out-of-line atomics) are enabled, as well as potential upgrade errors when attempting to update from preview Core 13 updates","zh_CN":"修复链接 GCC 静态库时出错的问题及 AArch64 宿主在开启编译器优化的原子操作函数 (out-of-line atomics) 时链接出错的问题，并修复部分 Core 13 预览用户无法完成更新的问题"},"packages-v2":{"aosc-aaa":"< 13.0.2","gcc":"< 1:15.2.0-1"},"type":"conventional"},"core-13.0.1":{"security":false,"must_match_all":false,"name":{"default":"AOSC OS Core 13.0.1","zh_CN":"安同 OS 核心包，版本 13.0.1"},"caution":{"default":"Hotfix for application launch failures (runtime) and build-time failure on Loongson 3 (MIPS)","zh_CN":"针对龙芯三号 (MIPS) 的应用启动失败及构建时错误的紧急修复"},"packages-v2":{"aosc-aaa":"< 13.0.1","gcc":"< 1:2.42-1"},"type":"conventional"},"core-13.0.6":{"security":true,"must_match_all":false,"name":{"default":"AOSC OS Core 13.0.6","zh_CN":"安同 OS 核心包，版本 13.0.6"},"caution":{"default":"Fixes an interger overflow vulnerability (severity: High) and a stack memory contents leak vulnerability found in glibc 2.42","zh_CN":"修复 glibc 2.42 的一处整数溢出漏洞（严重性：高）和一处堆栈内容泄漏漏洞"},"packages-v2":{"aosc-aaa":"< 13.0.6","glibc":"< 1:2.42-2","glibc+32":"< 2.42"},"type":"conventional"},"core-13.1.5":{"security":true,"must_match_all":false,"name":{"default":"AOSC OS Core 13.1.5","zh_CN":"安同 OS 核心包，版本 13.1.5"},"caution":{"default":"Fixes 2 security vulnerabilities disclosed in glibc Security Advisories GLIBC-SA-2026-0005 and GLIBC-SA-2026-0006 (Severity: High) and a GCC 15 internal compiler error building WebKitGTK on AArch64 with -ggdb","zh_CN":"修复 glibc 第 GLIBC-SA-2026-0005 及第 GLIBC-SA-2026-0006 号安全公告中披露的 2 个安全漏洞（严重性：高）以及 GCC 15 在 AArch64 开启 -ggdb 构建 WebKitGTK 时触发的一项编译器内部错误"},"packages-v2":{"glibc":"< 1:2.42-4","gcc":"< 15.2.0-5"},"type":"conventional"},"core-13.2.0":{"security":true,"must_match_all":false,"name":{"default":"AOSC OS Core 13.2.0","zh_CN":"安同 OS 核心包，版本 13.2.0"},"caution":{"default":"Fixes 3 vulnerabilities disclosed in GLIBC-SA-2026-0007, GLIBC-SA-2026-0009, and GLIBC-SA-2026-0010 (1 of critical severity and 2 of high severity), and harden GCC stack protector on LoongArch against an easy bypass","zh_CN":"修复 glibc 安全公告 GLIBC-SA-2026-0007、GLIBC-SA-2026-0009 及 GLIBC-SA-2026-0010 中披露的 3 个安全漏洞（含 1 个严重漏洞、2 个高危漏洞），并针对龙架构加强 GCC 栈溢出保护以阻止简单的绕过手段"},"packages-v2":{"glibc":"< 1:2.42-5","gcc-15":"< 15.2.0-7"},"type":"conventional"},"core-13":{"security":false,"must_match_all":false,"name":{"default":"AOSC OS Core 13.0.0","zh_CN":"安同 OS 核心包，版本 13.0.0"},"caution":{"default":"Updates core runtime and toolchain to the latest versions, including glibc 2.42 and GCC 15, as well as Zlib-ng 2.3.2, with optimization for x86, AArch64, LoongArch, and RISC-V","zh_CN":"包括 glibc 2.42 及 GCC 15，以及包含 x86、AArch64、龙架构及 RISC-V 优化的 Zlib-ng 2.3.2 等核心运行时及工具链更新"},"packages-v2":{"aosc-aaa":"< 13.0.0","gcc":"< 1:15.2.0","glibc":"< 1:2.42","libxcrypt":"< 4.5.2","linux+api":"< 2:6.12.50","zlib":"< 1:2.3.2"},"type":"conventional"},"coreutils-9.7-fix-cve-2025-5278":{"security":true,"name":{"default":"Security Patch for Coreutils 9.7","zh_CN":"适用于 Coreutils 9.7 的安全补丁"},"caution":{"default":"Fixes a heap buffer under-read vulnerability - CVE-2025-5278 (Severity: Medium)","zh_CN":"修复一处堆缓冲区读下溢 (heap buffer under-read) 漏洞，漏洞编号 CVE-2025-5278（严重性：中）"},"packages":{"coreutils":"9.7-1"},"type":"conventional"},"coturn-4.10.0":{"security":true,"name":{"default":"coturn 4.10.0"},"caution":{"default":"Fixes an Incorrect Type Conversion or Cast vulnerability (CVE-2026-40613, Severity: High)","zh_CN":"修复一个不正确的类型转换漏洞（CVE-2026-40613，严重性：高）"},"packages-v2":{"coturn":"< 4.10.0"},"type":"conventional"},"coturn-4.9.0":{"security":true,"name":{"default":"Coturn 4.9.0"},"caution":{"default":"Fixes a vulnerability that can bypass `denied-peer-ip` and loopback restrictions with IPv4-mapped IPv6 - CVE-2026-27624 (Severity: High)","zh_CN":"修复一处可以通过 IPv4 映射 IPv6 绕过 `denied-peer-ip` 和本地回环限制的漏洞，漏洞编号 CVE-2026-27624（严重性：高）"},"packages-v2":{"coturn":"< 4.9.0"},"type":"conventional"},"crun-1.27.1":{"security":true,"name":{"default":"crun 1.27.1"},"caution":{"default":"Fixes a privilege escalation vulnerability (CVE-2026-30892, Severity: High)","zh_CN":"修复一个提权漏洞（CVE-2026-30892，严重性：高）"},"packages-v2":{"crun":"< 1.27.1"},"type":"conventional"},"cryptography-46.0.5":{"security":true,"name":{"default":"cryptography 46.0.5"},"caution":{"default":"Fixes a vulnerability that may lead to private key leakage or signature forgery caused by unverified input - CVE-2026-26007 (Severity: High)","zh_CN":"修复一处输入未验证导致的潜在私钥泄露或签名伪造漏洞，漏洞编号 CVE-2026-26007（严重性：高）"},"packages-v2":{"cryptography":"< 46.0.5"},"type":"conventional"},"cryptography-46.0.7":{"security":true,"name":{"default":"PyCA cryptography 46.0.7"},"caution":{"default":"Fixes a Buffer Overflow vulnerability - CVE-2026-39892 (Severity: High)","zh_CN":"修复一个缓冲区溢出漏洞，漏洞编号 CVE-2026-39892（严重性：高）"},"packages-v2":{"cryptography":"< 46.0.7"},"type":"conventional"},"cups-2.4.13":{"security":true,"must_match_all":false,"name":{"default":"CUPS Printing System 2.4.13","zh_CN":"CUPS 打印系统 2.4.13"},"caution":{"default":"Fixes two security vulnerabilities - CVE-2025-58060, CVE-2025-58364 (one of critical severity)","zh_CN":"修复两个安全漏洞，漏洞编号 CVE-2025-58060, CVE-2025-58364（含一个严重漏洞）"},"packages":{"cups":"2.4.13","cups+32":"2.4.13"},"type":"conventional"},"cups-2.4.17":{"security":true,"name":{"default":"CUPS Printing System 2.4.17","zh_CN":"CUPS 打印系统 2.4.17"},"caution":{"default":"Fixes 8 security vulnerabilities (2 of high severity, 5 of medium severity)","zh_CN":"修复 8 个安全漏洞（含 2 个高危漏洞、5 个中危漏洞）"},"packages-v2":{"cups":"< 2.4.17"},"type":"conventional"},"cups-2.4.19":{"security":true,"must_match_all":false,"name":{"default":"CUPS 2.4.19","zh_CN":"CUPS 2.4.19"},"caution":{"default":"Fixes an out-of-bounds read vulnerability - CVE-2026-41079 (Severity: Medium)","zh_CN":"修复一个越界读取 (Out-of-bounds Read) 漏洞（CVE-2026-41079，严重性：中）"},"packages-v2":{"cups":"< 2.4.19","cups+32":"< 2.4.19"},"type":"conventional"},"curl-8.16.0":{"security":true,"name":{"default":"curl 8.16.0"},"caution":{"default":"Fixes a out-of-bound cookie path read vulnerability - CVE-2025-9086 (Severity: Low), and a predictable WebSocket mask vulnerability - CVE-2025-10148 (Severity: Low)","zh_CN":"修复一处 Cookie 越界读取 (Out-of-bound cookie path read) 漏洞，漏洞编号 CVE-2025-9086（严重性：低），及一处可预测 WebSocket 掩码漏洞，漏洞编号 CVE-2025-10148（严重性：低）","zh_TW":"修復一處 Cookie 越界讀取 (Out-of-bound cookie path read) 漏洞，漏洞編號 CVE-2025-9086（嚴重性：低），及一處可預測 WebSocket 遮罩漏洞，漏洞編號 CVE-2025-10148（嚴重性：低）"},"packages":{"curl":"8.16.0"},"type":"conventional"},"curl-8.17.0":{"security":true,"must_match_all":false,"name":{"default":"curl 8.17.0"},"caution":{"default":"Fixes a path traversal vulnerability in wcurl(1) - CVE-2025-11563 (Severity: Moderate)","zh_CN":"修复 wcurl(1) 中的一处路径遍历 (Path Traversal) 漏洞，漏洞编号 CVE-2025-11563（严重性：中）"},"packages-v2":{"curl":"< 8.17.0"},"type":"conventional"},"curl-8.18.0":{"security":true,"must_match_all":false,"name":{"default":"curl 8.18.0"},"caution":{"default":"Fixes 6 security vulnerabilities (including 5 of medium severity)","zh_CN":"修复 6 处安全漏洞（含 5 个中危漏洞）"},"packages-v2":{"curl":"< 8.18.0","curl+32":"< 8.18.0"},"type":"conventional"},"curl-8.19.0":{"security":true,"must_match_all":false,"name":{"default":"curl 8.19.0"},"caution":{"default":"Fixes 3 security vulnerabilities (including 1 of High severity and 2 Medium)","zh_CN":"修复 3 个安全漏洞（含 1 个高危漏洞和 2 个中危漏洞）"},"packages-v2":{"curl":"< 8.19.0","curl+32":"< 8.19.0"},"type":"conventional"},"curl-8.20.0":{"security":true,"must_match_all":false,"name":{"default":"curl 8.20.0"},"caution":{"default":"Fixes 8 security vulnerabilities (including 3 of Medium severity)","zh_CN":"修复 8 个安全漏洞（含 3 个中危漏洞）"},"packages-v2":{"curl":"< 8.20.0","curl+32":"< 8.20.0"},"type":"conventional"},"dotnet-10.0.107":{"security":true,"must_match_all":false,"name":{"default":".NET Runtime 10.0.7","zh_CN":".NET 运行时 10.0.7"},"caution":{"default":"Fixes CVE-2026-40372 (Severity: Critical) and 4 high severity vulnerabilities","zh_CN":"修复 CVE-2026-40372（严重性：严重）以及其他 4 个高危漏洞"},"packages-v2":{"dotnet-runtime-10.0":"<10.0.7","aspnetcore-runtime-10.0":"<10.0.7"},"type":"conventional"},"element-desktop-1.11.103":{"security":true,"name":{"default":"Element Desktop 1.11.103 Security Update","zh_CN":"Element Desktop 1.11.103 安全更新","zh_TW":"Element Desktop 1.11.103 安全更新"},"caution":{"default":"Fixes an encrypted event spoofing vulnerability - CVE-2025-48937","zh_CN":"修复一处加密事件伪造漏洞 - CVE-2025-48937（严重性：高）","zh_TW":"修復一處加密事件偽造漏洞 - CVE-2025-48937（嚴重性：高）"},"packages":{"element-desktop":"1.11.103"},"type":"conventional"},"exim-4.98.2":{"security":true,"name":{"default":"Exim 4.98.2","zh_CN":"Exim 4.98.2"},"caution":{"default":"Fixes a remote SQL injection vulnerability - CVE-2025-54389 (Severity: High); Fixes a privilege escalation vulnerability - CVE-2025-54409 (Severity: High)","zh_CN":"修复一处远程 SQL 注入漏洞，漏洞编号 CVE-2025-26794（严重性：高）；修复一处提权漏洞，漏洞编号 CVE-2025-30232（严重性：高）"},"packages":{"exim":"4.98.2"},"type":"conventional"},"exim-4.99.3":{"security":true,"name":{"default":"Exim 4.99.3"},"caution":{"default":"Fixes 5 security vulnerabilities (including 3 of critical severity, 1 of high severity and 1 of medium severity)","zh_CN":"修复 5 个安全漏洞（含 3 个严重漏洞、1 个高危漏洞和 1 个中危漏洞）"},"packages-v2":{"exim":"< 4.99.3"},"type":"conventional"},"exiv2-0.28.7":{"security":true,"name":{"default":"Exiv2 0.28.7"},"caution":{"default":"Fixes an Out-of-Bounds Read vulnerability (Severity: Medium, CVE-2025-54080) and a Denial-of-Service vulnerability (Severity: Medium, CVE-2025-55304)","zh_CN":"修复一个越界读取漏洞（严重性：中，编号：CVE-2025-54080）和一个拒绝服务漏洞（严重性：中，编号：CVE-2025-55304）"},"packages-v2":{"exiv2":"< 0.28.7"},"type":"conventional"},"exiv2-0.28.8":{"security":true,"name":{"default":"Exiv2 0.28.8"},"caution":{"default":"Fixes 2 out-of-bounds read vulnerability (CVE-2026-25884, CVE-2026-27596, Severity: High), and an integer overflow vulnerability (CVE-2026-27631, Severity: Medium)","zh_CN":"修复了两个越界读取漏洞（CVE-2026-25884、CVE-2026-27596，严重性：高），以及一个整数溢出漏洞（CVE-2026-27631，严重性：中等）"},"packages-v2":{"exiv2":"< 0.28.8"},"type":"conventional"},"expat-2.7.2":{"security":true,"must_match_all":false,"name":{"default":"Expat XML Parser 2.7.2","zh_CN":"Expat XML 解析器 2.7.2"},"caution":{"default":"Fixes a memory-amplification DoS vulnerability - CVE-2025-59375 (Severity: High)","zh_CN":"修复一处内存放大型拒绝服务 (DoS) 漏洞，漏洞编号 CVE-2025-59375（严重性：高）"},"packages":{"expat":"2.7.2","expat+32":"2.7.2"},"type":"conventional"},"expat-2.7.4":{"security":true,"must_match_all":false,"name":{"default":"Expat 2.7.4"},"caution":{"default":"Fixes a denial of service vulnerability (CVE-2025-66382, Severity: Medium), a null pointer dereference vulnerability (CVE-2026-24515, Severity: Critical), and a integer overflow vulnerability (CVE-2026-25210, Severity: Medium)","zh_CN":"修复了一个拒绝服务漏洞（CVE-2025-66382，严重性：中等）、一个空指针解引用漏洞（CVE-2026-24515，严重性：严重），以及一个整数溢出漏洞（CVE-2026-25210，严重性：中等）"},"packages-v2":{"expat":"< 2.7.4","expat+32":"< 2.7.4"},"type":"conventional"},"expat-2.7.5":{"security":true,"must_match_all":false,"name":{"default":"Expat 2.7.5"},"caution":{"default":"Fixes 2 null pointer dereference vulnerability (CVE-2026-32776, CVE-2026-32778, Severity: Medium) and an infinite loop vulnerability (CVE-2026-32777, Severity: Medium)","zh_CN":"修复两个空指针解引用漏洞（CVE-2026-32776，CVE-2026-32778，严重性：中）和一个无限循环漏洞（CVE-2026-32777，严重性：中）"},"packages-v2":{"expat":"< 2.7.5","expat+32":"< 2.7.5"},"type":"conventional"},"expat-2.8.0":{"security":true,"must_match_all":false,"name":{"default":"Expat 2.8.0"},"caution":{"default":"Fixes a hash flooding vulnerability (CVE-2026-41080, Severity: High)","zh_CN":"修复一个哈希洪水漏洞（CVE-2026-41080，严重性：高）"},"packages-v2":{"expat":"< 2.8.0","expat+32":"< 2.8.0"},"type":"conventional"},"expat-2.8.1":{"security":true,"must_match_all":true,"name":{"default":"Expat 2.8.1"},"caution":{"default":"Fixes an Inefficient Algorithmic Complexity vulnerability (CVE-2026-45186, Severity: High)","zh_CN":"修复一个算法复杂度不足漏洞（CVE-2026-45186，严重性：高）"},"packages-v2":{"expat":"< 2.8.1","expat+32":"< 2.8.1"},"type":"conventional"},"firefox-137.0.2":{"security":true,"name":{"default":"Firefox 137.0.2"},"caution":{"default":"Fixes 1 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-25 (1 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-25 号安全公告中披露的 1 个安全漏洞（含 1 个高危漏洞）"},"packages":{"firefox":"137.0.2"},"type":"conventional"},"firefox-137.0":{"security":true,"name":{"default":"Firefox 137.0"},"caution":{"default":"Fixes 8 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-20 (2 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-20 号安全公告中披露的 8 个安全漏洞（含 2 个高危漏洞）"},"packages":{"firefox":"137.0"},"type":"conventional"},"firefox-138.0":{"security":true,"name":{"default":"Firefox 138.0"},"caution":{"default":"Fixes 11 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-28 (4 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-28 号安全公告中披露的 11 个安全漏洞（含 4 个高危漏洞）"},"packages":{"firefox":"138.0"},"type":"conventional"},"firefox-139.0":{"security":true,"name":{"default":"Firefox 139.0"},"caution":{"default":"Fixes 10 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-42 (1 of critical severity)","zh_CN":"修复 Mozilla 基金会第 2025-42 号安全公告中披露的 10 个安全漏洞（含 1 个严重漏洞）"},"packages":{"firefox":"139.0"},"type":"conventional"},"firefox-140.0.2":{"security":true,"name":{"default":"Firefox 140.0.2"},"caution":{"default":"Fixes 10 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-51 (2 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-51 号安全公告中披露的 10 个安全漏洞（含 2 个高危漏洞）"},"packages":{"firefox":"140.0.2"},"type":"conventional"},"firefox-141.0":{"security":true,"name":{"default":"Firefox 141.0"},"caution":{"default":"Fixes 16 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-56 (6 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-56 号安全公告中披露的 16 个安全漏洞（含 6 个高危漏洞）"},"packages":{"firefox":"141.0"},"type":"conventional"},"firefox-142.0":{"security":true,"name":{"default":"Firefox 142.0"},"caution":{"default":"Fixes 8 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-64 (5 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-64 号安全公告中披露的 8 个安全漏洞（含 5 个高危漏洞）"},"packages":{"firefox":"142.0"},"type":"conventional"},"firefox-143.0.3":{"security":true,"name":{"default":"Firefox 143.0.3"},"caution":{"default":"Fixes 2 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-80 (2 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-80 号安全公告中披露的 2 个安全漏洞（含 2 个高危漏洞）"},"packages-v2":{"firefox":"< 143.0.3"},"type":"conventional"},"firefox-143.0":{"security":true,"name":{"default":"Firefox 