Slackware Linux 15.0 / current sqlite Vulnerability (SSA:2025-290-02)

The version of sqlite installed on the remote host is prior to 3.50.4. It is, therefore, affected by a vulnerability as referenced in the SSA:2025-290-02 advisory. New sqlite packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the preceding...

Slackware: Security Advisory (SSA:2025-291-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2025-290-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] stunnel

New stunnel packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/stunnel-5.76-i586-1slack15.0.txz: Upgraded. Service-level multivalued options now override rather than append to global defaults,...

[slackware-security] libarchive

New libarchive packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.8.2-i586-1slack15.0.txz: Upgraded. This update contains security fixes and improvements: 7zip: Fix out of boundary...

CVE-2025-62511

yt-grabber-tui is a C++ terminal user interface application for downloading YouTube content. yt-grabber-tui version 1.0 contains a Time-of-Check to Time-of-Use TOCTOU race condition CWE-367 in the creation of the default configuration file config.json. In version 1.0, loadjsonsettings in...

Adobe Illustrator Out-of-Bounds Write Vulnerability (CNVD-2025-24392)

Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. An out-of-bounds write vulnerability exists in Adobe Illustrator, which can be exploited by an attacker to cause arbitrary code to be executed in the current user's environment...

Adobe Dimension Input Validation Error Vulnerability (CNVD-2025-24213)

Adobe Dimension is the United States of America Odo than Adobe company is a set of 2D and 3D composite design tools. An input validation error vulnerability exists in Adobe Dimension, which can be exploited by an attacker to cause arbitrary code execution in the current user environment...

Adobe Framemaker Code Execution Vulnerability

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A security vulnerability exists in Adobe Framemaker version 2020.9, 2022.7, and prior versions, which can be...

Matrix Authentication Service 安全漏洞

Matrix Authentication Service is a user management and authentication system from Element Open Source. A security vulnerability exists in Matrix Authentication Service versions 0.20.0 through 1.4.0, which stems from a logic flaw that could allow an attacker to perform sensitive operations without...

CVE-2025-54283

Illustrator versions 29.7, 28.7.9 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-59269

A stored cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2025-54268

CVE-2025-54268 affects Adobe Bridge versions 14.1.8, 15.1.1 and earlier and is described as a heap-based buffer overflow that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (the user must open a malicious file). Multiple connected s...

Slackware Linux 15.0 / current mozilla-thunderbird Multiple Vulnerabilities (SSA:2025-287-02)

The version of mozilla-thunderbird installed on the remote host is prior to 140.4.0esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2025-287-02 advisory. New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues...

Adobe Bridge 安全漏洞

Adobe Bridge is a file viewer from the American company Audobee Adobe. Adobe Bridge suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to cause arbitrary code to be executed in the current user's environment...

Adobe Animate 资源管理错误漏洞

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. A memory misreference vulnerability exists in Adobe Animate, which can be exploited by an attacker to cause arbitrary code to be executed in the current user environment...

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-140.4.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

CVE-2025-61798

CVE-2025-61798 affects Adobe Dimension versions 4.1.4 and earlier. It is an out-of-bounds read vulnerability in the parser for a crafted file, potentially allowing code execution in the context of the current user. Exploitation requires user interaction (the victim opens a malicious file). Connec...

CVE-2025-54283 Illustrator | Out-of-bounds Write (CWE-787)

Illustrator versions 29.7, 28.7.9 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

WordPress TempTool [Show Current Template Info] plugin <= 1.3.1 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by MD ISMAIL in WordPress Plugin TempTool Show Current Template Info versions = 1.3.1...