ProjectGlasswing Disclosure Vulnerability Security Update Advisory (Anthropic)
Overview Anthropic has announced a number of major open source software vulnerabilities in the course of its ProjectGlasswing effort. Affected Products the affected products are NGINX Open Source, NGINX Plus, jq, MapServer, Temporal Server, wolfSSL, HashiCorp Nomad / Nomad Enterprise, libyang, Craft CMS, Mastodon, gix / gitoxide, junrar, FreeRDP, Ghost,
WolfSSL Product Security Update Advisory
Overview a security update has been released to address a vulnerability in the wolfSSL product. the target is wolfSSL version 5.9.1 and earlier. Affected Vulnerabilities CVE-2026-5446: ARIA-GCM nonce reuse vulnerability in wolfSSL. CVE-2026-5447: Heap buffer overflow vulnerability in wolfSSL X.509 certificate handling. CVE-2026-5448: Buffer overflow vulnerability in the wolfSSL OpenSSL-compatible
