CVE-2026-48683

FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read vulnerability in the NetFlow v9 data flowset processor. In src/netflowplugin/netflowv9collector.cpp, the Data template branch lines 1695-1702 iterates over flow records without performing a per-iteration bounds check agains...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the KVM SEV feature allowing synchronization of encrypted vCPUs. When accessing customer-owned...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the cencschemedecrypt, cbc1schemedecrypt, censschemedecrypt, and cbcsschemedecrypt paths in libavformat/mov.c. An attacker can trigger out-of-bounds subsample size validation by supplying a crafted...

sumatrapdf numerical error vulnerability

Sumatrapdf is an open-source PDF reader developed by SumatraPDF Reader. SumatraPDF has a digital error vulnerability; this vulnerability stems from handling specially crafted Mobi files, where a single mistake or integer underflow can lead to out-of-bounds heap access and application crashes...

CVE-2025-37179

Multiple out-of-bounds read vulnerabilities were identified in a system component responsible for handling certain data buffers. Due to insufficient validation of maximum buffer size values, the process may attempt to read beyond the intended memory region. Under specific conditions, this can...

ImageMagick 数字错误漏洞

ImageMagick is a suite of open source image processing software from ImageMagick Open Source. It can read, convert, or write images in a variety of formats. A numeric error vulnerability exists in versions of ImageMagick prior to 7.1.2-8, which stems from an unsigned integer underflow and...

EUVD-2021-27085

Malware in sbrugna...

EUVD-2018-15132

Malware in sbrugna...

EUVD-2021-22238

Malware in sbrugna...

EUVD-2012-2926

Malware in sbrugna...

EUVD-2024-18775

Malicious code in bioql PyPI...

EUVD-2022-35113

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2016-7395

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return...

Linux Distros Unpatched Vulnerability : CVE-2018-20360

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An invalid memory address dereference was discovered in the sbrprocesschannel function of libfaad/sbrdec.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The...

CLSA-2025-1753373900 java-1.8.0-openjdk: Fix of 4 CVEs

Upgrade to shenandoah-jdk8u462-b08 GA fixing the following CVEs: - CVE-2025-30749: better Glyph drawing - CVE-2025-30754: enhance TLS protocol support - CVE-2025-30761: improve scripting supports - CVE-2025-50106: glyph out-of-memory access and crash...

openjdk: Glyph out-of-memory access and crash (Oracle CPU 2025-07)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15, 21.0.7 and 24.0.1;...

CVE-2025-38243

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix invalid inode pointer dereferences during log replay In a few places where we call readoneinode, if we get a NULL pointer we end up jumping into an error path, or fallthrough in case of addinoderef, where we then do...

CVE-2025-38117 Bluetooth: MGMT: Protect mgmt_pending list with its own lock

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Protect mgmtpending list with its own lock This uses a mutex to protect from concurrent access of mgmtpending list which can cause crashes like: ==================================================================...

CVE-2022-50098 scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts Ensure SRB is returned during I/O timeout error escalation. If that is not possible fail the escalation path. Following crash stack was seen: BUG: unable to...

Important: libsoup

Issue Overview: A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other applications to handle web communications. The issue occurs when the library processes specially crafted multipart messages. Due to improper...