ROOT-OS-DEBIAN-12-CVE-2025-12495 CVE-2025-12495 in rootio-openexr - Patched by Root

Root has patched CVE-2025-12495 in the rootio-openexr package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-13-CVE-2025-12495 CVE-2025-12495 in rootio-openexr - Patched by Root

Root has patched CVE-2025-12495 in the rootio-openexr package for Root:Debian:13. Multiple fixed versions available...

CVE-2019-12495

An issue was discovered in Tiny C Compiler aka TinyCC or TCC 0.9.27. Compiling a crafted source file leads to a one-byte out-of-bounds write in the gsymaddr function in x8664-gen.c. This occurs because tccasm.c mishandles section switches...

Fedora: Security Advisory (FEDORA-2025-2e7d5d49f2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2025-12495

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers ...

angorapy (>=0.9.1 <=0.10.8), apple-hdr-heic (=0.1.0) +64 more potentially affected by CVE-2025-12495 via openexr (=3.4.11)

openexr PYPI version =3.4.11 is affected by a known vulnerability. The following packages have a transitive dependency on openexr and may be impacted: - angorapy =0.9.1, =0.5.0, =0.2.5, =0.1.0rc1, =0.0.1, =0.1.0, =0.2.1, =0.0.4, =0.1.7, =0.0.1, =0.1.1, =0.0.0, =0.0.4 and more Source cves:...

SUSE: Security Advisory (SUSE-SU-2025:21189-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2025:20148-1 Security update for openexr

This update for openexr fixes the following issues: Changes in openexr: - CVE-2025-12495: Fixed a file parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability bsc1253714 - CVE-2025-12839: Fixed a file parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability bsc1253715...

libIex-3_4-33-3.4.3-2.1 on GA media (moderate)

libIex-34-33-3.4.3-2.1 on GA media Announcement ID: openSUSE-SU-2025:15759-1 Rating: moderate Cross-References: CVE-2025-12495 CVE-2025-12839 CVE-2025-12840 CVSS scores: CVE-2025-12495 SUSE : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-12495 SUSE : 8.5...

CVE-2025-12495

creationtimestamp| type| source ---|---|--- 2025-11-11 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-989/ 2026-01-26 11:26:56+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mdd56ezxo22q...

Linux Distros Unpatched Vulnerability : CVE-2019-12495

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Tiny C Compiler aka TinyCC or TCC 0.9.27. Compiling a crafted source file leads to a one-byte out-of-bounds write in the gsymaddr...

Linux Distros Unpatched Vulnerability : CVE-2018-12495

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The quoteblock function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service heap-based buffer over-read via a...

CVE-2024-12495

The Bootstrap Blocks for WP Editor v2 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gtb-bootstrap/column' block in all versions up to, and including, 2.5.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

CVE-2024-12495

CVE-2024-12495 – Bootstrap Blocks for WP Editor (WordPress) Stored XSS Affected product: Bootstrap Blocks for WP Editor plugin, WordPress. Vulnerability type: Stored Cross-Site Scripting in the gtb-bootstrap/column block due to insufficient input sanitization and output escaping. Root cause: lack...

RHEL 8 : discount (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - discount: heap-based buffer over-read via a crafted file CVE-2018-12495 - The mkdtrimline function in...

RHEL 8 : discount (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - discount: heap-based buffer over-read via a crafted file CVE-2018-12495 - The mkdtrimline function in...

CVE-2020-12495

The CVE-2020-12495 entry concerns Endress+Hauser Ecograph T (Neutral/Private Label) devices (RSG35, ORSG35) with firmware

CVE-2019-12495

An issue was discovered in Tiny C Compiler aka TinyCC or TCC 0.9.27. Compiling a crafted source file leads to a one-byte out-of-bounds write in the gsymaddr function in x8664-gen.c. This occurs because tccasm.c mishandles section switches...

CVE-2019-12495

CVE-2019-12495 affects Tiny C Compiler (TinyCC/TCC) 0.9.27. A crafted source file can trigger a one-byte out-of-bounds write in gsym_addr in x86_64-gen.c due to tccasm.c mishandling section switches. This was reported across multiple sources (NVD entry and Red Hat advisory) and is described as a ...

CVE-2018-12495

The quoteblock function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file...