143.0"},"caution":{"default":"Fixes 11 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-73 (3 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-73 号安全公告中披露的 11 个安全漏洞（含 3 个高危漏洞）"},"packages":{"firefox":"143.0"},"type":"conventional"},"firefox-144.0":{"security":true,"name":{"default":"Firefox 144.0"},"caution":{"default":"Fixes 14 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-81 (7 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-81 号安全公告中披露的 14 个安全漏洞（含 7 个高危漏洞）"},"packages-v2":{"firefox":"< 144.0"},"type":"conventional"},"firefox-145.0":{"security":true,"name":{"default":"Firefox 145.0"},"caution":{"default":"Fixes 16 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-87 (9 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-87 号安全公告中披露的 16 个安全漏洞（含 9 个高危漏洞）"},"packages-v2":{"firefox":"< 145.0"},"type":"conventional"},"firefox-146.0.1":{"security":true,"name":{"default":"Firefox 146.0.1"},"caution":{"default":"Fixes 2 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-98 (2 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-98 号安全公告中披露的 2 个安全漏洞（含 2 个高危漏洞）"},"packages-v2":{"firefox":"< 146.0.1"},"type":"conventional"},"firefox-146.0":{"security":true,"name":{"default":"Firefox 146.0"},"caution":{"default":"Fixes 13 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-92 (5 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-92 号安全公告中披露的 13 个安全漏洞（含 5 个高危漏洞）"},"packages-v2":{"firefox":"< 146.0"},"type":"conventional"},"firefox-147.0":{"security":true,"name":{"default":"Firefox 147.0"},"caution":{"default":"Fixes 16 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2026-01 (6 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-01 号安全公告中披露的 16 个安全漏洞（含 6 个高危漏洞）"},"packages-v2":{"firefox":"< 147.0"},"type":"conventional"},"firefox-148.0":{"security":true,"name":{"default":"Firefox 148.0"},"caution":{"default":"Fixes 51 security vulnerability disclosed in Mozilla Foundation Security Advisory 2026-13 (31 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-13 号安全公告中披露的 50 个安全漏洞（含 31 个高危漏洞）"},"packages-v2":{"firefox":"< 148.0"},"type":"conventional"},"firefox-149.0":{"security":true,"name":{"default":"Firefox 149.0"},"caution":{"default":"Fixes 46 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2026-20 (19 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-20 号安全公告中披露的 46 个安全漏洞（含 19 个高危漏洞）"},"packages-v2":{"firefox":"< 149.0"},"type":"conventional"},"firefox-150.0":{"security":true,"name":{"default":"Firefox 150.0"},"caution":{"default":"Fixes 41 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2026-30 (12 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-30 号安全公告中披露的 41 个安全漏洞（含 12 个高危漏洞）"},"packages-v2":{"firefox":"< 150.0"},"type":"conventional"},"firefox-151.0":{"security":true,"name":{"default":"Firefox 151.0"},"caution":{"default":"Fixes 31 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2026-46 (6 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-46 号安全公告中披露的 31 个安全漏洞（含 6 个高危漏洞）"},"packages-v2":{"firefox":"< 151.0"},"type":"conventional"},"firefox-esr-140.11.0esr":{"security":true,"name":{"default":"Firefox ESR 140.11.0esr"},"caution":{"default":"Fixes 20 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2026-48 (6 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-48 号安全公告中披露的 20 个安全漏洞（含 6 个高危漏洞）"},"packages-v2":{"firefox-esr":"< 140.11.0esr"},"type":"conventional"},"firmware-survey-20260204":{"security":false,"must_match_all":false,"name":{"default":"Device Driver Firmware and Microcode Update (February 6, 2026)","zh_CN":"设备驱动固件及微码更新（2026 年 2 月 6 日）"},"caution":{"default":"With enhancements for various audio, graphics, networking, and SoC devices and platforms, with a fix for unresponsive desktop or freezes on platforms based on the AMD Pheonix APUs, as well as added support for audio, graphics, NPU, and networking devices found on Intel Panther Lake platforms","zh_CN":"包含对数款音频、图形和网络设备，以及 SoC 平台的支持增强，修复 AMD Pheonix APU 硬件平台偶发桌面无响应或锁死的问题，并新增 Intel Panther Lake 平台音频、图形、NPU 及网络设备的支持"},"packages-v2":{"firmware-nonfree":"< 20260110+debian20251125+1","sof-firmware":"< 2025.12.2"},"type":"conventional"},"flask-3.1.3":{"security":true,"name":{"default":"Flask 3.1.3"},"caution":{"default":"Fixes an Use of Cache Containing Sensitive Information vulnerability (CVE-2026-27205, Severity: Low)","zh_CN":"修复一个通过缓存导致的信息暴露漏洞（CVE-2026-27205，严重性：低）"},"packages-v2":{"flask":"< 3.1.3"},"type":"conventional"},"flatpak-1.17.5":{"security":true,"name":{"default":"Flatpak 1.17.5"},"caution":{"default":"Fixes 4 security vulnerabilities (including 1 of Critical and 1 of High severity)","zh_CN":"修复 4 个安全漏洞（含 1 个严重漏洞和 1 个高危漏洞）"},"packages-v2":{"flatpak":"< 1.17.5"},"type":"conventional"},"flatpak-builder-1.4.8":{"security":true,"name":{"default":"flatpak-builder 1.4.8"},"caution":{"default":"Fixes a Path Traversal vulnerability (CVE-2026-39977, Severity: Medium)","zh_CN":"修复一个路径穿越漏洞（漏洞编号 CVE-2026-39977，严重性：中）"},"packages-v2":{"flatpak-builder":"< 1.4.8"},"type":"conventional"},"fluidsynth-2.5.3":{"security":true,"must_match_all":false,"name":{"default":"FluidSynth 2.5.3"},"caution":{"default":"Fixes a heap-based use-after-free vulnerability - CVE-2025-68617 (Severity: High)","zh_CN":"修复一个基于堆的释放后使用 (use-after-free) 漏洞，漏洞编号 CVE-2025-68617（严重性：高）"},"packages-v2":{"fluidsynth":"< 2.5.3","fluidsynth+32":"< 2.5.3"},"type":"conventional"},"fractal-11.2":{"security":true,"name":{"default":"Fractal 11.2 Security Update","zh_CN":"Fractal 11.2 安全更新","zh_TW":"Fractal 11.2 安全更新"},"caution":{"default":"Fixes an encrypted event spoofing vulnerability - CVE-2025-48937","zh_CN":"修复一处加密事件伪造漏洞 - CVE-2025-48937（严重性：高）","zh_TW":"修復一處加密事件偽造漏洞 - CVE-2025-48937（嚴重性：高）"},"packages":{"fractal":"11.2"},"type":"conventional"},"freerdp-3.23.0":{"security":true,"name":{"default":"FreeRDP 3.23.0"},"caution":{"default":"Fixes 44 security vulnerabilities disclosed by FreeRDP Security Team since January 24, 2026 (2 of high severity)","zh_CN":"修复 FreeRDP 安全团队自 2026 年 1 月 24 日以来披露的 44 个安全漏洞（含 2 个高危漏洞）"},"packages-v2":{"freerdp":"< 2:3.23.0"},"type":"conventional"},"freetds-1.5.14":{"security":true,"must_match_all":false,"name":{"default":"FreeTDS 1.5.14"},"caution":{"default":"Fixes a buffer overflow vulnerability - CVE-2019-13508 (Severity: Critical)","zh_CN":"修复一个缓冲区溢出漏洞，漏洞编号 CVE-2019-13508（严重性：高）"},"packages-v2":{"freetds":"< 1.5.14"},"type":"conventional"},"freetype-2.14.2":{"security":true,"must_match_all":false,"name":{"default":"FreeType 2.14.2"},"caution":{"default":"Fixes an integer overflow vulnerability (CVE-2026-23865, Severity: Medium)","zh_CN":"修复了一个整型溢出漏洞（CVE-2026-23865，严重性：中等）"},"packages-v2":{"freetype":"< 2.14.2","freetype+32":"< 2.14.2"},"type":"conventional"},"gdk-pixbuf-2.44.4":{"security":true,"name":{"default":"gdk-pixbuf 2.44.4"},"caution":{"default":"Fixes a heap-based buffer overflow vulnerability - CVE-2025-7345 (Severity: High)","zh_CN":"修复一处堆缓冲区溢出漏洞 CVE-2025-7345（严重性：高）"},"packages-v2":{"gdk-pixbuf":"< 2.44.4"},"type":"conventional"},"git-2.50.1":{"security":true,"must_match_all":false,"name":{"default":"Git 2.50.1","zh_CN":"Git 2.50.1"},"caution":{"default":"Fixes 5 high severity vulnerabilities including 2 remote code execution vulnerabilities - CVE-2025-48385 and CVE-2025-48386","zh_CN":"修复五处高危漏洞，包含两处远程代码执行漏洞 (CVE-2025-48385, CVE-2025-48386)"},"packages":{"git":"2.50.1","gitk":"2.50.1","git-gui":"2.50.1"},"type":"conventional"},"git-lfs-3.6.1":{"security":true,"name":{"default":"Git LFS 3.6.1 Security Update","zh_CN":"Git LFS 3.6.1 安全更新"},"caution":{"default":"Fixes a credential leak vulnerability - CVE-2024-53263 (Severity: High)","zh_CN":"修复一处身份泄漏漏洞，漏洞编号 CVE-2024-53263（严重性：高）"},"packages":{"git-lfs":"3.6.1"},"type":"conventional"},"gitea-1.25.4":{"security":true,"name":{"default":"gitea 1.25.4"},"caution":{"default":"Fixes 2 authentication vulnerabilities - CVE-2025-68938, CVE-2025-69413  (Severity: Medium)","zh_CN":"修复 2 处鉴权漏洞，漏洞编号 CVE-2025-68938 和 CVE-2025-69413（严重性：中）"},"packages-v2":{"gitea":"< 1.25.4"},"type":"conventional"},"glib-2.86.3":{"security":true,"name":{"default":"GLib 2.86.3"},"caution":{"default":"Fixes a heap-based buffer overflow in the URI string escaping, which may cause remote code execution or a denial of service (Severity: High)","zh_CN":"修复 URI 字符串转义时的一处堆缓冲区溢出漏洞，该漏洞可能导致远程代码执行或拒绝服务（严重性：高）"},"packages-v2":{"glib":"< 2.86.3"},"type":"conventional"},"glibc-cve-2025-8058":{"security":true,"must_match_all":false,"name":{"default":"Security Patch for GNU C Library 2.40","zh_CN":"适用于 GNU C 函数库 2.40 的安全补丁","zh_TW":"適用於 GNU C 函式庫 2.40 的安全修補"},"caution":{"default":"Fixes a double free vulnerability - CVE-2025-8058 (Severity: Medium)","zh_CN":"修复一处重复释放漏洞，漏洞编号 CVE-2025-8058（严重性：中）","zh_TW":"修復一處重複釋放漏洞，漏洞編號 CVE-2025-8058（嚴重性：中）"},"packages":{"glibc":"1:2.40-4","glibc+32":"2.40-2"},"type":"conventional"},"gnupg-2.5.16":{"security":true,"name":{"default":"GnuPG 2.5.16"},"caution":{"default":"Fixes a logic vulnerability (CVE-2025-68972, Severity: Medium) and a out-of-bounds write vulnerability (CVE-2025-68973, Severity: High)","zh_CN":"修复了一处逻辑漏洞（CVE-2025-68972，严重性：中等）和一处越界写入漏洞（CVE-2025-68973，严重性：高）"},"packages-v2":{"gnupg":"< 2.5.16"},"type":"conventional"},"gnupg-2.5.17":{"security":true,"name":{"default":"GnuPG 2.5.17"},"caution":{"default":"Fixes a remote code execution vulnerability - CVE-2026-24881, CVE-2026-24882, and CVE-2026-24883 (Severity: Critical)","zh_CN":"修复了一处远程代码执行漏洞，漏洞编号 CVE-2026-24881、CVE-2026-24882 及 CVE-2026-24883（严重性：严重）"},"packages-v2":{"gnupg":"< 2.5.17"},"type":"conventional"},"gnutls-3.8.10":{"security":true,"name":{"default":"GnuTLS 3.8.10"},"caution":{"default":"Fixes 3 security vulnerabilities disclosed in GnuTLS Security Advisories on July 8, 2025 (Severity: Moderate)","zh_CN":"修复 GnuTLS 在 2025 年 7 月 8 日的安全公告中披露的 3 个安全漏洞（严重性：中等）"},"packages-v2":{"gnutls":"< 3.8.10"},"type":"conventional"},"gnutls-3.8.12":{"security":true,"must_match_all":false,"name":{"default":"GnuTLS 3.8.12"},"caution":{"default":"Fixes a denial of service vulnerability (CVE-2025-14831, Severity: Medium) and a null pointer dereference vulnerability (CVE-2026-1584, Severity: High)","zh_CN":"修复了一个拒绝服务漏洞（CVE-2025-14831，严重性：中等）和一个空指针解引用漏洞（CVE-2026-1584，严重性：高）"},"packages-v2":{"gnutls":"< 3.8.12","gnutls+32":"< 3.8.12"},"type":"conventional"},"gnutls-3.8.13":{"security":true,"must_match_all":false,"name":{"default":"gnutls 3.8.13"},"caution":{"default":"Fixes 12 security vulnerabilities (including 5 of high severity and 5 of medium severity)","zh_CN":"修复 12 处安全漏洞（含 5 个高危漏洞及 5 个中危漏洞）"},"packages-v2":{"gnutls":"< 3.8.13","gnutls+32":"< 3.8.13"},"type":"conventional"},"go-1.25.3":{"security":true,"name":{"default":"Go 1.25.3"},"caution":{"default":"Fixes 10 security vulnerabilities (including 1 of high severity and 9 of medium severity)","zh_CN":"修复十处安全漏洞（含 1 个高危漏洞, 9 个中危漏洞）"},"packages-v2":{"go":"< 1.25.3+tools0.34.0+net0.41.0"},"type":"conventional"},"go-1.25":{"security":true,"name":{"default":"Go 1.25.1 Security Update","zh_CN":"Go 1.25.1 安全更新"},"caution":{"default":"Fixes 8 security vulnerabilities (including 2 of critical severity and 6 of high severity)","zh_CN":"修复八处安全漏洞（含 2 个严重漏洞，6 个高危漏洞）"},"packages":{"go":"1.25.1+tools0.34.0+net0.41.0"},"type":"conventional"},"go-1.26.0":{"security":true,"name":{"default":"Go 1.26.0"},"caution":{"default":"Fixes 10 security vulnerabilities (including 5 of high severity and 5 of medium severity)","zh_CN":"修复十个安全漏洞（含 5 个高危漏洞, 5 个中危漏洞）"},"packages-v2":{"go":"< 1.26.0+tools0.42.0"},"type":"conventional"},"go-1.26.1":{"security":true,"name":{"default":"Go 1.26.1"},"caution":{"default":"5 security vulnerabilities of medium severity","zh_CN":"修复 5 个中危安全漏洞"},"packages-v2":{"go":"< 1.26.1+tools0.42.0"},"type":"conventional"},"go-1.26.2":{"security":true,"name":{"default":"Go 1.26.2"},"caution":{"default":"Fixes 10 security vulnerabilities (including 3 of high severity and 7 of medium severity)","zh_CN":"修复 10 个安全漏洞（含 3 个高危漏洞, 7 个中危漏洞）"},"packages-v2":{"go":"< 1.26.2+tools0.42.0"},"type":"conventional"},"go-1.26.3":{"security":true,"name":{"default":"Go 1.26.3"},"caution":{"default":"Fixes 10 security vulnerabilities (including 6 of high severity and 4 of medium severity)","zh_CN":"修复 10 个安全漏洞（含 6 个高危漏洞, 4 个中危漏洞）"},"packages-v2":{"go":"< 1.26.3+tools0.42.0"},"type":"conventional"},"gpsd-3.27.5":{"security":true,"name":{"default":"gpsd 3.27.5"},"caution":{"default":"Fixes an out-of-bounds write vulnerability - CVE-2025-67268 (Severity: Critical); Fixes an integer overflow vulnerability - CVE-2025-67269 (Severity: High)","zh_CN":"修复一处越界写入漏洞，漏洞编号 CVE-2025-67268（严重性：严重）；修复一处整数溢出漏洞，漏洞编号 CVE-2025-67269（严重性：高）"},"packages-v2":{"gpsd":"< 3.27.5"},"type":"conventional"},"halloy-2026.5":{"security":true,"name":{"default":"Halloy 2026.5"},"caution":{"default":"Fixes a path traversal vulnerabilities (CVE-2026-32733, Severity: High) and a credentials leak vulnerability (CVE-2026-32810, Severity: Medium)","zh_CN":"修复一个路径穿越漏洞（漏洞编号 CVE-2026-32733，严重性：高）和一个凭据泄漏漏洞（漏洞编号 CVE-2026-32810，严重性：中等）"},"packages-v2":{"halloy":"< 2026.5"},"type":"conventional"},"haveged-1.9.21":{"security":true,"name":{"default":"haveged 1.9.21"},"caution":{"default":"Fixes a Local Privilege Escalation vulnerability (CVE-2026-41054, Severity: Moderate)","zh_CN":"修复一个本地提权漏洞（CVE-2026-41054，严重性：中）"},"packages-v2":{"haveged":"< 1.9.21"},"type":"conventional"},"helm-4.1.3":{"security":true,"name":{"default":"Helm 4.1.3"},"caution":{"default":"Fixes 5 security vulnerabilities (including 4 of high severity and 1 of medium severity)","zh_CN":"修复 5 处安全漏洞（含 4 个高危漏洞和 1 个中危漏洞）"},"packages-v2":{"helm":"< 4.1.3"},"type":"conventional"},"helm-4.1.4":{"security":true,"name":{"default":"Helm 4.1.4"},"caution":{"default":"Fixes a path traversal vulnerability (CVE-2026-35204, Severity: High), a plugin verification bypass vulnerability (CVE-2026-35205, Severity: High), and a file override vulnerability (CVE-2026-35206, Severity: Medium)","zh_CN":"修复了一个路径穿越漏洞（CVE-2026-35204，严重性：高）、一个插件验证绕过漏洞（CVE-2026-35205，严重性：高），以及一个文件覆盖漏洞（CVE-2026-35206，严重性：中等）"},"packages-v2":{"helm":"< 4.1.4"},"type":"conventional"},"htslib-1.23.1":{"security":true,"name":{"default":"HTSlib 1.23.1"},"caution":{"default":"Fixes a Heap Buffer Overflow vulnerability - CVE-2026-31962 (severity: High)","zh_CN":"修复一个堆缓冲溢出漏洞，漏洞编号 CVE-2026-31962（严重性：高）"},"packages-v2":{"htslib":"< 1.23.1"},"type":"conventional"},"httpd-2.4.66":{"security":true,"name":{"default":"Apache HTTP Server (httpd) 2.4.66","zh_CN":"Apache