182 matches found
Heap-based Buffer Overflow
Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in WriteXWDImage, when writing an extremely large image, due to an arithmetic overflow in the calculation of bytesperline. Remediation A fix was pushed into the master branch but not yet published. References ...
📄 Samsung Quram DNG Heap Corruption
Samsung devices utilize Quram's DNG decoder. A malformed ScalePerColumn opcode with oversized areaSpec and extreme pitches leads to arithmetic overflow in the per-column scaling loop. After allocation miscalculation, subsequent writes corrupt heap structures. Carefully crafted payloads enable...
CVE-2026-24889
soroban-sdk is a Rust SDK for Soroban contracts. Arithmetic overflow can be triggered in the Bytes::slice, Vec::slice, and Prng::genrange for u64 methods in the soroban-sdk in versions up to and including 25.0.1, 23.5.1, and 25.0.2. Contracts that pass user-controlled or computed range bounds to...
CVE-2026-24889
soroban-sdk is a Rust SDK for Soroban contracts. Arithmetic overflow can be triggered in the Bytes::slice, Vec::slice, and Prng::genrange for u64 methods in the soroban-sdk in versions up to and including 25.0.1, 23.5.1, and 25.0.2. Contracts that pass user-controlled or computed range bounds to...
CVE-2026-24889 soroban-sdk has overflow in Bytes::slice, Vec::slice, GenRange::gen_range for u64
soroban-sdk is a Rust SDK for Soroban contracts. Arithmetic overflow can be triggered in the Bytes::slice, Vec::slice, and Prng::genrange for u64 methods in the soroban-sdk in versions up to and including 25.0.1, 23.5.1, and 25.0.2. Contracts that pass user-controlled or computed range bounds to...
rs-soroban-sdk input validation vulnerability
rs-soroban-sdk is a Rust development toolkit open source by Stellar. Versions of rs-soroban-sdk 25.0.1 and earlier, as well as 23.5.1 and earlier, and 25.0.2 and earlier, have a vulnerability related to input validation errors. This vulnerability stems from arithmetic overflow in the Bytes::slice...
MiracleLinux 8 : fwupd-1.1.4-7.0.1.el8, grub2-2.02-87.0.1.el8, shim-15-15.0.1, shim-unsigned-x64-15-8.0.1.el8 (AXSA:2020-773:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-773:01 advisory. grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process CVE-2020-10713 grub2: grubmalloc does not validate allocation...
MiracleLinux 9 : sysstat-12.5.4-5.el9 (AXSA:2023-5796:03)
The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5796:03 advisory. sysstat: arithmetic overflow in allocatestructures on 32 bit systems CVE-2022-39377 Tenable has extracted the preceding description block directly from the...
CVE-2023-53661
In the Linux kernel, the following vulnerability has been resolved: bnxt: avoid overflow in bnxtgetnvramdirectory The value of an arithmetic expression is subject of possible overflow due to a failure to cast operands to a larger data type before performing arithmetic. Used macro for multiplicati...
EUVD-2020-3650
Malware in sbrugna...
EUVD-2018-3789
Malware in sbrugna...
EUVD-2020-6460
Malware in sbrugna...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from an overflow risk in an arithmetic expression in the bnxtgetnvramdirectory function...
PT-2025-41105
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the bnxt driver, specifically in the bnxt get nvram directory function. An arithmetic expression’s value is susceptible to overflow because operan...
EUVD-2024-45787
Malicious code in bioql PyPI...
EUVD-2022-37688
Malicious code in bioql PyPI...
EUVD-2023-59688
Malicious code in bioql PyPI...
EUVD-2025-28066
Malicious code in bioql PyPI...
EUVD-2025-29513
Malicious code in bioql PyPI...