I clicked a random one: https://www.cve.org/CVERecord?id=CVE-2026-35344

Quote from the CVE description: "The dd utility in uutils coreutils suppresses errors during file truncation [...] This can lead to silent data corruption in backup or migration scripts, as the utility may report a successful operation even when the destination file contains old or garbage data."

That's terrifying. There's more to bugs than security bugs. You'd expect coreutils to be as bug-free as possible.