HTTP 服务器 (httpd) 2.4.66"},"caution":{"default":"Fixes 13 security vulnerabilities since Apache HTTP Server 2.4.63 (1 of critical severity, 10 of high severity)","zh_CN":"修复 Apache HTTP Sever 2.4.63 起披露的 13 个安全漏洞（含 1 个严重漏洞和 10 个高危漏洞）"},"packages-v2":{"httpd":"< 2.4.66"},"type":"conventional"},"httpd-2.4.67-2":{"security":true,"name":{"default":"Apache HTTP Server (httpd) 2.4.67-2","zh_CN":"Apache HTTP 服务器 (httpd) 2.4.67-2"},"caution":{"default":"Fixes a memory-amplification DoS vulnerability (\"HTTP/2 Bomb\") - CVE-2026-49975","zh_CN":"修复 1 个内存放大型拒绝服务 (DoS) 漏洞 (\"HTTP/2 Bomb\")，漏洞编号 CVE-2026-49975"},"packages-v2":{"httpd":"< 2.4.67-2"},"type":"conventional"},"httpd-2.4.67":{"security":true,"name":{"default":"Apache HTTP Server (httpd) 2.4.67","zh_CN":"Apache HTTP 服务器 (httpd) 2.4.67"},"caution":{"default":"Fixes 11 security vulnerabilities (4 of high severity, 5 of medium severity)","zh_CN":"修复 11 个安全漏洞（含 4 个高危漏洞和 5 个中危漏洞）"},"packages-v2":{"httpd":"< 2.4.67"},"type":"conventional"},"hugo-0.160.1":{"security":true,"name":{"default":"Hugo 0.160.1"},"caution":{"default":"Fixes a text escape vulnerability (CVE-2026-35166, Severity: Medium)","zh_CN":"修复一个文本转义漏洞（CVE-2026-35166，严重性：中）"},"packages-v2":{"hugo":"< 0.160.1"},"type":"conventional"},"imagemagick-6.9.13-37":{"security":true,"name":{"default":"ImageMagick 6.9.13-37"},"caution":{"default":"Fixes 10 security vulnerabilities since ImageMagick 6.9.13-16 (4 of high severity)","zh_CN":"修复自 ImageMagick 6.9.13-16 以来的 10 个安全漏洞（含 4 个高危漏洞）"},"packages-v2":{"imagemagick":"< 6.9.13+37"},"type":"conventional"},"incus-6.21.0":{"security":true,"name":{"default":"incus 6.21.0"},"caution":{"default":"Fixed two vulnerabilities related to arbitrary command execution and container escape - CVE-2026-23953, CVE-2026-23954 (Severity: High)","zh_CN":"修复两处任意命令执行和容器逃逸相关的漏洞，漏洞编号 CVE-2026-23953, CVE-2026-23954（严重性：高）"},"packages-v2":{"incus":">= 6.1.0 && <= 6.20.0 && <= 6.0.5"},"type":"conventional"},"incus-6.23.0":{"security":true,"name":{"default":"Incus 6.23.0"},"caution":{"default":"Fixes 6 security vulnerabilities (including 3 of critical severity and 1 of high severity)","zh_CN":"修复 6 个安全漏洞（含 3 个严重漏洞及 1 个高危漏洞）"},"packages-v2":{"incus":"< 6.23.0"},"type":"conventional"},"inetutils-2.7-cve-2026-28372":{"security":true,"name":{"default":"GNU InetUtils 2.7-1"},"caution":{"default":"Fixes a Remote Authentication Bypass vulnerability in telnetd - CVE-2026-28372 (Severity: High)","zh_CN":"修复一处远程鉴权绕过 (Remote Authentication Bypass) 漏洞，漏洞编号 CVE-2026-28372（严重性：高）"},"packages-v2":{"inetutils":"< 2.7-1"},"type":"conventional"},"inetutils-2.7":{"security":true,"name":{"default":"GNU InetUtils 2.7"},"caution":{"default":"Fixes a Remote Authentication Bypass vulnerability in telnetd (Severity: Critical)","zh_CN":"修复一处远程鉴权绕过 (Remote Authentication Bypass) 漏洞（严重性：严重）"},"packages-v2":{"inetutils":"< 2.7"},"type":"conventional"},"intel-ucode-20250512":{"security":true,"name":{"default":"Intel Processor Microcode Package for Linux, version 20250512","zh_CN":"适用于 Linux 的 Intel 处理器微码包，版本 20250512"},"caution":{"default":"Fixes self-training Spectre-v2 (Exposure of Sensitive Information) vulnerability codenamed \"Training Solo\"","zh_CN":"修复代号为 \"Training Solo\" 的自训练 Spectre-v2（敏感信息泄漏）漏洞"},"packages":{"intel-ucode":"20250512"},"type":"conventional"},"intel-ucode-20250812":{"security":true,"name":{"default":"Intel Processor Microcode Package for Linux, version 20250812","zh_CN":"适用于 Linux 的 Intel 处理器微码包，版本 20250812"},"caution":{"default":"Fixes multiple Escalation of Privilege and Denial of Service vulnerabilities (5 of high severity)","zh_CN":"修复多个特权提升及拒绝服务漏洞（含 5 个高危漏洞）"},"packages":{"intel-ucode":"20250812"},"type":"conventional"},"kdiskmark-3.2.0":{"security":true,"name":{"default":"kdiskmark 3.2.0"},"caution":{"default":"Fixes a D-Bus authentication vulnerability - CVE-2022-40673 (Severity: High)","zh_CN":"修复一处 D-Bus 鉴权漏洞，漏洞编号 CVE-2022-40673（严重性：高）"},"packages-v2":{"kdiskmark":"< 3.2.0"},"type":"conventional"},"krita-5.2.13":{"security":true,"name":{"default":"Krita 5.2.13"},"caution":{"default":"Fixes a Heap-based Buffer Overflow vulnerability - CVE-2025-59820 (Severity: Medium)","zh_CN":"修复一处堆缓冲区溢出 (Heap-based Buffer Overflow) 漏洞，漏洞编号 CVE-2025-59820（严重性：中）"},"packages-v2":{"krita":"< 5.2.13"},"type":"conventional"},"lcms2-2.19":{"security":true,"must_match_all":false,"name":{"default":"Little CMS 2.19"},"caution":{"default":"Fixes an integer overflow vulnerability (CVE-2026-41254, Severity: High)","zh_CN":"修复了一个整数溢出漏洞（CVE-2026-41254，严重性：高）"},"packages-v2":{"lcms2":"< 2.19","lcms2+32":"< 2.19"},"type":"conventional"},"libarchive-3.7.8":{"security":true,"name":{"default":"libarchive 3.7.8"},"caution":{"default":"Fixes multiple security vulnerabilities (3 of medium severity)","zh_CN":"修复三个安全漏洞（含 3 个中危漏洞）"},"packages":{"libarchive":"1:3.7.8"},"type":"conventional"},"libblockdev-3.3.1":{"security":true,"name":{"default":"libblockdev 3.3.1"},"caution":{"default":"Fixes a local privilege escalation vulnerability - CVE-2025-6019 (Severity: Critical)","zh_CN":"修复一处编号为 CVE-2025-6019 本地提权漏洞（严重性：严重）"},"packages":{"libblockdev":"3.3.1"},"type":"conventional"},"libcaca-0.99.beta20":{"security":true,"must_match_all":false,"name":{"default":"libcaca 0.99.beta20"},"caution":{"default":"Fixes 2 high severity and 1 medium severity security vulnerabilities","zh_CN":"修复 2 个高危和 1 个中危安全漏洞"},"packages-v2":{"libcaca":"< 0.99.beta20","libcaca+32":"< 0.99.beta20"},"type":"conventional"},"libcap-2.78":{"security":true,"must_match_all":false,"name":{"default":"libcap 2.78"},"caution":{"default":"Fixes a TOCTOU (Time-Of-Check to Time-of-Use) race condition vulnerability - CVE-2026-4878 (severity: High)","zh_CN":"修复一处 TOCTOU（检查到使用时间）竞态条件漏洞，漏洞编号 CVE-2026-4878（严重性：高）"},"packages-v2":{"libcap":"< 2.78","libcap+32":"< 2.78"},"type":"conventional"},"libde265-1.0.16":{"security":true,"name":{"default":"libde265 1.0.16"},"caution":{"default":"Fixes 2 heap buffer overflow vulnerabilities - CVE-2024-38949, CVE-2024-38950  (Severity: Medium)","zh_CN":"修复 2 处堆缓冲区溢出漏洞，漏洞编号 CVE-2024-38949 和 CVE-2024-38950（严重性：中）"},"packages-v2":{"libde265":"< 1.0.16"},"type":"conventional"},"libde265-1.0.18":{"security":true,"name":{"default":"libde265 1.0.18"},"caution":{"default":"Fixes a buffer overflow vulnerability (CVE-2025-61147, Severity: Medium), a NULL pointer dereference vulnerability (CVE-2026-33164, Severity: High), and an out-of-bounds write vulnerability (CVE-2026-33165, Severity: Medium)","zh_CN":"修复一个缓冲区溢出漏洞（CVE-2025-61147，严重性：中）、一个空指针解引用漏洞（CVE-2026-33164，严重性：高）和一个越界写入漏洞（CVE-2026-33165，严重性：中）"},"packages-v2":{"libde265":"< 1.0.18"},"type":"conventional"},"libeconf-0.8.3":{"security":true,"name":{"default":"libeconf 0.8.3"},"caution":{"default":"Fixes 2 buffer overflow vulnerabilities - CVE-2023-22652, CVE-2023-32181 (Severity: Medium)","zh_CN":"修复 2 个缓冲区溢出漏洞，漏洞编号 CVE-2023-22652, CVE-2023-32181（严重性：中）"},"packages-v2":{"libeconf":"< 0.8.3"},"type":"conventional"},"libexif-0.6.26":{"security":true,"must_match_all":false,"name":{"default":"libexif 0.6.26"},"caution":{"default":"Fixes 2 integer underflow vulnerability (CVE-2026-32775, CVE-2026-40386, Severity: High) and an integer overflow vulnerability (CVE-2026-40385, Severity: High)","zh_CN":"修复两个整数下溢漏洞（CVE-2026-32775、CVE-2026-40386，严重性：高）和一个整数溢出漏洞（CVE-2026-40385，严重性：高）"},"packages-v2":{"libexif":"< 0.6.26","libexif+32":"< 0.6.26"},"type":"conventional"},"libgcrypt-1.12.2":{"security":true,"must_match_all":false,"name":{"default":"Libgcrypt 1.12.2"},"caution":{"default":"Fixes an Out-of-bounds Write vulnerability (CVE-2026-41989, Severity: Medium)","zh_CN":"修复一个越界写入漏洞（CVE-2026-41989，严重性：中）"},"packages-v2":{"libgcrypt":"< 1.12.2","libgcrypt+32":"< 1.12.2"},"type":"conventional"},"libgig-4.5.2":{"security":true,"name":{"default":"libgig 4.5.2"},"caution":{"default":"Fixes a heap buffer overflow vulnerability - CVE-2021-32294 (Severity: High)","zh_CN":"修复一个堆缓冲区溢出漏洞，漏洞编号 CVE-2021-32294（严重性：高）"},"packages-v2":{"libgig":"< 4.5.2"},"type":"conventional"},"libgxps-0.3.2":{"security":true,"name":{"default":"libgxps 0.3.2"},"caution":{"default":"Fixes a null pointer vulnerability (Severity: High), a heap buffer overflow vulnerability (Severity: Medium) and a stack buffer overflow vulnerability (Severity: Medium)","zh_CN":"修复一个空指针漏洞（严重性：高）、一个堆缓冲区溢出漏洞（严重性：中）和一个栈缓冲区溢出漏洞（严重性：中）"},"packages-v2":{"libgxps":"< 0.3.2"},"type":"conventional"},"libheif-1.21.2":{"security":true,"name":{"default":"libheif 1.21.2"},"caution":{"default":"Fixes a heap buffer over vulnerability - CVE-2025-68431 (Severity: High)","zh_CN":"修复一个堆缓冲区溢出漏洞，漏洞编号 CVE-2025-68431（严重性：高）"},"packages-v2":{"libheif":"< 1.21.2"},"type":"conventional"},"libheif-1.22.0":{"security":true,"name":{"default":"libheif 1.22.0"},"caution":{"default":"Fixes 2 Out-of-Bounds Read vulnerabilities (CVE-2026-32738, CVE-2026-32740, Severity: Medium, High) and a Loop with Unreachable Exit Condition vulnerability (CVE-2026-32739, Severity: Medium)","zh_CN":"修复两个越界读取漏洞（漏洞编号 CVE-2026-32738、CVE-2026-32740，严重性：中、高）和一个无限循环漏洞（漏洞编号 CVE-2026-32739，严重性：中）"},"packages-v2":{"libheif":"< 1.22.0"},"type":"conventional"},"libinput-1.31.3":{"security":true,"name":{"default":"libinput 1.31.3"},"caution":{"default":"Fixes a Improper Neutralization of CRLF Sequences (CRLF Injection) vulnerability (CVE-2026-50292, severity: High)","zh_CN":"修复一个 CRLF 序列处理不当（CRLF 注入）漏洞（漏洞编号 CVE-2026-50292，严重性：高）"},"packages-v2":{"libinput":"< 1.31.3"},"type":"conventional"},"libjxl-0.11.2":{"security":true,"name":{"default":"libjxl 0.11.2"},"caution":{"default":"Fixes a Heap-based Buffer Overflow vulnerability (CVE-2025-70103, Severity: High), an use of uninitialized resource vulnerability (CVE-2025-12474, Severity: Medium) and an allocation of resources without limits or throttling vulnerability (CVE-2026-1837, Severity: High)","zh_CN":"修复一个基于堆的缓冲区溢出漏洞（CVE-2025-70103，严重性：高）、一个使用未初始化资源的漏洞（CVE-2025-12474，严重性：中）和一个无限资源分配漏洞（CVE-2026-1837，严重性：高）"},"packages-v2":{"libjxl":"< 0.11.2"},"type":"conventional"},"liblouis-3.36.0":{"security":true,"name":{"default":"liblouis 3.36.0"},"caution":{"default":"Fixes a buffer overflow vulnerability - CVE-2022-26981 (Severity: High)","zh_CN":"修复一个缓冲区溢出漏洞，漏洞编号 CVE-2022-26981（严重性：高）"},"packages-v2":{"liblouis":"< 3.36.0"},"type":"conventional"},"libmicrohttpd-1.0.2":{"security":true,"name":{"default":"libmicrohttpd 1.0.2"},"caution":{"default":"Fixes 2 null pointer vulnerabilities - CVE-2025-59777, CVE-2025-62689 (Severity: High)","zh_CN":"修复 2 个空指针漏洞，漏洞编号 CVE-2025-59777 和 CVE-2025-62689（严重性：高）"},"packages-v2":{"libmicrohttpd":"< 1.0.2"},"type":"conventional"},"libp11-0.4.16":{"security":true,"name":{"default":"libp11 0.4.16"},"caution":{"default":"Fixes a buffer overflow vulnerabilities - CVE-2010-4523 (Severity: High)","zh_CN":"修复一个缓冲区溢出漏洞，漏洞编号 CVE-2010-4523（严重性：高）"},"packages-v2":{"libp11":"< 0.4.16"},"type":"conventional"},"libpcap-1.10.6":{"security":true,"name":{"default":"libpcap 1.10.6"},"caution":{"default":"Fixes a double free vulnerability (CVE-2023-7256, Severity: Medium) and a null pointer dereference vulnerability (CVE-2024-8006, Severity: Medium)","zh_CN":"修复一个双重释放漏洞（CVE-2023-7256，严重性：中）和一个内存泄漏漏洞（CVE-2024-8006，严重性：中）"},"packages-v2":{"libpcap":"< 1.10.6"},"type":"conventional"},"libpng-1.6.55":{"security":true,"must_match_all":false,"name":{"default":"libpng 1.6.55"},"caution":{"default":"Fixes 9 security vulnerabilities (including 5 of high severity and 4 of medium severity)","zh_CN":"修复 9 处安全漏洞（含 5 个高危漏洞及 4 个中危漏洞）"},"packages-v2":{"libpng":"< 1.6.55","libpng+32":"< 1.6.55"},"type":"conventional"},"libpng-1.6.56":{"security":true,"must_match_all":false,"name":{"default":"libpng 1.6.56"},"caution":{"default":"Fixes a heap-based buffer overflow vulnerability (CVE-2026-3713, Severity: Medium)","zh_CN":"修复一个基于堆的缓冲区溢出漏洞（CVE-2026-3713，严重性：中）"},"packages-v2":{"libpng":"< 1.6.56","libpng+32":"< 1.6.56"},"type":"conventional"},"libpng-1.6.57":{"security":true,"must_match_all":false,"name":{"default":"libpng 1.6.57"},"caution":{"default":"Fixes a Use-After-Free vulnerability - CVE-2026-34757 (Severity: Medium)","zh_CN":"修复一个释放后使用 (Use-After-Free) 漏洞（CVE-2026-34757，严重性：中）"},"packages-v2":{"libpng":"< 1.6.57","libpng+32":"< 2:1.6.57"},"type":"conventional"},"libraw-0.22.1":{"security":true,"name":{"default":"LibRaw 0.22.1"},"caution":{"default":"Fixes 10 security vulnerabilities (including 4 of critical severity, 5 of high severity and 4 of medium severity)","zh_CN":"修复 10 处安全漏洞（含 4 个严重漏洞、2 个高危漏洞及 4 个中危漏洞）"},"packages-v2":{"libraw":"< 0.22.1"},"type":"conventional"},"libreoffice-26.2.4.1":{"security":true,"name":{"default":"LibreOffice 26.2.4.1"},"caution":{"default":"Fixes an Out-of-Bounds Write vulnerability (CVE-2026-4430, Severity: High)","zh_CN":"修复一个越界写入漏洞（CVE-2026-4430，严重性：高）"},"packages-v2":{"LibreOffice":"< 26.2.4.1"},"type":"conventional"},"libsixel-1.8.7+r1":{"security":true,"name":{"default":"libsixel 1.8.7+r1"},"caution":{"default":"Fixes 7 security vulnerabilities (including 5 of high severity)","zh_CN":"修复 7 处安全漏洞（含 5 个高危漏洞）"},"packages-v2":{"libsixel":"< 1.8.7+r1"},"type":"conventional"},"libsndfile-1.2.2":{"security":true,"must_match_all":false,"name":{"default":"libsndfile 1.2.2"},"caution":{"default":"Fixes a out-of-bounds read vulnerability (CVE-2024-50612, Severity: Medium), a reachable assertion vulnerability (CVE-2024-50613, Severity: Medium) and a buffer overflow vulnerability (CVE-2025-52194, Severity: Unknown)","zh_CN":"修复一个越界读取 (out-of-bounds read) 漏洞（CVE-2024-50612，严重性：中）、一个可达断言漏洞（CVE-2024-50613，严重性：中）和一个缓冲区溢出漏洞（CVE-2025-52194，严重性：未知）"},"packages-v2":{"libsndfile":"< 1.2.2","libsndfile+32":"< 1.2.2"},"type":"conventional"},"libsoup-3.6.6":{"security":true,"name":{"default":"libsoup 3.6.6"},"caution":{"default":"Fixes 13 security vulnerabilities (including 3 of high severity)","zh_CN":"修复 13 个安全漏洞（含 3 个高危漏洞）"},"packages-v2":{"libsoup-3":"< 3.6.6"},"type":"conventional"},"libspiro-20250903":{"security":true,"name":{"default":"libspiro 20240903"},"caution":{"default":"Fixes a buffer overflow vulnerabilities - CVE-2019-19847 (Severity: High)","zh_CN":"修复一个缓冲区溢出漏洞，漏洞编号 CVE-2019-19847（严重性：高）"},"packages-v2":{"libspiro":"< 20240903"},"type":"conventional"},"libssh-0.12.0":{"security":true,"must_match_all":false,"name":{"default":"libssh 0.12.0"},"caution":{"default":"Fixes 9 security vulnerabilities since 0.8.9 version","zh_CN":"修复自 0.8.9 版本以来的 9 个安全漏洞"},"packages-v2":{"libssh":"< 0.12.0","libssh+32":"< 