MAL-2025-9261 Malicious code in @protos-team/frontend-config (npm)

The package @protos-team/frontend-config was found to contain malicious code...

CVE-2019-9261

In libxaac there is a possible out of bounds read due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-116774214...

Linux Distros Unpatched Vulnerability : CVE-2017-9261

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c allows attackers to cause a denial of service memory leak via a crafted file. CVE-2017-926...

CVE-2024-9261

creationtimestamp| type| source ---|---|--- 2024-10-11 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1374/...

SUSE CVE-2015-9261

huftbuild in archival/libarchive/decompressgunzip.c in BusyBox before 1.27.2 misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file...

SUSE: Security Advisory (SUSE-SU-2022:4253-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for busybox (openSUSE-SU-2022:0135-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE: Security Advisory (SUSE-SU-2022:0135-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-9261

The CVE-2020-9261 entry applies to Huawei Mate 30 devices running versions earlier than 10.1.0.150 (C00E136R5P3). The vulnerability is a type confusion flaw where the system fails to properly check/transform certain variable types, enabling an attacker to trick the user into installing and runnin...

CVE-2019-9261

CVE-2019-9261 affects Android 10 via the libxaac library. The issue is an out-of-bounds read caused by a missing bounds check within libxaac, leading to information disclosure. Exploitation requires user interaction, with network exposure possible per CVSS data. The vulnerability is documented ac...

Security Bulletin: Multiple vulnerabilities affect Intel® Manycore Platform Software Stack (Intel® MPSS) for Linux and Windows

Summary Intel® Manycore Platform Software Stack Intel® MPSS for Linux and Windows have addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2015-9261 DESCRIPTION: BusyBox is vulnerable to a denial of service, caused by a flaw in the huftbuild in...

MGASA-2018-0413 Updated busybox packages fix security vulnerability

Unziping a specially crafted zip file results in a computation of an invalid pointer and a crash reading an invalid address CVE-2015-9261...

Updated busybox packages fix security vulnerability

Unziping a specially crafted zip file results in a computation of an invalid pointer and a crash reading an invalid address CVE-2015-9261...

[SECURITY] [DLA 1445-2] busybox regression update

Package : busybox Version : 1:1.22.0-9+deb8u3 The security update of busybox announced as DLA-1445-1 introduced a regression due to an incomplete fix for CVE-2015-9261. It was no longer possible to decompress gzip archives which exceeded a certain file size. For Debian 8 "Jessie", this problem ha...

CVE-2015-9261

huftbuild in archival/libarchive/decompressgunzip.c in BusyBox before 1.27.2 misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file...

CVE-2015-9261

huftbuild in archival/libarchive/decompressgunzip.c in BusyBox before 1.27.2 misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file...

CVE-2015-9261

CVE-2015-9261 affects BusyBox before 1.27.2. The vuln is in huft_build, in archival/libarchive/decompress_gunzip.c, where a pointer is misused, causing segfaults and application crashes during unzip of a specially crafted ZIP file. Affected product: BusyBox (generic) with the cited code path. Imp...

SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2018:0981-1)

This update for wireshark fixes the following issues : - Update to wireshark 2.2.14, fix such issues : - bsc1088200 VUL-0: wireshark: multiple vulnerabilities fixed in 2.2.14, 2.4.6 - CVE-2018-9256: LWAPP dissector crash - CVE-2018-9260: IEEE 802.15.4 dissector crash - CVE-2018-9261: NBAP dissect...

CVE-2018-9261

The CVE-2018-9261 issue affects the NBAP dissector in Wireshark (versions 2.4.0–2.4.5 and 2.2.0–2.2.13). It crashes due to a large loop that can end in a heap-based buffer overflow; the root cause is the self-linking of DCH-IDs in packet-nbap.c. Mitigation: apply the vendor patch—Wireshark 2.2.14...

SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2018:0349-1)

This update for ImageMagick fixes several issues. These security issues were fixed : - CVE-2017-18027: Prevent memory leak vulnerability in the function ReadMATImage which allowed remote attackers to cause a denial of service via a crafted file bsc1076051 - CVE-2017-18029: Prevent memory leak in...