UBUNTU-CVE-2026-3836

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2026-3836

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3836.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-3836

Upstream

CVE-2026-3836

Published

2026-03-26T00:00:00Z

Modified

2026-05-20T16:25:37.817761641Z

Severity

Ubuntu - medium

Summary

[none]

Details

[Unknown description]

References

Affected packages

Ubuntu:26.04:LTS / dnf5

Package

Name: dnf5
Purl: pkg:deb/ubuntu/dnf5?arch=source&distro=resolute

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.4.0.0-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "5.4.0.0-1",
            "binary_name": "dnf5"
        },
        {
            "binary_version": "5.4.0.0-1",
            "binary_name": "dnf5-server"
        },
        {
            "binary_version": "5.4.0.0-1",
            "binary_name": "libdnf5-2"
        },
        {
            "binary_version": "5.4.0.0-1",
            "binary_name": "libdnf5-cli3"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-3836.json"