0.12.0"},"type":"conventional"},"libtasn1-4.21.0":{"security":true,"must_match_all":false,"name":{"default":"libtasn1 4.21.0"},"caution":{"default":"Fixes a stack-based buffer overflow vulnerability - CVE-2025-13151 (Severity: High)","zh_CN":"修复一个基于栈的缓冲区溢出漏洞，漏洞编号 CVE-2025-13151（严重性：高）"},"packages-v2":{"libtasn1":"4.21.0","libtasn1+32":"4.21.0"},"type":"conventional"},"libtiff-4.7.1":{"security":true,"name":{"default":"LibTIFF 4.7.1"},"caution":{"default":"Fixes 29 security vulnerabilities in LibTIFF since 2023 (8 of high severity)","zh_CN":"修复自 2023 年以来在 LibTIFF 中披露的 29 处安全漏洞（含 8 个高危漏洞）"},"packages-v2":{"libtiff":"< 4.7.1"},"type":"conventional"},"libtommath-1.3.0":{"security":true,"name":{"default":"libtommath 1.3.0"},"caution":{"default":"Fixes a integer overflow vulnerabilities - CVE-2023-36328 (Severity: Critical)","zh_CN":"修复一个整数溢出漏洞，漏洞编号 CVE-2023-36328（严重性：严重）"},"packages-v2":{"libtommath":"< 1.3.0"},"type":"conventional"},"libtpms-0.10.1":{"security":true,"name":{"default":"libtpms 0.10.1"},"caution":{"default":"Fixes a Out-of-Bounds Read vulnerability - CVE-2025-49133 (Severity: Medium)","zh_CN":"修复一处越界读取 (Out-of-Bounds Read) 漏洞，漏洞编号 CVE-2025-49133（严重性：中）"},"packages-v2":{"libtpms":"< 0.10.1"},"type":"conventional"},"libtpms-0.10.2":{"security":true,"name":{"default":"libtpms 0.10.2"},"caution":{"default":"Fixes an Use of a Broken or Risky Cryptographic Algorithm vulnerability (CVE-2026-21444, Severity: Medium)","zh_CN":"修复一个使用了已损坏或存在风险的加密算法导致的漏洞（CVE-2026-21444，严重性：中）"},"packages-v2":{"libtpms":"< 0.10.2"},"type":"conventional"},"libvncserver-0.9.15":{"security":true,"name":{"default":"LibVNCServer 0.9.15"},"caution":{"default":"Fixes a memory leak vulnerability (CVE-2020-29260, Severity: High), a heap out-of-bounds read vulnerability (CVE-2026-32853, Severity: High), and a NULL pointer dereference vulnerability (CVE-2026-32854, Severity: High)","zh_CN":"修复了一个内存泄漏漏洞（CVE-2020-29260，严重性：高）、一个堆越界读取漏洞（CVE-2026-32853，严重性：高），以及一个空指针解引用漏洞（CVE-2026-32854，严重性：高）"},"packages-v2":{"libvncserver":"< 0.9.15"},"type":"conventional"},"libwebp-1.6.0":{"security":true,"must_match_all":false,"name":{"default":"WebP Codec (libwebp) 1.6.0"},"caution":{"default":"Fixes a Out-of-Bounds write vulnerability (CVE-2023-4863, Severity: High)","zh_CN":"修复一个越界写入漏洞（CVE-2023-4863，严重性：高）"},"packages-v2":{"libwebp":"< 1.6.0","libwebp+32":"< 1.6.0"},"type":"conventional"},"libxml2-2.15.1":{"security":true,"must_match_all":false,"name":{"default":"libxml2 2.15.1"},"caution":{"default":"Fixes 10 security vulnerabilities (1 of critical severity and 8 of high severity)","zh_CN":"修复 10 个安全漏洞（含 1 个严重漏洞和 8 个高危漏洞）"},"packages-v2":{"libxml2":"< 2.15.1","libxml2+32":"< 2.15.1"},"type":"conventional"},"libxslt-1.1.43":{"security":true,"must_match_all":false,"name":{"default":"libxslt 1.1.43"},"caution":{"default":"Fixes 2 use-after-free vulnerabilities - CVE-2025-24855, CVE-2024-55549 (Severity: High)","zh_CN":"修复 2 个释放后使用 (use-after-free) 漏洞，漏洞编号 CVE-2025-24855, CVE-2024-55549（严重性：高）"},"packages-v2":{"libxslt":"< 1.1.43","libxslt+32":"< 1.1.43"},"type":"conventional"},"linux-firmware-20250425":{"security":false,"must_match_all":false,"name":{"default":"Linux Firmware Update (April 25, 2025)","zh_CN":"Linux 固件更新（2025 年 4 月 25 日）"},"caution":{"default":"With enhancements for various audio, graphics, networking, and SoC devices and platforms, and a fix for unusable Wi-Fi on REDMI Book Pro 14 2025","zh_CN":"包含对数款音频、图形和网络设备，以及 SoC 平台的支持增强，并修复 REDMI Book Pro 14 2025 上无线网络不可用的问题"},"packages":{"firmware-nonfree":"20250425+debian20241210+1~bpo12+1"},"type":"conventional"},"linux-firmware-20260221":{"security":false,"must_match_all":false,"name":{"default":"Device Driver Firmware and Microcode Update (February 21, 2026)","zh_CN":"设备驱动固件及微码更新（2026 年 2 月 21 日）"},"caution":{"default":"With enhancements for various audio, graphics, networking, and SoC devices and platforms, notably firmware for Intel Image Processing Unit 7, enabling webcam support for Intel Panther Lake-based devices","zh_CN":"包含对数款音频、图形和网络设备，以及 SoC 平台的支持增强，新增 Intel Image Processing Unit 7 的固件，可用于启用 Intel Panther Lake 设备摄像头的支持"},"packages-v2":{"firmware-nonfree":"< 20260221+debian20260110+1"},"type":"conventional"},"linux-kernel-6.14.10":{"security":false,"name":{"default":"Linux Kernel, 6.14.10","zh_CN":"Linux 内核，版本 6.14.10"},"caution":{"default":"Fixes an issue where display brightness on Loongson 3A5000/6000-based laptops may be reset to the lowest upon wakeup from S3 suspend, also works around incorrectly configured supported link speed on PCIe bridges found on older Loongson 3C6000 series steppings, causing degraded performance or functionalities on certain peripherals","zh_CN":"修复基于龙芯 3A5000/3A6000 的笔记本从 S3 睡眠唤醒时，屏幕背光亮度可能被复位为最低的问题，并规避较老的龙芯 3C6000 系列处理器步进上 PCIe 桥未正确设置支持链路速率而导致部分设备性能和功能受限的问题"},"packages":{"linux+kernel":"3:6.14.10"},"type":"conventional"},"linux-kernel-6.14.11-2":{"security":false,"name":{"default":"Linux Kernel, 6.14.11-2","zh_CN":"Linux 内核，版本 6.14.11-2"},"caution":{"default":"Add support for the Ethernet GMAC on the Loongson 2K3000 SoC","zh_CN":"新增龙芯 2K3000 片上以太网 GMAC 设备的支持"},"packages":{"linux+kernel":"3:6.14.11-2","linux-kernel-6.4.11":"6.14.11-1"},"type":"conventional"},"linux-kernel-6.14.11":{"security":false,"name":{"default":"Linux Kernel, 6.14.11","zh_CN":"Linux 内核，版本 6.14.11"},"caution":{"default":"Fixes an issue where the display output on Intel Skylake devices may flicker off when IOMMU is enabled and where the touchpads on Loongson 3A6000-based laptops (IPASON NL38-N11 and possibly others) are non-functional, also enables Loongson-3 CPU frequency scaling for SMCv0 firmware","zh_CN":"修复 Intel Skylake 设备上启用 IOMMU 特性后显示输出时有闪黑的问题，并修复龙芯 3A6000 笔记本（如攀升 NL38-N11 及其他型号）触摸板不可用的问题，并为搭载 SMCv0 固件的龙芯 3 号设备开启了 CPU 调频功能"},"packages":{"linux+kernel":"3:6.14.11"},"type":"conventional"},"linux-kernel-6.14.4":{"security":false,"name":{"default":"Linux Kernel, 6.14.4","zh_CN":"Linux 内核，版本 6.14.4"},"caution":{"default":"Fixes S0ix suspend failure on MECHREVO Wujie 14X","zh_CN":"修复机械革命无界 14X 笔记本 S0ix 睡眠失败的问题"},"packages":{"linux-kernel-6.14.4":"6.14.4-1","linux+kernel":"3:6.14.4"},"type":"conventional"},"linux-kernel-6.14.5":{"security":false,"name":{"default":"Linux Kernel, 6.14.5","zh_CN":"Linux 内核，版本 6.14.5"},"caution":{"default":"Fixes CJK character display in virtual terminal in HiDPI displays and enables basic display support via firmware","zh_CN":"修复高分屏下虚拟终端 CJK（中文、日文及韩文）字符显示错误的问题，并开启基于固件的基础显示支持"},"packages":{"linux+kernel":"3:6.14.5"},"type":"conventional"},"linux-kernel-6.14.7":{"security":true,"name":{"default":"Linux Kernel, 6.14.7","zh_CN":"Linux 内核，版本 6.14.7"},"caution":{"default":"Fixes self-training Spectre-v2/Spectre-BHB (Exposure of Sensitive Information) vulnerability for various x86 and Arm platforms, also fixes wrong processor topology setting for Loongson 3A6000/3B6000/3C6000 series processors","zh_CN":"包含针对数个 x86 及 Arm 平台的 Spectre-v2/Spectre-BHB（敏感信息泄漏）漏洞修复，并修复龙芯 3A6000/3B6000/3C6000 系列处理器下处理器拓扑设置错误的问题"},"packages":{"linux+kernel":"3:6.14.7"},"type":"conventional"},"linux-kernel-6.14":{"security":false,"name":{"default":"Linux Kernel 6.14.0","zh_CN":"Linux 内核，版本 6.14"},"caution":{"default":"With enhanced support for new devices, notably AMD Radeon RX 9000 Series Graphics and multi-processor Loongson 3C6000 platforms; also fixes unreliable ACPI suspend (S3) on certain x86 laptops, intermittent USB connection on some Loongson motherboards, and hangs on ASUS laptops with Realtek RTL8723BE wireless cards","zh_CN":"包含对新设备支持的改进，尤其是 AMD Radeon RX 9000 系列显卡及龙芯 3C6000 多处理器平台；另包含对部分 x86 笔记本电脑 ACPI 睡眠 (S3) 不可靠、部分龙芯主板上 USB 时有失灵及搭载瑞昱 RTL8723BE 无线网卡的部分华硕笔记本电脑偶发死机等问题的修复"},"packages":{"linux-kernel-6.14.0":"6.14.0-2","linux+kernel":"3:6.14.0"},"type":"conventional"},"linux-kernel-6.16.0":{"security":false,"name":{"default":"Linux Kernel, 6.16.0","zh_CN":"Linux 内核，版本 6.16.0"},"caution":{"default":"Includes support for new devices and functionality fixes, introduces 16KiB/4KiB-paged dual kernels for LoongArch, fixes an issue with some Lenovo ThinkBook models, where FnLock and backlight settings were incorrectly reset upon reboot, as well as fixes for incorrect mute thresholds for certain USB audio devices, KVM instability on Loongson 3B6000/3C6000 platforms, and backlight control for Loongson 3A5000/3A6000-based laptops; introduce additionally AMDGPU KFD support for LoongArch and RISC-V devices, as well as initial support for SG2042/2044 platforms","zh_CN":"包含大量新设备支持及功能修复，为龙架构引入 16KiB/4KiB 分页双内核功能、修复部分 Lenovo ThinkBook 型号 FnLock 及背光在重启后被错误复位的问题，修复部分 USB 音频设备静音阈值设置错误的问题，修复龙芯 3B6000/3C6000 家族 KVM 客户机稳定性问题，修复龙芯 3A5000/3A6000 笔记本电脑屏幕背光调整功能，为龙架构及 RISC-V 启用 AMDGPU KFD（异构计算）支持，并引入 SG2042/2044 平台初步支持"},"packages":{"linux+kernel":"3:6.16.4"},"type":"conventional"},"linux-kernel-6.16.6":{"security":true,"name":{"default":"Linux Kernel, 6.16.7","zh_CN":"Linux 内核，版本 6.16.7"},"caution":{"default":"Includes mitigation for VMSCAPE vulnerability for AMD, Hygon, and Intel platforms and fixes an issue where AMD Radeon RX 9000 may not correctly initialize on LoongArch and other hardware platforms","zh_CN":"包含针对 AMD、Intel 及海光平台的 VMSCAPE 漏洞规避，并修复 AMD Radeon RX 9000 系列在龙架构等平台无法正确驱动的问题"},"packages":{"linux+kernel":"3:6.16.7"},"type":"conventional"},"linux-kernel-6.17.7-fix-nls-cp":{"security":false,"name":{"default":"Linux Kernel, 6.17.7-4","zh_CN":"Linux 内核，版本 6.17.7-4"},"caution":{"default":"Fixes an issue where non-Latin paths and filenames in NTFS partitions could not be read on AArch64, Loongson 3 (MIPS), and RISC-V systems","zh_CN":"修复 AArch64、龙芯三号 (MIPS) 及 RISC-V 平台无法正确读取 NTFS 分区中非拉丁路径及文件名的问题"},"packages-v2":{"linux-kernel-6.17.7":"< 6.17.7-4"},"type":"conventional"},"linux-kernel-6.17.7-zhaoxin-fixes":{"security":false,"name":{"default":"Linux Kernel, 6.17.7-2","zh_CN":"Linux 内核，版本 6.17.7-2"},"caution":{"default":"Disables VIA PadLock hardware cryptographic engine on ZhaoXin KaiXian KX-6000/6000G platforms to fix a crash during initramfs generation, also adds workaround for a boot-time warning","zh_CN":"在兆芯开先 KX-6000/6000G 平台上禁用 VIA PadLock 硬件密码学引擎以修复生成初始内存盘 (initramfs) 时的崩溃问题，并规避一处启动时警告"},"packages-v2":{"linux-kernel-6.17.7":"< 6.17.7-1"},"type":"conventional"},"linux-kernel-6.17.y":{"security":false,"name":{"default":"Linux Kernel 6.17","zh_CN":"Linux 内核，版本 6.17"},"caution":{"default":"Includes support for new devices and functionality fixes, improves the practicality of kernel panic screens","zh_CN":"包含大量新设备支持及功能修复，改善内核崩溃 (Kernel Panic) 界面的实用性"},"packages-v2":{"linux+kernel":"< 3:6.17.0"},"type":"conventional"},"linux-kernel-6.18.16":{"security":false,"name":{"default":"Linux Kernel 6.18.16","zh_CN":"Linux 内核，版本 6.18.16"},"caution":{"default":"Fixes kernel crashes during boot up on Zhaoxin C4600-based devices and drivers crashes with AMD RDNA 3-based GPUs on LoongArch devices","zh_CN":"修复兆芯 C-4600 设备启动时内核崩溃及龙架构平台使用 AMD RDNA 3 显卡时偶发驱动崩溃的问题"},"packages-v2":{"linux+kernel":"< 3:6.18.16"},"type":"conventional"},"linux-kernel-6.18.25":{"security":true,"name":{"default":"Linux Kernel 6.18.25","zh_CN":"Linux 内核，版本 6.18.25"},"caution":{"default":"Fixes a Local Privilege Escalation vulnerability (\"Copy Fail\") - CVE-2026-31431 (severity: High)","zh_CN":"修复一个本地提权漏洞 (\"Copy Fail\") ，漏洞编号 CVE-2026-31431（严重性：高）"},"packages-v2":{"linux+kernel":"< 3:6.18.25"},"type":"conventional"},"linux-kernel-6.18.27":{"security":true,"name":{"default":"Linux Kernel 6.18.27","zh_CN":"Linux 内核，版本 6.18.27"},"caution":{"default":"Fixes a series of Local Privilege Escalation vulnerability, codenamed \"Dirty Frag\" - CVE-2026-43284 and CVE-2026-43500 (severity: High)","zh_CN":"修复代号为 \"Dirty Frag\" 的系列本地提权漏洞（CVE-2026-43284 及 CVE-2026-43500，严重性：高）"},"packages-v2":{"linux+kernel":"< 3:6.18.27"},"type":"conventional"},"linux-kernel-6.18.32":{"security":true,"must_match_all":false,"name":{"default":"Linux Kernel 6.18.32","zh_CN":"Linux 内核，版本 6.18.32"},"caution":{"default":"Fixes a Local Privilege Escalation vulnerability, codenamed \"PinTheft\" (severity: High)","zh_CN":"修复代号为 \"PinTheft\" 的本地提权漏洞（严重性：高）"},"packages-v2":{"linux+kernel":"< 3:6.18.32","linux+kernel+asahi":"< 3:6.18.32","linux+kernel+rpi64":"< 6.18.32"},"type":"conventional"},"linux-kernel-6.18.7":{"security":false,"name":{"default":"Linux Kernel 6.18.7","zh_CN":"Linux 内核，版本 6.18.7"},"caution":{"default":"Include fix for incorrect processor topology reporting on Loongson 3B6000 platforms, fixes for AMD graphics and Intel HDA devices on SG2042/2044, as well as fix for boot failure on Loongson 2K2000 devices with older firmware","zh_CN":"包含针对龙芯 3B6000 处理器拓扑报告错误、SG2042/2044 AMD 显卡及 Intel HDA 设备及搭载旧固件的龙芯 2K2000 引导故障的修复"},"packages-v2":{"linux+kernel":"< 3:6.18.7"},"type":"conventional"},"linux-kernel-6.18.8":{"security":false,"name":{"default":"Linux Kernel 6.18.8","zh_CN":"Linux 内核，版本 6.18.8"},"caution":{"default":"Include fixes for Loongson 7A GMAC (Ethernet NIC), laptop internal keyboards, and O32 applications on Loongson 3 (MIPS) devices","zh_CN":"包含针对龙芯三号 (MIPS) 设备上的龙芯 7A GMAC（以太网接口）、笔记本内置键盘及 O32 应用程序的修复"},"packages-v2":{"linux+kernel":"< 3:6.18.8"},"type":"conventional"},"linux-kernel-6.18.y":{"security":false,"name":{"default":"Linux Kernel 6.18","zh_CN":"Linux 内核，版本 6.18"},"caution":{"default":"Includes support for new devices and functionality fixes, adds preliminary support for CIX Technology's P1 (SKY1) SoCs, improves GPIO and CAN-FD bus support for Loongson 2K3000/3B6000M, Motorcomm YT6801 ethernet NIC, and the TH1520 SoC","zh_CN":"包含大量新设备支持及功能修复，新增此芯科技 P1 (SKY1) SoC 的初始支持，改善龙芯 2K3000/3B6000M GPIO 及 CAN-FD 总线、裕太微 YT6801 以太网卡及 TH1520 SoC 的支持"},"packages-v2":{"linux+kernel":"< 3:6.18.7"},"type":"conventional"},"linux-kernel-asahi-6.14.5":{"security":false,"name":{"default":"Linux Kernel (Apple silicon), 6.14.5","zh_CN":"Linux 内核 (Apple silicon)，版本 6.14.5"},"caution":{"default":"Fixes CJK character display in virtual terminal in HiDPI displays","zh_CN":"修复高分屏下虚拟终端 CJK（中文、日文及韩文）字符显示错误的问题"},"packages":{"linux+kernel+asahi":"3:6.14.5"},"type":"conventional"},"linux-kernel-asahi-6.18.25":{"security":true,"name":{"default":"Linux Kernel (Apple silicon) 6.18.25","zh_CN":"Linux 内核 (Apple silicon)，版本 6.18.25"},"caution":{"default":"Fixes a Local Privilege Escalation vulnerability (\"Copy Fail\") - CVE-2026-31431 (severity: High)","zh_CN":"修复一个本地提权漏洞 (\"Copy Fail\") ，漏洞编号 CVE-2026-31431（严重性：高）"},"packages-v2":{"linux+kernel+asahi":"< 3:6.18.25"},"type":"conventional"},"linux-kernel-asahi-6.18.27":{"security":true,"name":{"default":"Linux