13 matches found
EUVD-2022-35982
Malicious code in bioql PyPI...
EUVD-2025-3653
Malicious code in bioql PyPI...
EUVD-2023-31907
Malicious code in bioql PyPI...
CVE-2020-27909
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously crafted audio file may lead to arbitrary code execution...
Security update for libsoup2
This update for libsoup2 fixes the following issues: CVE-2025-2784: Fixed heap buffer over-read in skipinsignificantspace when sniffing conten bsc1240750 CVE-2025-32050: Fixed integer overflow in appendparamquoted bsc1240752 CVE-2025-32052: Fixed heap buffer overflow in sniffunknown bsc1240756...
Azure Linux 3.0 Security Update: kernel (CVE-2024-39487)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39487 advisory. - In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in...
Amazon Linux 2 : exiv2 (ALAS-2025-2728)
The version of exiv2 installed on the remote host is prior to 0.27.0-4. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2728 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. ...
CVE-2024-40806
An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may...
UBUNTU-CVE-2023-39356
FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. In affected versions a missing offset validation may lead to an Out Of Bound Read in the function gdimultiopaquerect. In particular there is no code to validate if the value...
SUSE-SU-2022:2717-2 Security update for ncurses
This update for ncurses fixes the following issues: - CVE-2022-29458: Fixed segfaulting out-of-bounds read in convertstrings in tinfo/readentry.c bsc1198627...
多款Apple产品缓冲区错误漏洞
Apple iOS and others are products of Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for iPad tablets.Apple macOS Big Sur is the 17th major version of macOS, Apple's operating system for MACs.Apple macOS Big Sur is the 17th major version...
New OpenSMTPD RCE Flaw Affects Linux and OpenBSD Email Servers
OpenSMTPD has been found vulnerable to yet another critical vulnerability that could allow remote attackers to take complete control over email servers running BSD or Linux operating systems. OpenSMTPD, also known as OpenBSD SMTP Server, is an open-source implementation of the Simple Mail Transfe...
CVE-2018-4283
CVE-2018-4283 affects macOS High Sierra 10.13.x prior to 10.13.6. An out-of-bounds read in the IOGraphics component could allow a local attacker to disclose kernel memory. Apple attributes the fix to improved input validation in IOGraphics, addressing the memory disclosure. The Red Hat and CVE li...