Linux Distros Unpatched Vulnerability : CVE-2023-29659

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round function in box.cc,...

CVE-2020-29659

A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings= attack...

CVE-2025-29659

Yi IOT XY-3820 6.0.24.10 is vulnerable to Remote Command Execution via the "cmdlisten" function located in the "cmd" binary...

CVE-2025-29659

Yi IOT XY-3820 6.0.24.10 is vulnerable to Remote Command Execution via the "cmdlisten" function located in the "cmd" binary...

CVE-2025-29659

creationtimestamp| type| source ---|---|--- 2025-04-21 15:03:08+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12683 2025-04-21 16:04:33+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114376800501667579 2025-04-21 16:13:56+00:00| seen|...

CVE-2025-29659

CVE-2025-29659 affects Yi IOT XY-3820, version 6.0.24.10. The vulnerability is a Remote Command Execution via the cmd_listen function in the cmd binary, with network access and no user interaction required (CVSS v3.1: 9.8, Critical). The reports do not specify a fixed version; a workaround sugges...

CVE-2025-29659

Yi IOT XY-3820 6.0.24.10 is vulnerable to Remote Command Execution via the "cmdlisten" function located in the "cmd" binary...

Debian: Security Advisory (DLA-3945-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dla-3945 : heif-gdk-pixbuf - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3945 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3945-1 [email protected]...

[SECURITY] [DSA 5796-1] libheif security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5796-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 25, 2024 https://www.debian.org/security/faq -...

MGASA-2024-0243 Updated libheif packages fix security vulnerabilities

Yuchuan Meng discovered that libheif incorrectly handled certain image data. An attacker could possibly use this issue to crash the program, resulting in a denial of service. CVE-2023-49460, CVE-2023-49462, CVE-2023-49463, CVE-2023-49464...

Updated libheif packages fix security vulnerabilities

Yuchuan Meng discovered that libheif incorrectly handled certain image data. An attacker could possibly use this issue to crash the program, resulting in a denial of service. CVE-2023-49460, CVE-2023-49462, CVE-2023-49463, CVE-2023-49464...

Ubuntu: Security Advisory (USN-6847-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : libheif vulnerabilities (USN-6847-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6847-1 advisory. It was discovered that libheif incorrectly handled certain image data. An attacker could possibly use this issue to crash...

openSUSE: Security Advisory for libheif (SUSE-SU-2023:2223-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libheif (SUSE-SU-2023:2223-2)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2223-2 advisory. - A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif...

SUSE-SU-2023:2223-2 Security update for libheif

This update for libheif fixes the following issues: - CVE-2023-29659: Fixed segfault caused by divide-by-zero bsc1211174...

SUSE-SU-2023:2223-1 Security update for libheif

This update for libheif fixes the following issues: - CVE-2023-29659: Fixed segfault caused by divide-by-zero bsc1211174...

Fedora 37 : libheif (2023-440c8694e5)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-440c8694e5 advisory. Fixes an incompatibility with AOM v3.6.0 and includes a couple of smaller fixes. Also fixes a stack overflow with some crafted images CVE-2023-29659...

CVE-2023-29659

creationtimestamp| type| source ---|---|--- 2023-05-05 20:24:34+00:00| seen| https://t.me/cibsecurity/63384 2025-01-29 22:10:54+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/3404...