Kernel (Apple silicon) 6.18.27","zh_CN":"Linux 内核 (Apple silicon)，版本 6.18.27"},"caution":{"default":"Fixes a series of Local Privilege Escalation vulnerability, codenamed \"Dirty Frag\" - CVE-2026-43284 and CVE-2026-43500 (severity: High)","zh_CN":"修复代号为 \"Dirty Frag\" 的系列本地提权漏洞（CVE-2026-43284 及 CVE-2026-43500，严重性：高）"},"packages-v2":{"linux+kernel+asahi":"< 3:6.18.27"},"type":"conventional"},"linux-kernel-lts-6.12.25":{"security":false,"name":{"default":"Linux Kernel (Longterm Maintenance), 6.12.25","zh_CN":"Linux 内核（长期维护版本），版本 6.12.25"},"caution":{"default":"With enhanced support for new devices, notably AMD Radeon RX 9000 Series Graphics and multi-processor Loongson 3C6000 platforms; also fixes unreliable ACPI suspend (S3) on certain x86 laptops, intermittent USB connection on some Loongson motherboards, hangs on ASUS laptops with Realtek RTL8723BE wireless cards, and S0ix suspend failure on MECHREVO Wujie 14X","zh_CN":"包含对新设备支持的改进，尤其是 AMD Radeon RX 9000 系列显卡及龙芯 3C6000 多处理器平台；另包含对部分 x86 笔记本电脑 ACPI 睡眠 (S3) 不可靠、部分龙芯主板上 USB 时有失灵、搭载瑞昱 RTL8723BE 无线网卡的部分华硕笔记本电脑偶发死机，以及机械革命无界 14X 笔记本 S0ix 睡眠失败等问题的修复"},"packages":{"linux-kernel-lts-6.12.25":"6.12.25-1","linux+kernel+lts":"2:6.12.25"},"type":"conventional"},"linux-kernel-lts-6.12.26":{"security":false,"name":{"default":"Linux Kernel (Longterm Maintenance), 6.12.26","zh_CN":"Linux 内核（长期维护版本），版本 6.12.26"},"caution":{"default":"Fixes CJK character display in virtual terminal in HiDPI displays and enables basic display support via firmware","zh_CN":"修复高分屏下虚拟终端 CJK（中文、日文及韩文）字符显示错误的问题，并开启基于固件的基础显示支持"},"packages":{"linux+kernel+lts":"2:6.12.26"},"type":"conventional"},"linux-kernel-lts-6.12.29":{"security":true,"name":{"default":"Linux Kernel (Longterm Maintenance), 6.12.29","zh_CN":"Linux 内核（长期维护版本），版本 6.12.29"},"caution":{"default":"Fixes self-training Spectre-v2/Spectre-BHB (Exposure of Sensitive Information) vulnerability for various x86 and Arm platforms, also fixes wrong processor topology setting for Loongson 3A6000/3B6000/3C6000 series processors","zh_CN":"包含针对数个 x86 及 Arm 平台的 Spectre-v2/Spectre-BHB（敏感信息泄漏）漏洞修复，并修复龙芯 3A6000/3B6000/3C6000 系列处理器下处理器拓扑设置错误的问题"},"packages":{"linux+kernel+lts":"2:6.12.29"},"type":"conventional"},"linux-kernel-lts-6.12.32":{"security":false,"name":{"default":"Linux Kernel (Longterm Maintenance), 6.12.32","zh_CN":"Linux 内核（长期维护版本），版本 6.12.32"},"caution":{"default":"Fixes an issue where display brightness on Loongson 3A5000/6000-based laptops may be reset to the lowest upon wakeup from S3 suspend, also works around incorrectly configured supported link speed on PCIe bridges found on older Loongson 3C6000 series steppings, causing degraded performance or functionalities on certain peripherals","zh_CN":"修复基于龙芯 3A5000/3A6000 的笔记本从 S3 睡眠唤醒时，屏幕背光亮度可能被复位为最低的问题，并规避较老的龙芯 3C6000 系列处理器步进上 PCIe 桥未正确设置支持链路速率而导致部分设备性能和功能受限的问题"},"packages":{"linux+kernel+lts":"2:6.12.32"},"type":"conventional"},"linux-kernel-lts-6.12.34":{"security":false,"name":{"default":"Linux Kernel (Longterm Maintenance), 6.12.34","zh_CN":"Linux 内核（长期维护版本），版本 6.12.34"},"caution":{"default":"Fixes an issue where the display output on Intel Skylake devices may flicker off when IOMMU is enabled and where the touchpads on Loongson 3A6000-based laptops (IPASON NL38-N11 and possibly others) are non-functional","zh_CN":"修复 Intel Skylake 设备上启用 IOMMU 特性后显示输出时有闪黑的问题，并修复龙芯 3A6000 笔记本（如攀升 NL38-N11 及其他型号）触摸板不可用的问题"},"packages":{"linux+kernel+lts":"2:6.12.34"},"type":"conventional"},"linux-pam-1.7.1":{"security":true,"name":{"default":"Linux PAM 1.7.1","zh_CN":"Linux PAM 1.7.1"},"caution":{"default":"Fixes two security vulnerabilities - CVE-2024-10963, CVE-2025-6020 (1 of high severity)","zh_CN":"修复编号为 CVE-2024-10963 及 CVE-2025-6020 的安全漏洞（含 1 个高危漏洞）"},"packages":{"linux-pam":"1.7.1"},"type":"conventional"},"lrzip-0.660":{"security":true,"name":{"default":"lrzip 0.660"},"caution":{"default":"Fixes denial of service vulnerabilities (CVE-2022-33067, CVE-2023-39741, Severity: Medium), a use-after-free vulnerability (CVE-2025-15570, Severity: High), and a null pointer dereference vulnerability (CVE-2025-15571, Severity: Medium)","zh_CN":"修复拒绝服务漏洞（CVE-2022-33067、CVE-2023-39741，严重性：中）、一个释放后使用漏洞（CVE-2025-15570，严重性：高）和一个空指针解引用漏洞（CVE-2025-15571，严重性：中）"},"packages-v2":{"lrzip":"< 0.660"},"type":"conventional"},"lxc-7.0.0":{"security":true,"name":{"default":"LXC 7.0.0"},"caution":{"default":"Fixes a network configuration permission vulnerability in lxc-user-nic when used with OVS - CVE-2026-39402 (Severity: Low)","zh_CN":"修复一个 lxc-user-nic 与 OVS 配合使用时存在的网络配置权限漏洞, 漏洞编号 CVE-2026-39402 (严重性: 低)"},"packages-v2":{"lxc":"< 7.0.0"},"type":"conventional"},"lxml-6.1.0":{"security":true,"name":{"default":"lxml 6.1.0"},"caution":{"default":"Fixes an Improper Restriction of XML External Entity Reference vulnerability (CVE-2026-41066, Severity: High)","zh_CN":"修复一个 XML 外部实体引用的不恰当限制漏洞（CVE-2026-41066，严重性：高）"},"packages-v2":{"lxml":"< 6.1.0"},"type":"conventional"},"mako-1.3.12":{"security":true,"name":{"default":"mako 1.3.12"},"caution":{"default":"Fixes a Path Traversal vulnerability (CVE-2026-41205, Severity: High)","zh_CN":"修复一个路径遍历漏洞（CVE-2026-41205，严重性：高）"},"packages-v2":{"mako":"< 1.3.12"},"type":"conventional"},"mariadb-12.3.1":{"security":true,"name":{"default":"MariaDB 12.3.1"},"caution":{"default":"Fixes a Heap-based Buffer Overflow vulnerability (CVE-2026-32710, Severity: Critical) and a Memory Allocation with Excessive Size Value vulnerability (CVE-2026-35549, Severity: Medium)","zh_CN":"修复一个堆缓冲区溢出漏洞（CVE-2026-32710，严重性：严重）和一个未经控制的内存分配漏洞（CVE-2026-35549，严重性：中）"},"packages-v2":{"mariadb":"< 12.3.1"},"type":"conventional"},"mathjax-4.1.0":{"security":true,"name":{"default":"MathJax 4.1.0","zh_CN":"MathJax 4.1.0"},"caution":{"default":"Fixes two Regular expression Denial of Service (ReDoS) vulnerabilities - CVE-2023-39663 (Severity: High)","zh_CN":"修复两个正则表达式拒绝服务（ReDoS）漏洞，漏洞编号 CVE-2023-39663（严重性：高）"},"packages-v2":{"mathjax":"<2.7.9"},"type":"conventional"},"matio-1.5.30":{"security":true,"name":{"default":"MATIO 1.5.30"},"caution":{"default":"Fixes 2 buffer overflow vulnerabilities (CVE-2025-2337 and CVE-2025-2338, Severity: Medium) and a heap memory corruption vulnerability (CVE-2025-50343, Severity: Unknown)","zh_CN":"修复 2 个缓冲区溢出漏洞（CVE-2025-2337 和 CVE-2025-2338，严重性：中）和一个堆内存损坏漏洞（CVE-2025-50343，严重性：未知）"},"packages-v2":{"matio":"< 1.5.30"},"type":"conventional"},"memcached-1.6.42":{"security":true,"name":{"default":"Memcached 1.6.42"},"caution":{"default":"Fixes 2 Observable Timing Discrepancy vulnerability (CVE-2026-47783 and CVE-2026-47784, Severity: High)","zh_CN":"修复 2 个可观察的计时差异漏洞（漏洞编号 CVE-2026-47783 及 CVE-2026-47784，严重性：高）"},"packages-v2":{"memcached":"< 1.6.42"},"type":"conventional"},"mercurial-6.9.4":{"security":true,"name":{"default":"Mercurial 6.9.4 Security Update","zh_CN":"Mercurial 6.9.4 安全更新"},"caution":{"default":"Fixes a cross-site scripting (XSS) vulnerability - CVE-2025-2361 (Severity: Moderate)","zh_CN":"修复一处跨站脚本攻击 (XSS)，漏洞编号 CVE-2025-2361（严重性：中等）"},"packages":{"mercurial":"6.9.4"},"type":"conventional"},"mesa-25.0.3":{"security":false,"must_match_all":false,"name":{"default":"Mesa 3D Graphics Library 25.0.3","zh_CN":"Mesa 3D 图形库，版本 25.0.3"},"caution":{"default":"Fixes occasional instability on resume ACPI suspend (S3) with AMD Radeon RX 9000 Series Graphics and crashes/hangs while playing \"Octopath Traveler II\" and other titles with AMD Radeon 780M","zh_CN":"修复 AMD Radeon RX 9000 系列显卡从 ACPI 睡眠 (S3) 唤醒后的偶发稳定性问题及 AMD Radeon 780M 运行《歧路旅人 II》等游戏时的崩溃或画面锁死问题"},"packages":{"mesa":"1:25.0.3+dxheaders1.615.0"},"type":"conventional"},"mihomo-1.19.11-patch":{"security":true,"name":{"default":"Mihomo 1.19.11 Security Update","zh_CN":"Mihomo 1.19.11 安全更新"},"caution":{"default":"Fixes 2 cases of local permission escalation vulnerability","zh_CN":"修复 2 例本地提权漏洞"},"packages":{"mihomo":"1.19.11-1"},"type":"conventional"},"miniupnpd-2.3.10":{"security":true,"name":{"default":"miniupnpd 2.3.10"},"caution":{"default":"Fixes an Integer Underflow vulnerability (CVE-2026-5720, Severity: Critical)","zh_CN":"修复一个整数下溢漏洞（漏洞编号 CVE-2026-5720，严重性：严重）"},"packages-v2":{"miniupnpd":"< 2.3.10"},"type":"conventional"},"mitmproxy-12.2.2":{"security":true,"name":{"default":"mitmproxy 12.2.2"},"caution":{"default":"Fixes an LDAP injection vulnerability (CVE-2026-40606, Severity: Medium)","zh_CN":"修复一个 LDAP 注入漏洞（CVE-2026-40606，严重性：中）"},"packages-v2":{"mitmproxy":"< 12.2.2+rs0.12.9"},"type":"conventional"},"mupdf-1.27.0":{"security":true,"name":{"default":"mupdf 1.27.0"},"caution":{"default":"Fixes a denial of service vulnerability (CVE-2025-46206, Severity: Medium) and a null pointer dereference vulnerability (CVE-2025-55780, Severity: High)","zh_CN":"修复一处拒绝服务漏洞（CVE-2025-46206，严重性：中）和一处空指针解引用漏洞（CVE-2025-55780，严重性：高）"},"packages-v2":{"mupdf":"< 1.27.0"},"type":"conventional"},"mupdf-1.27.2":{"security":true,"name":{"default":"MuPDF 1.27.2"},"caution":{"default":"Fixes a double-free vulnerability - CVE-2026-25556 (Severity: High)","zh_CN":"修复一个双重释放漏洞，漏洞编号 CVE-2026-25556（严重性：高）"},"packages-v2":{"mupdf":"< 1:1.27.2"},"type":"conventional"},"musl-1.2.6":{"security":true,"name":{"default":"musl 1.2.6"},"caution":{"default":"Fixes an out-of-bounds write vulnerabilities (CVE-2025-26519, Severity: High)","zh_CN":"修复一个越界写入漏洞，漏洞编号 CVE-2025-26519（严重性：高）"},"packages-v2":{"musl":"< 1.2.6"},"type":"conventional"},"mxml-4.0.4":{"security":true,"name":{"default":"Mini-XML 3.3.1"},"caution":{"default":"Fixes a memory leak vulnerabilities (Severity: High) and a buffer overflow vulnerabilities (Severity: High)","zh_CN":"修复一个内存泄漏漏洞（严重性：高）和一个缓冲区溢出漏洞（严重性：高）"},"packages-v2":{"mxml":"< 3.3.1"},"type":"conventional"},"net-snmp-5.9.5.2":{"security":true,"name":{"default":"Net-SNMP 5.9.5.2"},"caution":{"default":"Fixes a buffer overflow vulnerability - CVE-2025-68615 (Severity: Critical)","zh_CN":"修复一个缓冲区溢出漏洞，漏洞编号 CVE-2025-68615（严重性：严重）"},"packages-v2":{"net-snmp":"< 5.9.5.2"},"type":"conventional"},"nghttp2-1.69.0":{"security":true,"name":{"default":"nghttp2 1.69.0"},"caution":{"default":"Fixes a Reachable Assertion vulnerability (CVE-2026-27135, Severity: High)","zh_CN":"修复一个可达断言漏洞（CVE-2026-27135，严重性：高）"},"packages-v2":{"nghttp2":"< 1.69.0"},"type":"conventional"},"nginx-1.30.1":{"security":true,"name":{"default":"nginx 1.30.1"},"caution":{"default":"Fixes 6 security vulnerabilities disclosed in F5 Security Advisory on May 13, 2026 (2 of high severity) and a memory-amplification DoS vulnerability (\"HTTP/2 Bomb\")","zh_CN":"修复 F5 在 2026 年 5 月 13 日发布的安全公告中披露的 6 个安全漏洞（含 2 个高危漏洞） 和 1 个内存放大型拒绝服务 (DoS) 漏洞 (\"HTTP/2 Bomb\")"},"packages-v2":{"nginx":"< 1.30.1"},"type":"conventional"},"nodejs-20-20.19.2":{"security":true,"name":{"default":"Node.js 20.19.2"},"caution":{"default":"Fixes 3 security vulnerabilities disclosed in May 14, 2025 Security Releases (1 of high severity)","zh_CN":"修复 2025 年 5 月 14 日安全更新公告中披露的 3 个安全漏洞（含 1 个高危漏洞）"},"packages":{"nodejs-20":"20.19.2"},"type":"conventional"},"nodejs-22-22.16.0":{"security":true,"name":{"default":"Node.js 22.16.0"},"caution":{"default":"Fixes 2 security vulnerabilities disclosed in May 14, 2025 Security Releases (1 of high severity)","zh_CN":"修复 2025 年 5 月 14 日安全更新公告中披露的 2 个安全漏洞（含 1 个高危漏洞）"},"packages":{"nodejs-22":"22.16.0"},"type":"conventional"},"nodejs-22-22.22.2":{"security":true,"name":{"default":"Node.js 22.22.2"},"caution":{"default":"Fixes 7 security vulnerabilities disclosed in March 24, 2026 Security Releases (2 of high severity)","zh_CN":"修复 2026 年 3 月 24 日安全更新公告中披露的 7 个安全漏洞（含 2 个高危漏洞）"},"packages":{"nodejs-22":"22.22.2"},"type":"conventional"},"nodejs-24-24.14.1":{"security":true,"name":{"default":"Node.js 24.14.1"},"caution":{"default":"Fixes 8 security vulnerabilities disclosed in March 24, 2026 Security Releases (2 of high severity)","zh_CN":"修复 2026 年 3 月 24 日安全更新公告中披露的 8 个安全漏洞（含 2 个高危漏洞）"},"packages":{"nodejs-24":"24.14.1"},"type":"conventional"},"ofono-2.19":{"security":true,"name":{"default":"oFono 2.19"},"caution":{"default":"Fixes 5 stack overflow vulnerabilities - CVE-2023-2794, CVE-2023-4232, CVE-2023-4233, CVE-2023-4234 and CVE-2023-4235 (Severity: High)","zh_CN":"修复 5 处栈溢出漏洞，漏洞编号 CVE-2023-2794、CVE-2023-4232、CVE-2023-4233、CVE-2023-4234 和 CVE-2023-4235（严重性：高）"},"packages-v2":{"ofono":"< 2.19"},"type":"conventional"},"oma-1.16.0":{"security":false,"must_match_all":false,"name":{"default":"oma 1.16.0","zh_CN":"小熊猫包管理 (oma) 1.16.0"},"caution":{"default":"With improved interface and instructions for fixing/reporting package manager errors, topic-aware undo functionality, and enhancements to various interfaces.","zh_CN":"修缮了软件包管理报错及修复操作的用户界面、为撤销功能 (oma undo) 新增了对安同 OS 测试源 (topics) 设置的状态操作支持，并对一部分界面设计进行了优化"},"packages":{"oma":"1.16.0"},"type":"conventional"},"oma-1.17.2":{"security":false,"must_match_all":false,"name":{"default":"oma 1.17.2","zh_CN":"小熊猫包管理 (oma) 1.17.2"},"caution":{"default":"With newly introduced disk usage analyzer, low storage warning, Zsh shell completions, and more","zh_CN":"包含全新磁盘占用分析器、磁盘将满警告、Zsh 补全等新特性"},"packages":{"oma":"1.17.2"},"type":"conventional"},"oma-1.18.0":{"security":false,"must_match_all":false,"name":{"default":"oma 1.18.0","zh_CN":"小熊猫包管理 (oma) 1.18.0"},"caution":{"default":"With newly introduced why and tree commands for dependency tree analysis, enhancements to the package metadata viewer (oma show), and fixes and improvements to the user interface","zh_CN":"引入用于依赖树分析的 tree 及 why 命令，增强软件包信息查阅功能 (oma show)，优化现有界面操作逻辑进行优化，并修复了数个细节问题"},"packages":{"oma":"1.18.0"},"type":"conventional"},"oma-1.21.0":{"security":false,"must_match_all":false,"name":{"default":"oma 1.21.0","zh_CN":"小熊猫包管理 (oma) 1.21.0"},"caution":{"default":"With localized help messages and man pages, as well as protection against removal of currently running kernels, fixes for the why command, OSC 9;4 terminal progress reporting, and more","zh_CN":"新增帮助信息及手册本地化，以及使用中内核保护功能、why 命令修复及 OSC 9;4 终端进度反馈等新特性"},"packages":{"oma":"1.21.0"},"type":"conventional"},"oma-1.23.1":{"security":false,"must_match_all":false,"name":{"default":"oma 1.23.1","zh_CN":"小熊猫包管理 (oma) 1.23.1"},"caution":{"default":"Improves compatibility with APT's `Optional' configuration for repository metadata, fixing metadta refreshing with CrowdSec's repository (and maybe others), also fixes path completion for `oma provides'","zh_CN":"增强对 APT `Optional' 配置字段的兼容性，修复无法从 CrowdSec 等软件源刷新元数据的问题，并为 `oma provides' 命令添加了路径补全功能"},"packages-v2":{"oma":"< 