CVE-2026-34179 | Canonical LXD up to 5.0.6/5.21.4/6.7.x TLS Certificate lxd/certificates.go doCertificateUpdate Type dynamically-determined object attributes

Inserito da Angelo Barbosa | Apr 9, 2026 | CVE

A vulnerability classified as critical was found in Canonical LXD up to 5.0.6/5.21.4/6.7.x. Affected by this vulnerability is the function doCertificateUpdate of the file lxd/certificates.go of the component TLS Certificate Handler. Such manipulation of the argument Type leads to dynamically-determined object attributes.

This vulnerability is referenced as CVE-2026-34179. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-34179 | Canonical LXD up to 5.0.6/5.21.4/6.7.x TLS Certificate lxd/certificates.go doCertificateUpdate Type dynamically-determined object attributes

Post correlati

CVE-2024-56738 | GNU Grub2 up to 2.12 grub_crypto_memcmp timing discrepancy

CVE-2025-15537 | Mapnik up to 4.2.0 dbfile.cpp string_value heap-based overflow (Issue 4543)

CVE-2024-40593 | Fortinet FortiAnalyzer/FortiOS/FortiPortal Private Key key management (FG-IR-24-133)

CVE-2024-11325 | Optin Cat AWeber Forms Plugin up to 2.5.7 on WordPress cross site scripting