CVE-2026-3145 vulnerabilities

Vulnerabilities for packages: libvips...

Linux Distros Unpatched Vulnerability : CVE-2026-3145

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in libvips up to 8.18.0. The affected element is the function vipsforeignloadmatrixfileisa/vipsforeignloadmatrixheader of the file...

DEBIAN-CVE-2026-3145

A flaw has been found in libvips up to 8.18.0. The affected element is the function vipsforeignloadmatrixfileisa/vipsforeignloadmatrixheader of the file libvips/foreign/matrixload.c. Executing a manipulation can lead to memory corruption. The attack needs to be launched locally. This patch is...

CVE-2026-3145

A flaw has been found in libvips up to 8.18.0. The affected element is the function vipsforeignloadmatrixfileisa/vipsforeignloadmatrixheader of the file libvips/foreign/matrixload.c. Executing a manipulation can lead to memory corruption. The attack needs to be launched locally. This patch is...

MiracleLinux 8 : firefox-91.8.0-1.el8.ML.1 (AXSA:2022-3145:09)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3145:09 advisory. Mozilla: Use-after-free in NSSToken objects CVE-2022-1097 Mozilla: Out of bounds write due to unexpected WebAuthN Extensions CVE-2022-28281 Mozilla:...

CVE-2025-3145

A vulnerability, which was classified as problematic, has been found in MindSpore 2.5.0. Affected by this issue is the function mindspore.numpy.fft.rfft2. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may b...

CVE-2025-3145

creationtimestamp| type| source ---|---|--- 2025-04-03 06:34:10+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10165...

CVE-2025-3145 MindSpore mindspore.numpy.fft.rfft2 memory corruption

A vulnerability, which was classified as problematic, has been found in MindSpore 2.5.0. Affected by this issue is the function mindspore.numpy.fft.rfft2. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may b...

CVE-2025-3145

CVE-2025-3145 (MindSpore) is documented with concrete technical details across multiple sources. Affected product: MindSpore 2.5.0. Vulnerable component: function mindspore.numpy.fft.rfft2 (and related in mindspore.numpy.fft.hfftn per Snyk entry). Root cause: memory corruption triggered by inputs...

CVE-2025-3145 MindSpore mindspore.numpy.fft.rfft2 memory corruption

A vulnerability, which was classified as problematic, has been found in MindSpore 2.5.0. Affected by this issue is the function mindspore.numpy.fft.rfft2. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may b...

RHEL 5 : bind (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bind: Improper fetch cleanup sequencing in the resolver can cause named to crash CVE-2017-3145 - ISC BIND...

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by a vulnerability in bind (CVE-2017-3145)

Summary IBM Flex System Chassis Management Module CMM has addressed the following vulnerability in bind. Vulnerability Details CVEID: CVE-2017-3145 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by a use-after-free when improperly sequencing cleanup operations on upstream...

CVE-2015-3145

creationtimestamp| type| source ---|---|--- 2023-11-19 16:12:40+00:00| seen| https://t.me/arpsyndicate/282...

CVE-2018-3145

creationtimestamp| type| source ---|---|--- 2023-11-15 16:53:23+00:00| published-proof-of-concept| https://t.me/BABATATASASA/5991...

BELL-CVE-2017-3145 CVE-2017-3145 does not affect BellSoft software

Bulletin has no description...

CentOS: Security Advisory for apr-util (CESA-2023:3145)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 7 : apr-util (RHSA-2023:3145)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:3145 advisory. - Integer Overflow or Wraparound vulnerability in aprbase64 functions of Apache Portable Runtime Utility APR-util allows an attacker to write beyond bounds of a...

visionfilms.net Cross Site Scripting vulnerability OBB-3409590

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-3145

creationtimestamp| type| source ---|---|--- 2023-06-07 18:35:08+00:00| seen| https://t.me/cibsecurity/65039...

CVE-2023-3145 SourceCodester Online Discussion Forum Site sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Online Discussion Forum Site 1.0. Affected by this issue is some unknown functionality of the file classes\Users.php?f=registration. The manipulation of the argument username leads to sql injection. The attack may...