1.23.1"},"type":"conventional"},"oma-1.24.1":{"security":false,"must_match_all":false,"name":{"default":"oma 1.24","zh_CN":"小熊猫包管理 (oma) 1.24"},"caution":{"default":"Improves compatibility with APT's cryptography policies and enhances logging performance with spdlog-rs","zh_CN":"增强对 APT 密码学算法策略的兼容性并通过引入 spdlog-rs 改善日志性能"},"packages-v2":{"oma":"< 1.24.1"},"type":"conventional"},"oma-1.25.0":{"security":false,"must_match_all":false,"name":{"default":"oma 1.25","zh_CN":"小熊猫包管理 (oma) 1.25"},"caution":{"default":"Introduces Y/N confirmation mode and improves user interfaces and lock behavior","zh_CN":"新增 Y/N 确认操作模式、改善部分用户界面并优化实例锁行为"},"packages-v2":{"oma":"< 1.25.0"},"type":"conventional"},"oma-1.25.2":{"security":true,"must_match_all":false,"name":{"default":"oma 1.25.2","zh_CN":"小熊猫包管理 (oma) 1.25.2"},"caution":{"default":"Fixes a Improper Neutralization of CRLF Sequences vulnerability (Severity: Low)","zh_CN":"修复一个 CRLF 序列处理不当漏洞（严重性：低）"},"packages-v2":{"oma":"< 1.25.2"},"type":"conventional"},"oma-1.26.0":{"security":false,"must_match_all":false,"name":{"default":"oma 1.26","zh_CN":"小熊猫包管理 (oma) 1.26"},"caution":{"default":"Improves HTTP download performance and compatibility, and introduces automatic cleaning after system updates and package installation","zh_CN":"改善 HTTP 下载性能和兼容性并引入了软件包更新和安装后的自动清理功能"},"packages-v2":{"oma":"< 1.26.0"},"type":"conventional"},"openjdk-24":{"security":false,"name":{"default":"OpenJDK 24 GA Update","zh_CN":"OpenJDK 24 GA 更新"},"packages":{"openjdk-24":"24+ga","openjdk+latest":"24"},"type":"conventional"},"openjdk-july-2025":{"security":true,"must_match_all":false,"name":{"default":"OpenJDK Security Updates (July, 2025)","zh_CN":"OpenJDK 安全更新（2025 年 7 月）"},"caution":{"default":"Fixes over 10 security vulnerabilities disclosed in Oracle Critical Patch Update Advisory - July 2025 (multiple of high severity)","zh_CN":"修复 Oracle 重要更新公告（2025 年 7 月）中披露的逾 10 个安全漏洞（含多个高危漏洞）"},"packages":{"openjdk-8":"8u462+ga","openjdk-11":"11.0.28+ga","openjdk-17":"17.0.16+ga","openjdk-21":"21.0.8+ga","openjdk-24":"24.0.2+ga"},"type":"conventional"},"openjdk-security-2025-apr":{"security":true,"must_match_all":false,"name":{"default":"OpenJDK Security Updates (April, 2025)","zh_CN":"OpenJDK 安全更新（2025 年 4 月）"},"caution":{"default":"Fixes over 20 security vulnerabilities disclosed in Oracle Critical Patch Update Advisory - April 2025 (multiple of high severity)","zh_CN":"修复 Oracle 重要更新公告（2025 年 4 月）中披露的逾 20 个安全漏洞（含多个高危漏洞）"},"packages":{"openjdk-8":"8u452+ga","openjdk-11":"11.0.27+ga","openjdk-17":"17.0.15+ga","openjdk-21":"21.0.7+ga","openjdk-24":"24.0.1+ga"},"type":"conventional"},"openjpeg-2.5.4":{"security":true,"name":{"default":"OpenJPEG 2.5.4"},"caution":{"default":"Fixes an Out-of-Bounds Heap Memory Write vulnerability (CVE-2025-54874, Severity: High) and 2 Heap-based Buffer Overflow vulnerabilities (CVE-2024-56826 and CVE-2024-56827, Severity: Medium)","zh_CN":"修复 1 个越界堆内存写入漏洞（CVE-2025-54874，严重性：高）和 2 个堆缓冲区溢出漏洞（CVE-2024-56826 和 CVE-2024-56827，严重性：中）"},"packages-v2":{"openjpeg":"< 2.5.4"},"type":"conventional"},"openlist-4.1.10":{"security":true,"name":{"default":"OpenList 4.1.10"},"caution":{"default":"Fixes a path traversal vulnerability - CVE-2026-25059 (Severity: High); Fixes an insecure TLS default configuration vulnerability - CVE-2026-25060 (Severity: High)","zh_CN":"修复一处路径遍历漏洞，漏洞编号 CVE-2026-25059（严重性：高）；修复一处 TLS 默认配置漏洞，漏洞编号 CVE-2026-25060（严重性：高）"},"packages-v2":{"openlist":"< 4.1.10"},"type":"conventional"},"opensc-0.27.1":{"security":true,"name":{"default":"OpenSC 0.27.1"},"caution":{"default":"Fixes 5 security vulnerabilities (including 5 of medium severity)","zh_CN":"修复 5 个安全漏洞（含 5 个中危漏洞）"},"packages-v2":{"opensc":"< 0.27.1"},"type":"conventional"},"openssh-10.3p1":{"security":true,"name":{"default":"OpenSSH 10.3p1"},"caution":{"default":"Fixes 5 security vulnerabilities (1 of high severity)","zh_CN":"修复 5 个安全漏洞（含 1 个高危漏洞）"},"packages-v2":{"openssh":"< 10.3p1"},"type":"conventional"},"openssl-1.1.1ze":{"security":true,"must_match_all":false,"name":{"default":"OpenSSL 1.1.1ze"},"caution":{"default":"The OpenSSL project no longer provides free security updates to OpenSSL v1.1.1 - this update switches to a third-party maintained fork, which fixes numerous security vulnerabilities since OpenSSL 1.1.1w (released in 2024)","zh_CN":"因 OpenSSL 官方不再提供针对 v1.1.1 分支的免费安全更新，本更新改用第三方维护的源代码；修复自 2024 年以来在 OpenSSL 1.1.1w 中发现的若干安全漏洞"},"packages-v2":{"openssl-1.1":"< 1.1.1ze","openssl-1.1+32":"< 1.1.1ze"},"type":"conventional"},"openssl-1.1.1zg":{"security":true,"must_match_all":false,"name":{"default":"OpenSSL 1.1.1zg"},"caution":{"default":"Fixes 4 security vulnerabilities disclosed in OpenSSL Security Advisory on April 7, 2026","zh_CN":"修复 OpenSSL 在 2026 年 4 月 7 日发布的安全公告中披露的 4 个安全漏洞"},"packages-v2":{"openssl-1.1":"< 1.1.1zg","openssl-1.1+32":"< 1.1.1zg"},"type":"conventional"},"openssl-3.5.4":{"security":true,"must_match_all":false,"name":{"default":"OpenSSL 3.5.4"},"caution":{"default":"Fixes 3 security vulnerabilities disclosed in OpenSSL Security Advisory on September 30th, 2025 (Severity: Moderate)","zh_CN":"修复 OpenSSL 在 2025 年 9 月 30 日发布的安全公告中披露的 3 个安全漏洞（严重性：中）"},"packages-v2":{"openssl":"< 3.5.4","openssl+32":"< 3.5.4"},"type":"conventional"},"openssl-3.6.1":{"security":true,"must_match_all":false,"name":{"default":"OpenSSL 3.6.1"},"caution":{"default":"Fixes 12 security vulnerabilities disclosed in OpenSSL Security Advisory on January 27, 2026 (1 of high severity)","zh_CN":"修复 OpenSSL 在 2026 年 1 月 27 日发布的安全公告中披露的 21 个安全漏洞（含 1 个高危漏洞）"},"packages-v2":{"openssl":"< 3.6.1","openssl+32":"< 3.6.1"},"type":"conventional"},"openssl-3.6.2":{"security":true,"must_match_all":false,"name":{"default":"OpenSSL 3.6.2"},"caution":{"default":"Fixes 8 security vulnerabilities disclosed in OpenSSL Security Advisory on March 13, 2026 and April 7, 2026 (2 of high severity)","zh_CN":"修复 OpenSSL 在 2026 年 3 月 13 日和 2026 年 4 月 7 日发布的安全公告中披露的 8 个安全漏洞（含 2 个高危漏洞）"},"packages-v2":{"openssl":"< 3.6.2","openssl+32":"< 3.6.2"},"type":"conventional"},"openvpn-2.6.14":{"security":true,"name":{"default":"OpenVPN 2.6.14 Security Update","zh_CN":"OpenVPN 2.6.14 安全更新"},"caution":{"default":"Fixes a denial of service vulnerability - CVE-2025-2704 (Severity: Medium)","zh_CN":"修复一处拒绝服务漏洞，漏洞编号 CVE-2025-2704（严重性：中）"},"packages":{"openvpn":"2.6.14"},"type":"conventional"},"optipng-7.9.1":{"security":true,"must_match_all":false,"name":{"default":"OptiPNG 7.9.1"},"caution":{"default":"Fixes a Buffer Overflow vulnerability - CVE-2023-43907 (Severity: High)","zh_CN":"修复一个缓冲区溢出漏洞，漏洞编号 CVE-2023-43907（严重性：高）"},"packages-v2":{"optipng":"< 7.9.1"},"type":"conventional"},"packagekit-1.3.5":{"security":true,"name":{"default":"PackageKit 1.3.5"},"caution":{"default":"Fixes a TOCTOU (Time-Of-Check to Time-of-Use) race condition vulnerability - CVE-2026-41651 (severity: High)","zh_CN":"修复一个 TOCTOU（检查到使用时间）竞态条件漏洞，漏洞编号 CVE-2026-41651（严重性：高）"},"packages-v2":{"packagekit":"< 1.3.5"},"type":"conventional"},"perl-image-exiftool-13.52":{"security":true,"name":{"default":"Perl Image::ExifTool 13.52"},"caution":{"default":"Fixes an OS command injection vulnerability - CVE-2026-3102 (Severity: High)","zh_CN":"修复一个操作系统命令注入漏洞，漏洞编号 CVE-2026-3102（严重性：高）"},"packages-v2":{"perl-image-exiftool":"< 13.52"},"type":"conventional"},"perl-json-xs-4.04":{"security":true,"name":{"default":"Perl JSON::XS 4.04"},"caution":{"default":"Fixes a Heap-based Buffer Overflow vulnerability - CVE-2025-40928 (Severity: High)","zh_CN":"修复一处堆缓冲区溢出 (Heap-based Buffer Overflow) 漏洞，漏洞编号 CVE-2025-40928（严重性：高）"},"packages":{"perl-json-xs":"4.04"},"type":"conventional"},"perl-xml-parser-2.51":{"security":true,"name":{"default":"Perl XML::Parser 2.51"},"caution":{"default":"Fixes a Heap-based Buffer Overflow and Improper Handling of Unicode Encoding vulnerability - CVE-2006-10002 (Severity: Critical)","zh_CN":"修复一个堆缓冲区溢出 (Heap-based Buffer Overflow) 及 Unicode 编码处理不当漏洞，漏洞编号 CVE-2006-10002（严重性：严重）"},"packages-v2":{"perl-xml-parser":"< 2.51"},"type":"conventional"},"php-8.5.1":{"security":true,"name":{"default":"PHP 8.5.1"},"caution":{"default":"Fixes 10 security vulnerabilities since PHP 8.4.7 (8 of moderate severity, 2 of low severity)","zh_CN":"修复自 PHP 8.4.7 起的 10 个安全漏洞（8 个中危漏洞，2 个低危漏洞）"},"packages-v2":{"php":"< 1:8.5.1"},"type":"conventional"},"php-8.5.6":{"security":true,"name":{"default":"PHP 8.5.6"},"caution":{"default":"Fixes 10 security vulnerabilities disclosed since PHP 8.5.6 (3 of High, 5 of Medium, and 2 of Low severity)","zh_CN":"修复自 PHP 8.5.6 起披露的 10 个安全漏洞（含 3 个高危、5 个中危及 2 个低危漏洞）"},"packages-v2":{"php":"< 1:8.5.6"},"type":"conventional"},"pip-26.0.1":{"security":true,"name":{"default":"pip 26.0.1"},"caution":{"default":"Fixes a Interpretation Conflict, Misinterpretation of Input, or Unrestricted Upload of File with Dangerous Type vulnerability - CVE-2026-3219 (severity: Medium)","zh_CN":"修复一个解释冲突、错误解析输入或危险类型文件的不加限制上传漏洞，漏洞编号 CVE-2026-3219（严重性：中）"},"packages-v2":{"pip":"< 26.0.1"},"type":"conventional"},"pip-26.1.2":{"security":true,"name":{"default":"pip 26.1.2"},"caution":{"default":"Fixes a Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability (CVE-2026-8643, Severity: Medium)","zh_CN":"修复一个对路径名的限制不恰当（路径遍历）漏洞（漏洞编号 CVE-2026-8643，严重性：中）"},"packages-v2":{"pip":"< 26.1.2"},"type":"conventional"},"podman-5.8.2":{"security":true,"name":{"default":"Podman 5.8.2"},"caution":{"default":"Fixes an OS Command Injection vulnerability (CVE-2026-33414, Severity: High)","zh_CN":"修复一个系统命令注入漏洞（漏洞编号 CVE-2026-33414，严重性：高）"},"packages-v2":{"podman":"< 5.8.2+vsock0.8.8"},"type":"conventional"},"poetry-2.4.0":{"security":true,"name":{"default":"Poetry 2.4.0"},"caution":{"default":"Fixes a path traversal vulnerability (CVE-2026-34591, Severity: Medium)","zh_CN":"修复一个路径穿越漏洞（漏洞编号 CVE-2026-34591，严重性：中）"},"packages-v2":{"poetry":"< 2.4.0"},"type":"conventional"},"poppler-25.07.0":{"security":true,"name":{"default":"Poppler 25.07.0 Security Update","zh_CN":"Poppler 25.07.0 安全更新","zh_TW":"Poppler 25.07.0 安全更新"},"caution":{"default":"Fixes a remote Denial-of-Service vulnerability - CVE-2023-34872 (Severity: Medium)","zh_CN":"修复一处远程拒绝服务攻击漏洞 - CVE-2023-34872（严重性：中）","zh_TW":"修復一處遠端阻斷服務攻擊漏洞 - CVE-2023-34872（嚴重性：中）"},"packages":{"poppler":"25.07.0"},"type":"conventional"},"postgresql-13-13.22":{"security":true,"name":{"default":"PostgreSQL 13.22"},"caution":{"default":"Fixes 3 security vulnerabilities (2 of high severity)","zh_CN":"修复 3 个安全漏洞（含 2 个高危漏洞）"},"packages-v2":{"postgresql-13":"< 13.22"},"type":"conventional"},"postgresql-13-13.23":{"security":true,"name":{"default":"PostgreSQL 13.23"},"caution":{"default":"Fixes an authentication vulnerability on CREATE STATISTICS command (CVE-2025-12817) , an integer wraparound vulnerability on libpq client library (CVE-2025-12818, moderate severity)","zh_CN":"修复 CREATE STATISTICS 语句缺乏鉴权的漏洞 (CVE-2025-12817) 及 libpq 客户端库中的一处整数回绕漏洞 (CVE-2025-12818, 中严重性)"},"packages-v2":{"postgresql-13":"< 13.23"},"type":"conventional"},"postgresql-14-14.19":{"security":true,"name":{"default":"PostgreSQL 14.19"},"caution":{"default":"Fixes 3 security vulnerabilities (2 of high severity)","zh_CN":"修复 3 个安全漏洞（含 2 个高危漏洞）"},"packages-v2":{"postgresql-14":"< 14.19"},"type":"conventional"},"postgresql-14-14.22":{"security":true,"name":{"default":"PostgreSQL 14.22"},"caution":{"default":"Fixes 6 security vulnerabilities (3 of high severity)","zh_CN":"修复 6 个安全漏洞（含 3 个高危漏洞）"},"packages-v2":{"postgresql-14":"< 14.22"},"type":"conventional"},"postgresql-15-15.14":{"security":true,"name":{"default":"PostgreSQL 15.14"},"caution":{"default":"Fixes 3 security vulnerabilities (2 of high severity)","zh_CN":"修复 3 个安全漏洞（含 2 个高危漏洞）"},"packages-v2":{"postgresql-15":"< 15.14"},"type":"conventional"},"postgresql-15-15.17":{"security":true,"name":{"default":"PostgreSQL 15.17"},"caution":{"default":"Fixes 6 security vulnerabilities (3 of high severity)","zh_CN":"修复 6 个安全漏洞（含 3 个高危漏洞）"},"packages-v2":{"postgresql-15":"< 15.17"},"type":"conventional"},"postgresql-16-16.10":{"security":true,"name":{"default":"PostgreSQL 16.10"},"caution":{"default":"Fixes 3 security vulnerabilities (2 of high severity)","zh_CN":"修复 3 个安全漏洞（含 2 个高危漏洞）"},"packages-v2":{"postgresql-16":"< 16.10"},"type":"conventional"},"postgresql-16-16.13":{"security":true,"name":{"default":"PostgreSQL 16.13"},"caution":{"default":"Fixes 6 security vulnerabilities (3 of high severity)","zh_CN":"修复 6 个安全漏洞（含 3 个高危漏洞）"},"packages-v2":{"postgresql-16":"< 16.13"},"type":"conventional"},"postgresql-17-17.6":{"security":true,"name":{"default":"PostgreSQL 17.6"},"caution":{"default":"Fixes 3 security vulnerabilities (2 of high severity)","zh_CN":"修复 3 个安全漏洞（含 2 个高危漏洞）"},"packages-v2":{"postgresql-17":"< 17.6"},"type":"conventional"},"postgresql-17-17.9":{"security":true,"name":{"default":"PostgreSQL 17.9"},"caution":{"default":"Fixes 6 security vulnerabilities (3 of high severity)","zh_CN":"修复 6 个安全漏洞（含 3 个高危漏洞）"},"packages-v2":{"postgresql-17":"< 17.9"},"type":"conventional"},"postgresql-18-18.3":{"security":true,"name":{"default":"PostgreSQL 18.3"},"caution":{"default":"Fixes 7 security vulnerabilities (4 of high severity)","zh_CN":"修复 7 个安全漏洞（含 4 个高危漏洞）"},"packages-v2":{"postgresql-18":"< 18.3"},"type":"conventional"},"postgresql-survey-20260520":{"security":true,"must_match_all":false,"name":{"default":"PostgreSQL Security Update: Version 18.4, 17.10, 16.14, 15.18 and 14.23","zh_CN":"PostgreSQL 安全更新：版本 18.4, 17.10, 16.14, 15.18 及 14.23"},"caution":{"default":"Fixes 11 security vulnerabilities, including 3 SQL injection vulnerabilities (severity: High), one local file overwriting vulnerability (severity: High), one memory overiting vulnerability (severity: High), one arrary out of bounds vulnerability, and 5 medium and low severity vulnerabilities","zh_CN":"修复了 11 个安全漏洞，其中包括三个 SQL 注入漏洞（严重性：高）、一个本地文件覆盖漏洞（严重性：高）、一个内存覆写漏洞（严重性：高）、一个数组索引越界漏洞（严重性：高）以及 5 个中低严重性安全漏洞"},"packages-v2":{"postgresql-14":"< 14.23","postgresql-15":"< 15.18","postgresql-16":"< 16.14","postgresql-17":"< 17.10","postgresql-18":"< 18.4"},"type":"conventional"},"putty-0.84":{"security":true,"must_match_all":false,"name":{"default":"PuTTY 0.84"},"caution":{"default":"Fixes 4 security vulnerabilities (1 of Medium severity)","zh_CN":"修复 4 个安全漏洞（含 1 个中危漏洞）"},"packages-v2":{"putty":"< 0.84"},"type":"conventional"},"python-3-3.10.18":{"security":true,"name":{"default":"Python 3.10.18","zh_CN":"Python 3.10.18"},"caution":{"default":"Fixes a use-after-free vulnerability - CVE-2025-4516 (Severity: