7 matches found
OPENSUSE-SU-2026:20473-1 Security update for osslsigncode
This update for osslsigncode fixes the following issues: Changes in osslsigncode: - Update to 2.13 bsc1260680, CVE-2025-70888: fixed integer overflows when processing APPX compressed data streams fixed double-free vulnerabilities in APPX file processing fixed multiple memory corruption issues in ...
osslsigncode-2.13-1.1 on GA media (moderate)
osslsigncode-2.13-1.1 on GA media Announcement ID: openSUSE-SU-2026:10482-1 Rating: moderate Cross-References: CVE-2025-70888 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
CVE-2025-70888
A flaw was found in osslsigncode. A remote attacker can exploit an issue within the osslsigncode.c component to escalate privileges. This vulnerability allows an attacker to gain elevated access, potentially leading to unauthorized control over the affected system...
CVE-2025-70888
An issue in mtrojnar Osslsigncode affected at v2.10 and before allows a remote attacker to escalate privileges via the osslsigncode.c component...
UBUNTU-CVE-2025-70888
An issue in mtrojnar Osslsigncode affected at v2.10 and before allows a remote attacker to escalate privileges via the osslsigncode.c component...
CVE-2025-70888
The CVE-2025-70888 issue affects osslsigncode in mtrojnar’s OSSLSIGNCODE up to version 2.10, with a remote-exploitation vector and a CRITICAL CVSS 9.8 rating. OpenSUSE advisories note fixes in osslsigncode 2.13 that address integer overflows in APPX data streams, double-free vulnerabilities in AP...
CVE-2025-70888
An issue in mtrojnar Osslsigncode affected at v2.10 and before allows a remote attacker to escalate privileges via the osslsigncode.c component...