Medium)","zh_CN":"修复一处释放后使用 (use-after-free) 漏洞，漏洞编号 CVE-2025-4516（严重性：中）"},"packages":{"python-3":"3.10.18"},"type":"conventional"},"python-3-3.14.4":{"security":true,"name":{"default":"Python 3.14.4"},"caution":{"default":"Fixes 3 security vulnerabilies (severity: Medium)","zh_CN":"修复三个安全漏洞（严重性：中）"},"packages-v2":{"python-3":"< 3.14.4"},"type":"conventional"},"python-3-3.14.5":{"security":true,"name":{"default":"Python 3.14.5"},"caution":{"default":"Fixes a Path Traversal vulnerability (CVE-2026-7774, Severity: Medium)","zh_CN":"修复一个路径穿越漏洞（漏洞编号 CVE-2026-7774，严重性：中）"},"packages-v2":{"python-3":"< 3.14.5"},"type":"conventional"},"python-3.14":{"security":false,"name":{"default":"Python 3.14"},"caution":{"default":"Updates Python to 3.14, including new language and runtime features since Python 3.10","zh_CN":"更新 Python 至 3.14，包含自 Python 3.10 起的各类新语言及运行时特性"},"packages-v2":{"python-3":"< 3.14.2"},"type":"conventional"},"radare2-6.0.7":{"security":true,"name":{"default":"Radare2 6.0.7"},"caution":{"default":"Fixes 10 security vulnerabilities (2 of critical severity, 1 of high severity)","zh_CN":"修复 10 个安全漏洞（含 2 个严重漏洞和 1 个高危漏洞）"},"packages-v2":{"radare2":"<6.0.7"},"type":"conventional"},"radare2-6.1.4":{"security":true,"name":{"default":"Radare2 6.1.4"},"caution":{"default":"Fixes 2 path traversal vulnerabilities (CVE-2026-6940, CVE-2026-6941, Severity: High) and an OS command injection vulnerability (CVE-2026-40517, Severity: High)","zh_CN":"修复 2 个路径遍历漏洞（漏洞编号 CVE-2026-6940 和 CVE-2026-6941，严重性：高）和一个操作系统命令注入漏洞（漏洞编号 CVE-2026-40517，严重性：高）"},"packages-v2":{"radare2":"<6.1.4"},"type":"conventional"},"rclone-1.74.0":{"security":true,"name":{"default":"Rclone 1.74.0"},"caution":{"default":"Fixes 2 Missing Authentication for Critical Function vulnerability (CVE-2026-41176, CVE-2026-41179, Severity: Critical)","zh_CN":"修复了两个关键功能缺少认证的漏洞（CVE-2026-41176、CVE-2026-41179，严重性：严重）"},"packages-v2":{"rclone":"< 1.74.0"},"type":"conventional"},"requests-2.34.2":{"security":true,"name":{"default":"requests 2.34.2"},"caution":{"default":"Fixes an Insecure Temporary File vulnerability (CVE-2026-25645, Severity: Medium)","zh_CN":"修复一个不安全的临时文件漏洞（CVE-2026-25645，严重性：中）"},"packages-v2":{"requests":"< 2.34.2"},"type":"conventional"},"rework-clash-verge-3428":{"security":true,"name":{"default":"Clash Verge Service Security Update","zh_CN":"Clash Verge 服务安全更新"},"caution":{"default":"Fixes a remote code execution vulnerability exploitable via parameter manipulation (clash-verge-service restart or reboot required)","zh_CN":"修复一处可通过操纵程序参数利用的远程代码执行漏洞（更新后请重启 clash-verge-service 服务或重启系统）"},"packages":{"clash-verge-service":"0+git20250324-3"},"type":"conventional"},"rsync-3.4.2":{"security":true,"name":{"default":"rsync 3.4.2"},"caution":{"default":"Fixes a use-after-free vulnerability - CVE-2026-41035 (Severity: High).","zh_CN":"修复一个释放后使用 (use-after-free) 漏洞，漏洞编号 CVE-2026-41035（严重性：高）","zh_TW":"修復一个释放后使用 (use-after-free) 漏洞，漏洞編號 CVE-2026-41035（嚴重性：高）"},"packages-v2":{"rsync":"< 3.4.2"},"type":"conventional"},"rsync-3.4.3":{"security":true,"name":{"default":"rsync 3.4.3"},"caution":{"default":"Fixes 6 security vulnerabilities (2 of high severity)","zh_CN":"修复 6 个的安全漏洞（含 2 个高危漏洞）","zh_TW":"修復 6 個的安全漏洞（含 2 個高危漏洞）"},"packages-v2":{"rsync":"< 3.4.3"},"type":"conventional"},"samba-4.22.1-cve-2025-0620":{"security":true,"name":{"default":"Security Patch for Samba 4.22.1","zh_CN":"适用于 Samba 4.22.1 的安全补丁"},"caution":{"default":"Fixes CVE-2025-0620: smbd (Samba Daemon) doesn't pick up Kerberos group membership changes when re-authenticating an expired SMB session (Severity: High)","zh_CN":"修复编号为 CVE-2025-0620 的安全漏洞：smbd（Samba 守护程序）在重新认证过期 SMB 会话时未识别 Kerberos 组成员身份变更（严重性：高）"},"packages":{"samba":"4.22.1-1"},"type":"conventional"},"samba-4.24.3":{"security":true,"name":{"default":"Samba 4.24.3"},"caution":{"default":"Fixes 6 security vulnerabilities (2 of critical severity, 3 of high severity, 1 of medium severity)","zh_CN":"修复 6 个安全漏洞（含 2 个严重、3 个高危、1 个中危）","zh_TW":"修復 6 個安全漏洞（含 2 個高危、3 個高危、1 個中危）"},"packages-v2":{"samba":"< 4.24.3","ldb":"< 4.24.3"},"type":"conventional"},"samtools-1.23.1":{"security":true,"name":{"default":"SAMtools 1.23.1"},"caution":{"default":"Fixes a NULL Pointer Dereference - CVE-2026-31973 (severity: Moderate)","zh_CN":"修复一个空指针解引用，漏洞编号 CVE-2026-31973（严重性：中）"},"packages-v2":{"samtools":"< 1.23.1"},"type":"conventional"},"screen-5.0.1":{"security":true,"name":{"default":"GNU Screen 5.0.1"},"caution":{"default":"Fixes 5 security vulnerabilities (low severity)","zh_CN":"修复 5 个安全漏洞（低危）"},"packages":{"screen":"5.0.1"},"type":"conventional"},"snapd-2.74.1-cve-2026-3888":{"security":true,"name":{"default":"Snapd 2.74.1, Revision 1","zh_CN":"Snapd 2.74.1，修订版本 1"},"caution":{"default":"Fixes a Local Privilege Escalation vulnerability - CVE-2026-3888 (severity: High)","zh_CN":"修复一个本地提权漏洞，漏洞编号 CVE-2026-3888（严重性：高）"},"packages-v2":{"snapd":"< 2.74.1-1"},"type":"conventional"},"squid-7.5":{"security":true,"name":{"default":"Squid 7.5"},"caution":{"default":"Fixes an Improper Resource Locking vulnerability (CVE-2026-32748, Severity: High), an Out-of-bounds Read vulnerability (CVE-2026-33515, Severity: Medium), and an Use After Free vulnerability (CVE-2026-33526, Severity: High)","zh_CN":"修复了一个资源加锁不恰当漏洞（CVE-2026-32748，严重性：高）、一个越界读取漏洞（CVE-2026-33515，严重性：中），以及一个释放后使用漏洞（CVE-2026-33526，严重性：高）"},"packages-v2":{"squid":"< 7.5"},"type":"conventional"},"sudo-1.9.17p1":{"security":true,"name":{"default":"sudo 1.9.17p1"},"caution":{"default":"Fixes two local-privilege-escalation vulnerabilities - CVE-2025-32462 and CVE-2025-32463 (Severity: High)","zh_CN":"修复两处本地提权 (local-privilege-escalation) 漏洞，漏洞编号 CVE-2025-32462 和 CVE-2025-32463（严重性：高）"},"packages":{"sudo":"1.9.17p1"},"type":"conventional"},"systemd-257.6":{"security":true,"name":{"default":"systemd 257.6","zh_CN":"systemd 257.6"},"caution":{"default":"Fixes a local privilege escalation vulnerability - CVE-2025-4598 (Severity: High)","zh_CN":"修复一处本地提权漏洞，漏洞编号 CVE-2025-4598（严重性：高）"},"packages":{"systemd":"1:257.6"},"type":"conventional"},"systemd-enable-all-sysrq":{"security":false,"name":{"default":"systemd default SysRq config update","zh_CN":"systemd SysRq 默认设置更新"},"caution":{"default":"Enabled all except debugging dump Magic SysRq keys by default","zh_CN":"默认启用除调试转储以外的所有 SysRq 组合键"},"packages":{"systemd":"1:257.6-1"},"type":"conventional"},"thunderbird-137.0.1":{"security":true,"name":{"default":"Thunderbird 137.0"},"caution":{"default":"Fixes 7 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-23 (3 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-23 号安全公告中披露的 7 个安全漏洞（含 3 个高危漏洞）"},"packages":{"thunderbird":"137.0.1"},"type":"conventional"},"thunderbird-137.0.2":{"security":true,"name":{"default":"Thunderbird 137.0.2"},"caution":{"default":"Fixes 3 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-26 (2 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-26 号安全公告中披露的 3 个安全漏洞（含 2 个高危漏洞）"},"packages":{"thunderbird":"137.0.2"},"type":"conventional"},"thunderbird-138.0":{"security":true,"name":{"default":"Thunderbird 138.0"},"caution":{"default":"Fixes 11 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-31 (4 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-31 号安全公告中披露的 11 个安全漏洞（含 4 个高危漏洞）"},"packages":{"thunderbird":"138.0"},"type":"conventional"},"thunderbird-139.0":{"security":true,"name":{"default":"Thunderbird 139.0"},"caution":{"default":"Fixes 10 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-45 (1 of critical severity)","zh_CN":"修复 Mozilla 基金会第 2025-45 号安全公告中披露的 10 个安全漏洞（含 1 个严重漏洞）"},"packages":{"thunderbird":"139.0"},"type":"conventional"},"thunderbird-140.0":{"security":true,"name":{"default":"Thunderbird 140.0"},"caution":{"default":"Fixes 10 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-54 (2 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-54 号安全公告中披露的 10 个安全漏洞（含 2 个高危漏洞）"},"packages":{"thunderbird":"140.0"},"type":"conventional"},"thunderbird-141.0":{"security":true,"name":{"default":"Thunderbird 141.0"},"caution":{"default":"Fixes 16 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-61 (6 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-61 号安全公告中披露的 16 个安全漏洞（含 6 个高危漏洞）"},"packages":{"thunderbird":"141.0"},"type":"conventional"},"thunderbird-142.0":{"security":true,"name":{"default":"Thunderbird 142.0"},"caution":{"default":"Fixes 6 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-70 (5 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-70 号安全公告中披露的 6 个安全漏洞（含 5 个高危漏洞）"},"packages":{"thunderbird":"142.0"},"type":"conventional"},"thunderbird-143.0":{"security":true,"name":{"default":"Thunderbird 143.0"},"caution":{"default":"Fixes 9 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-77 (3 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-77 号安全公告中披露的 9 个安全漏洞（含 3 个高危漏洞）"},"packages":{"thunderbird":"143.0"},"type":"conventional"},"thunderbird-144.0":{"security":true,"name":{"default":"Thunderbird 144.0"},"caution":{"default":"Fixes 9 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-84 (7 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-84 号安全公告中披露的 9 个安全漏洞（含 7 个高危漏洞）"},"packages-v2":{"thunderbird":"< 144.0"},"type":"conventional"},"thunderbird-145.0":{"security":true,"name":{"default":"Thunderbird 145.0"},"caution":{"default":"Fixes 16 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-90 (9 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-90 号安全公告中披露的 16 个安全漏洞（含 9 个高危漏洞）"},"packages-v2":{"thunderbird":"< 145.0"},"type":"conventional"},"thunderbird-146.0.1":{"security":true,"name":{"default":"Thunderbird 146.0.1"},"caution":{"default":"Fixes 13 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2025-95 (5 of high severity)","zh_CN":"修复 Mozilla 基金会第 2025-95 号安全公告中披露的 13 个安全漏洞（含 5 个高危漏洞）"},"packages-v2":{"thunderbird":"< 146.0.1"},"type":"conventional"},"thunderbird-147.0.1":{"security":true,"name":{"default":"Thunderbird 147.0.1"},"caution":{"default":"Fixes 1 moderate security vulnerability disclosed in Mozilla Foundation Security Advisory 2026-07","zh_CN":"修复 Mozilla 基金会第 2026-07 号安全公告中披露的 1 个中危安全漏洞"},"packages-v2":{"thunderbird":"< 147.0.1"},"type":"conventional"},"thunderbird-147.0":{"security":true,"name":{"default":"Thunderbird 147.0"},"caution":{"default":"Fixes 16 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2026-04 (8 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-04 号安全公告中披露的 16 个安全漏洞（含 8 个高危漏洞）"},"packages-v2":{"thunderbird":"< 147.0"},"type":"conventional"},"thunderbird-148.0":{"security":true,"name":{"default":"Thunderbird 148.0"},"caution":{"default":"Fixes 50 security vulnerability disclosed in Mozilla Foundation Security Advisory 2026-16 (30 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-16 号安全公告中披露的 50 个安全漏洞（含 30 个高危漏洞）"},"packages-v2":{"thunderbird":"< 148.0"},"type":"conventional"},"thunderbird-149.0":{"security":true,"name":{"default":"Thunderbird 149.0"},"caution":{"default":"Fixes 48 security vulnerability disclosed in Mozilla Foundation Security Advisory 2026-23 (21 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-23 号安全公告中披露的 48 个安全漏洞（含 21 个高危漏洞）"},"packages-v2":{"thunderbird":"< 149.0"},"type":"conventional"},"thunderbird-150.0":{"security":true,"name":{"default":"Thunderbird 150.0"},"caution":{"default":"Fixes 40 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2026-33 (12 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-33 号安全公告中披露的 40 个安全漏洞（含 12 个高危漏洞）"},"packages-v2":{"thunderbird":"< 150.0"},"type":"conventional"},"thunderbird-151.0":{"security":true,"name":{"default":"Thunderbird 151.0"},"caution":{"default":"Fixes 29 security vulnerabilities disclosed in Mozilla Foundation Security Advisory 2026-50 (5 of high severity)","zh_CN":"修复 Mozilla 基金会第 2026-50 号安全公告中披露的 29 个安全漏洞（含 5 个高危漏洞）"},"packages-v2":{"thunderbird":"< 151.0"},"type":"conventional"},"tigervnc-1.15.0-xserver21.1.17":{"security":true,"name":{"default":"TigerVNC builtin X.Org Server Update","zh_CN":"TigerVNC 内建 X.Org Server 更新"},"caution":{"default":"Fixes 6 security vulnerabilities disclosed in X.Org's Security Advisory on June 17, 2025","zh_CN":"修复 X.Org 在 2025 年 6 月 17 日的安全公告中披露的 6 个安全漏洞"},"packages":{"tigervnc":"1.15.0+xserver21.1.17"},"type":"conventional"},"tigervnc-1.15.0-xserver21.1.18":{"security":true,"name":{"default":"TigerVNC builtin X.Org Server Update","zh_CN":"TigerVNC 内建 X.Org Server 更新"},"caution":{"default":"Fixes 6 security vulnerabilities disclosed in X.Org's Security Advisory on June 17, 2025","zh_CN":"修复 X.Org 在 2025 年 6 月 17 日的安全公告中披露的 6 个安全漏洞"},"packages":{"tigervnc":"1.15.0+xserver21.1.18"},"type":"conventional"},"tigervnc-1.15.0-xserver21.1.19":{"security":true,"name":{"default":"TigerVNC builtin X.Org Server Update","zh_CN":"TigerVNC 内建 X.Org Server 更新"},"caution":{"default":"Fixes 3 zero-day security vulnerabilities disclosed in X.Org's Security Advisory on October 28, 2025","zh_CN":"修复 X.Org 在 2025 年 10 月 28 日的安全公告中披露的 3 个零日 (0-day) 安全漏洞"},"packages-v2":{"tigervnc":"< 1.15.0+xserver21.1.19"},"type":"conventional"},"tigervnc-1.16.2-xserver21.1.21":{"security":true,"name":{"default":"TigerVNC 1.16.2"},"caution":{"default":"Fixes a Denial-of-Service vulnerability - CVE-2026-34352 (Severity: High)","zh_CN":"修复一个拒绝服务漏洞，漏洞编号 CVE-2026-34352（严重性：高）"},"packages-v2":{"tigervnc":"< 1.16.2+xserver21.1.21"},"type":"conventional"},"tornado-6.5.5":{"security":true,"name":{"default":"Tornado 6.5.5"},"caution":{"default":"Fixes an Uncontrolled Resource Consumption vulnerability (CVE-2026-31958, Severity: High) and an Improper Handling of Invalid Use of Special Elements vulnerability (CVE-2026-35536, Severity: High)","zh_CN":"修复一个未加控制的资源消耗漏洞（漏洞编号 CVE-2026-31958，严重性：高）和一个特殊元素净化处理不恰当漏洞（漏洞编号 CVE-2026-35536，严重性：高）"},"packages-v2":{"tornado":"< 6.5.5"},"type":"conventional"},"uboot-tools-2025.04":{"security":true,"name":{"default":"U-Boot Utilities 2025.04","zh_CN":"U-Boot 实用工具 2025.04"},"caution":{"default":"Fixes multiple security vulnerabilities (5 of high severity, 1 low)","zh_CN":"修复多个安全漏洞（含 5 个高危漏洞，1 个低危漏洞）"},"packages":{"uboot-tools":"2025.04"},"type":"conventional"},"udisks-2-2.10.2":{"security":true,"name":{"default":"UDisks 2.10.2"},"caution":{"default":"Fixes an out-of-bounds read vulnerability - CVE-2025-8067 (Severity: High)","zh_CN":"修复一处越界读取 (out-of-bounds read) 漏洞，漏洞编号 CVE-2025-8067（严重性：高）"},"packages":{"udisks-2":"2.10.2"},"type":"conventional"},"ujson-5.12.0":{"security":true,"name":{"default":"ujson 5.12.0"},"caution":{"default":"Fixes a DoS vulnerability caused by memory leaks (CVE-2026-32874, Severity: High) and an Integer Overflow vulnerability (CVE-2026-32875, Severity: High)","zh_CN":"修复一个内存泄漏导致的拒绝服务漏洞（漏洞编号 CVE-2026-32874，严重性：高）和一个整数溢出漏洞（漏洞编号 CVE-2026-32875，严重性：高）"},"packages-v2":{"ujson":"< 5.12.0"},"type":"conventional"},"unbound-1.23.1":{"security":true,"name":{"default":"Unbound 1.23.1+icannbundle20210902"},"caution":{"default":"Fixes 3 security vulnerabilities (1 each of high, medium and low severities)","zh_CN":"修复 3 个安全漏洞（高危、中危、低危各一个）"},"packages":{"unbound":"1.23.1+icannbundle20210902"},"type":"conventional"},"unbound-1.24.2":{"security":true,"name":{"default":"Unbound 1.24.2"},"caution":{"default":"Fixes a possible domain hijack vulnerability - CVE-2025-11411 (severity: moderate)","zh_CN":"修复一个潜在域名劫持漏洞，漏洞编号 CVE-2025-11411（严重性：中等）"},"packages-v2":{"unbound":"< 1.24.2+icannbundle20210902"},"type":"conventional"},"uriparser-1.0.0":{"security":true,"name":{"default":"uriparser 1.0.0 Security Update","zh_CN":"uriparser 1.0.0 安全更新"},"caution":{"default":"Fixes a Denial of Service (DoS) vulnerability - CVE-2025-67899 (Severity: Low)","zh_CN":"修复一处拒绝服务 (Denial of Service, DoS) 漏洞，漏洞编号 CVE-2025-67899（严重性：低）"},"packages-v2":{"uriparser":"< 1.0.0"},"type":"conventional"},"uriparser-1.0.1":{"security":true,"name":{"default":"uriparser 1.0.1"},"caution":{"default":"Fixes a numeric truncation vulnerability - CVE-2026-42371 (severity: Medium)","zh_CN":"修复一个数字截断漏洞，漏洞编号 CVE-2026-42371（严重性：中）"},"packages-v2":{"uriparser":"< 1.0.1"},"type":"conventional"},"uriparser-1.0.2":{"security":true,"name":{"default":"uriparser 1.0.2"},"caution":{"default":"Fixes a numeric truncation vulnerability (CVE-2026-44927, Severity: Low) and a Always-Incorrect Control Flow Implementation vulnerability (CVE-2026-44928, Severity: Low)","zh_CN":"修复一个数值截断漏洞（CVE-2026-44927，严重性：低）和一个控制流实现错误漏洞（CVE-2026-44928，严重性：低）"},"packages-v2":{"uriparser":"< 1.0.2"},"type":"conventional"},"urllib3-2.7.0":{"security":true,"name":{"default":"urllib3 2.7.0"},"caution":{"default":"Fixes an Exposure of Sensitive Information to an Unauthorized Actor vulnerability (CVE-2026-44431, severity: Medium) and a Data Amplification vulnerability (CVE-2026-44432, severity: High) ","zh_CN":"修复一个向未鉴权角色暴露敏感信息的漏洞（CVE-2026-44431，严重性：中）和一个数据放大漏洞（CVE-2026-44432，严重性：高）"},"packages-v2":{"urllib3":"< 2.7.0"},"type":"conventional"},"usbredir-0.15.0":{"security":true,"name":{"default":"usbredir 0.15.0"},"caution":{"default":"Fixes an Use After Free vulnerability (CVE-2021-3700, Severity: Medium)","zh_CN":"修复一个释放后使用漏洞（CVE-2021-3700，严重性：中）"},"packages-v2":{"usbredir":"< 0.15.0"},"type":"conventional"},"util-linux-2.42":{"security":true,"must_match_all":false,"name":{"default":"util-linux 2.42"},"caution":{"default":"Fixes a TOCTOU (Time-Of-Check to Time-of-Use) race condition vulnerability - CVE-2026-27456 (severity: Medium)","zh_CN":"修复一处 TOCTOU（检查到使用时间）竞态条件漏洞，漏洞编号 CVE-2026-27456（严重性：中）"},"packages-v2":{"util-linux":"< 2.42","util-linux+32":"< 2.42"},"type":"conventional"},"uv-0.8.6":{"security":true,"name":{"default":"uv 0.8.6"},"caution":{"default":"Fixes a vulnerability that enables malicious ZIP content to be extracted via package installers due to parsing differentials - CVE-2025-54368 (Severity: Medium)","zh_CN":"修复一处利用解析实现差异导致某些组件包安装器解压有害 ZIP 内容的漏洞，漏洞编号 CVE-2025-54368（严重性：中）"},"packages":{"uv":"0.8.6"},"type":"conventional"},"vim-9.2.0209":{"security":true,"name":{"default":"Vim 9.2.0209"},"caution":{"default":"Fixes a OS Command Injection vulnerability - CVE-2026-33412 (severity: Medium)","zh_CN":"修复一个操作系统命令注入 (OS Command Injection) 漏洞，漏洞编号 CVE-2026-33412（严重性：中）"},"packages-v2":{"vim":"< 9.2.0209"},"type":"conventional"},"vim-9.2.0272":{"security":true,"name":{"default":"Vim 9.2.0272"},"caution":{"default":"Fixes an arbitrary OS command execution vulnerability (severity: High)","zh_CN":"修复一个任意操作系统命令执行 (Arbitrary OS Command Execution) 漏洞（严重性：高）"},"packages-v2":{"vim":"< 9.2.0272"},"type":"conventional"},"vim-9.2.0277":{"security":true,"name":{"default":"Vim 9.2.0277"},"caution":{"default":"Fixes a remote code execution vulnerability (CVE-2026-34982, Severity: High)","zh_CN":"修复一个远程代码执行漏洞（漏洞编号 CVE-2026-34982，严重性：高）"},"packages-v2":{"vim":"< 9.2.0277"},"type":"conventional"},"vim-9.2.0280":{"security":true,"name":{"default":"Vim 9.2.0280"},"caution":{"default":"Fixes a Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability (CVE-2026-35177, Severity: Low)","zh_CN":"修复一个对路径名的限制不恰当（路径遍历）漏洞（漏洞编号 CVE-2026-35177，严重性：低）"},"packages-v2":{"vim":"< 9.2.0280"},"type":"conventional"},"vim-9.2.0437":{"security":true,"name":{"default":"Vim 9.2.0437"},"caution":{"default":"Fixes a OS Command Injection vulnerability (CVE-2026-44656, Severity: Medium)","zh_CN":"修复一个系统命令注入漏洞（漏洞编号 CVE-2026-44656，严重性：中）"},"packages-v2":{"vim":"< 9.2.0437"},"type":"conventional"},"vim-9.2.0478":{"security":true,"name":{"default":"Vim 9.2.0478"},"caution":{"default":"Fixes a Heap Buffer Overflow vulnerability (CVE-2026-45130, Severity: Medium)","zh_CN":"修复一个堆缓冲区溢出漏洞（漏洞编号 CVE-2026-45130，严重性：中）"},"packages-v2":{"vim":"< 9.2.0478"},"type":"conventional"},"vim-9.2.0502":{"security":true,"name":{"default":"Vim 9.2.0502"},"caution":{"default":"Fixes 4 Code Injection vulnerabilities","zh_CN":"修复 4 个代码注入漏洞"},"packages-v2":{"vim":"< 9.2.0502"},"type":"conventional"},"vim-9.2.5086":{"security":true,"name":{"default":"Vim 9.2.0586"},"caution":{"default":"Fixes 2 Out-of-bounds Read vulnerability (Severity: Moderate) and a Code Injection vulnerability (Severity: Moderate)","zh_CN":"修复 2 个越界读溢出漏洞（严重性：中）和 1 个代码注入漏洞（严重性：中）"},"packages-v2":{"vim":"< 9.2.0586"},"type":"conventional"},"virtualbox-7.1.8":{"security":true,"name":{"default":"Oracle VM VirtualBox 7.1.8"},"caution":{"default":"Fixes 3 security vulnerabilities disclosed in Oracle Critical Patch Update Advisory - April 2025 (1 of high severity)","zh_CN":"修复 Oracle 重要更新公告（2025 年 4 月）中披露的 3 个安全漏洞（含 1 个高危漏洞）"},"packages":{"virtualbox":"7.1.8"},"type":"conventional"},"w3m-0.5.6":{"security":true,"name":{"default":"w3m 0.5.6"},"caution":{"default":"Fixes 2 Out-of-Bounds Read vulnerability (CVE-2023-38252 and CVE-2023-38253, Severity: Medium)","zh_CN":"修复 2 个越界读取漏洞（漏洞编号 CVE-2023-38252、CVE-2023-38253，严重性：中）"},"packages-v2":{"w3m":"< 0.5.6"},"type":"conventional"},"webkit2gtk-2.48.3":{"security":true,"name":{"default":"WebKitGTK 2.48.3"},"caution":{"default":"Fixes 16 security vulnerabilities disclosed in WebKitGTK and WPE WebKit Security Advisories WSA-2025-0002, WSA-2025-0003, and WSA-2025-0004 (2 of critical, 6 of high severity)","zh_CN":"修复 WebKitGTK 及 WPE WebKit 第 WSA-2025-0002、WSA-2025-0003 及 WSA-2025-0004 号安全公告中披露的 16 个安全漏洞（含 2 个严重、6 个高危漏洞）"},"packages":{"webkit2gtk":"1:2.48.3"},"type":"conventional"},"webkit2gtk-2.48.5":{"security":true,"name":{"default":"WebKitGTK 2.48.6"},"caution":{"default":"Fixes 10 security vulnerabilities disclosed in WebKitGTK and WPE WebKit Security Advisories WSA-2025-0005","zh_CN":"修复 WebKitGTK 及 WPE WebKit 第 WSA-2025-0005 号安全公告中披露的 10 个安全漏洞"},"packages":{"webkit2gtk":"1:2.48.6"},"type":"conventional"},"webkit2gtk-2.50.0":{"security":true,"name":{"default":"WebKitGTK 2.50.0"},"caution":{"default":"Fixes 4 security vulnerabilities disclosed in WebKitGTK and WPE WebKit Security Advisories WSA-2025-0006 (Severity: Critical)","zh_CN":"修复 WebKitGTK 及 WPE WebKit 第 WSA-2025-0006 号安全公告中披露的 4 个安全漏洞（严重性：严重）"},"packages-v2":{"webkit2gtk":"< 1:2.50.0"},"type":"conventional"},"webkit2gtk-2.50.2":{"security":true,"name":{"default":"WebKitGTK 2.50.2"},"caution":{"default":"Fixes 10 security vulnerabilities disclosed in WebKitGTK and WPE WebKit Security Advisories WSA-2025-0008 (Severity: High)","zh_CN":"修复 WebKitGTK 及 WPE WebKit 第 WSA-2025-0008 号安全公告中披露的 10 个安全漏洞（严重性：高）"},"packages-v2":{"webkit2gtk":"< 1:2.50.2"},"type":"conventional"},"webkit2gtk-2.50.3":{"security":true,"name":{"default":"WebKitGTK 2.50.3"},"caution":{"default":"Fixes 5 security vulnerabilities disclosed in WebKitGTK and WPE WebKit Security Advisories WSA-2025-0009 (Severity: High)","zh_CN":"修复 WebKitGTK 及 WPE WebKit 第 WSA-2025-0009 号安全公告中披露的 5 个安全漏洞（严重性：高）"},"packages-v2":{"webkit2gtk":"< 1:2.50.3"},"type":"conventional"},"werkzeug-3.1.8":{"security":true,"name":{"default":"Werkzeug 3.1.8"},"caution":{"default":"Fixes 3 improper handling of device names vulnerabilities (CVE-2025-66221, CVE-2026-21860, and CVE-2026-27199, Severity: Medium)","zh_CN":"修复 3 个设备名处理不当漏洞（CVE-2025-66221、CVE-2026-21860 和 CVE-2026-27199，严重性：中）"},"packages-v2":{"werkzeug":"< 3.1.8"},"type":"conventional"},"wireshark-4.6.2":{"security":true,"name":{"default":"Wireshark 4.6.2"},"caution":{"default":"Fixes 2 Denial of Service (DoS) vulnerabilities (severity: medium)","zh_CN":"修复 2 个的拒绝服务（DoS）漏洞（严重性：中等）"},"packages-v2":{"wireshark":"< 4.6.2"},"type":"conventional"},"wireshark-4.6.4":{"security":true,"name":{"default":"Wireshark 4.6.4"},"caution":{"default":"7 security vulnerabilities of medium severity","zh_CN":"修复 7 个中危安全漏洞"},"packages-v2":{"wireshark":"< 4.6.4"},"type":"conventional"},"woflssl-5.9.1":{"security":true,"name":{"default":"wolfSSL 5.9.1"},"caution":{"default":"Fixes 38 security vulnerabilities (including 9 of Critical severity, 14 of High, and 13 of Medium severity)","zh_CN":"修复 38 个安全漏洞（含 9 个严重漏洞、14 个高危漏洞和 13 个中危漏洞）"},"packages-v2":{"wolfssl":"< 5.9.1"},"type":"conventional"},"wolfssl-5.8.4":{"security":true,"name":{"default":"wolfSSL 5.8.4"},"caution":{"default":"Fixes 5 security vulnerabilities (including 1 of Critical, 1 of High, and 3 of Medium severity)","zh_CN":"修复 5 个安全漏洞（含 1 个严重漏洞、1 个高危漏洞和 3 个中危漏洞）"},"packages-v2":{"wolfssl":"< 5.8.4"},"type":"conventional"},"x11-app-xkbcomp-1.5.0":{"security":true,"name":{"default":"XKB Keymap Compiler (xkbcomp) 1.5.0","zh_CN":"XKB 键盘布局编译器 (xkbcomp) 1.5.0"},"caution":{"default":"Fixes 4 security vulnerabilities in xkbcomp(1) (4 of moderate severity)","zh_CN":"修复 xkbcomp(1) 中的 4 个安全漏洞（严重性：中）"},"packages-v2":{"x11-app":"< 7.7.20251203"},"type":"conventional"},"x11vnc-0.9.17":{"security":true,"name":{"default":"x11vnc 0.9.17"},"caution":{"default":"Fixes an Incorrect Permission Assignment for Critical Resource vulnerability (CVE-2020-29074, Severity: High)","zh_CN":"修复一个关键资源权限分配错误漏洞（CVE-2020-29074，严重性：高）"},"packages-v2":{"x11vnc":"< 0.9.17"},"type":"conventional"},"xerces-c-3.3.0":{"security":true,"name":{"default":"Xerces-C 3.3.0"},"caution":{"default":"Fixes a out-of-bounds read vulnerability (CVE-2023-37536, Severity: High) and a use-after-free vulnerability  (CVE-2024-23807, Severity: Critical)","zh_CN":"修复一个越界读取漏洞 (CVE-2023-37536，严重性：高) 和一个释放后使用漏洞 (CVE-2024-23807，严重性：严重)"},"packages-v2":{"xerces-c":"< 3.3.0"},"type":"conventional"},"xorg-server-21.1.17":{"security":true,"name":{"default":"X.Org Server 21.1.17"},"caution":{"default":"Fixes 6 security vulnerabilities disclosed in X.Org's Security Advisory on June 17, 2025","zh_CN":"修复 X.Org 在 2025 年 6 月 17 日的安全公告中披露的 6 个安全漏洞"},"packages":{"xorg-server":"21.1.17"},"type":"conventional"},"xorg-server-21.1.18":{"security":true,"name":{"default":"X.Org Server 21.1.18"},"caution":{"default":"Fixes 6 security vulnerabilities disclosed in X.Org's Security Advisory on June 17, 2025","zh_CN":"修复 X.Org 在 2025 年 6 月 17 日的安全公告中披露的 6 个安全漏洞"},"packages":{"xorg-server":"21.1.18"},"type":"conventional"},"xorg-server-21.1.19":{"security":true,"name":{"default":"X.Org Server 21.1.19"},"caution":{"default":"Fixes 3 zero-day security vulnerabilities disclosed in X.Org's Security Advisory on October 28, 2025","zh_CN":"修复 X.Org 在 2025 年 10 月 28 日的安全公告中披露的 3 个零日 (0-day) 安全漏洞"},"packages-v2":{"xorg-server":"< 21.1.19"},"type":"conventional"},"xorg-server-21.1.23":{"security":true,"must_match_all":false,"name":{"default":"X.Org Server 21.1.23"},"caution":{"default":"Fixes 9 security vulnerabilities disclosed in X.Org's Security Advisory on June 2, 2026","zh_CN":"修复 X.Org 在 2026 年 6 月 2 日的安全公告中披露的 9 个安全漏洞"},"packages-v2":{"tigervnc":"< 1.16.2+xserver21.1.23","xorg-server":"< 21.1.23"},"type":"conventional"},"xrdp-0.10.6":{"security":true,"name":{"default":"xrdp 0.10.6"},"caution":{"default":"Fixes 9 security vulnerabilities (including 4 of Critical, 3 of High, and 2 of Medium severity)","zh_CN":"修复 9 个安全漏洞（含 4 个严重漏洞、3 个高危漏洞和 2 个中危漏洞）"},"packages-v2":{"xrdp":"< 0.10.6"},"type":"conventional"},"xwayland-24.1.12":{"security":true,"name":{"default":"Xwayland 24.1.12"},"caution":{"default":"Fixes 9 security vulnerabilities disclosed in X.Org's Security Advisory on June 2, 2026","zh_CN":"修复 X.Org 在 2026 年 6 月 2 日的安全公告中披露的 9 个安全漏洞"},"packages-v2":{"xwayland":"< 24.1.12"},"type":"conventional"},"xwayland-24.1.7":{"security":true,"name":{"default":"Xwayland 24.1.7"},"caution":{"default":"Fixes 6 security vulnerabilities disclosed in X.Org's Security Advisory on June 17, 2025","zh_CN":"修复 X.Org 在 2025 年 6 月 17 日的安全公告中披露的 6 个安全漏洞"},"packages":{"xwayland":"24.1.7"},"type":"conventional"},"xwayland-24.1.8":{"security":true,"name":{"default":"Xwayland 24.1.8"},"caution":{"default":"Fixes 6 security vulnerabilities disclosed in X.Org's Security Advisory on June 17, 2025","zh_CN":"修复 X.Org 在 2025 年 6 月 17 日的安全公告中披露的 6 个安全漏洞"},"packages":{"xwayland":"24.1.8"},"type":"conventional"},"xwayland-24.1.9":{"security":true,"name":{"default":"Xwayland 24.1.9"},"caution":{"default":"Fixes 3 zero-day security vulnerabilities disclosed in X.Org's Security Advisory on October 28, 2025","zh_CN":"修复 X.Org 在 2025 年 10 月 28 日的安全公告中披露的 3 个零日 (0-day) 安全漏洞"},"packages-v2":{"xwayland":"< 24.1.9"},"type":"conventional"},"xz-5.8.1":{"security":true,"name":{"default":"XZ (liblzma) 5.8.1 Security Update","zh_CN":"XZ (liblzma) 5.8.1 安全更新"},"caution":{"default":"Fixes a use-after-free vulnerability - CVE-2025-31115 (Severity: High)","zh_CN":"修复一处释放后使用 (use-after-free) 漏洞，漏洞编号 CVE-2025-31115（严重性：高）"},"packages":{"xz":"5.8.1","xz+32":"5.8.1"},"type":"conventional"},"xz-5.8.3":{"security":true,"must_match_all":false,"name":{"default":"XZ 5.8.3"},"caution":{"default":"Fixes a buffer overflow vulnerability - CVE-2026-34743","zh_CN":"修复一个缓冲区溢出漏洞，漏洞编号 CVE-2026-34743"},"packages-v2":{"xz":"< 5.8.3","xz+32":"< 5.8.3"},"type":"conventional"},"zlib-rvv-fix-chunkcopy":{"security":false,"name":{"default":"AOSC OS Core 12.1.1","zh_CN":"安同 OS 核心包 12.1.1"},"caution":{"default":"Fixes application crashes on RISC-V platforms with RVV instructions","zh_CN":"修复搭载 RVV 指令集扩展的 RISC-V 设备上部分应用程序崩溃的问题"},"packages":{"aosc-aaa":"12.1.1","zlib":"1:2.2.4-1"},"type":"conventional"}}