Multiple Cisco Products Snort 3 MIME DoS Vulnerabilities (cisco-sa-snort3-mime-vulns-tTL8PgVH_CVE-2025-20359)

According to its self-reported version, Cisco ASA Software is affected by a vulnerability. - Multiple Cisco products are affected by a vulnerability in the Snort 3 HTTP Decoder that could allow an unauthenticated, remote attacker to cause the disclosure of possible sensitive data or cause the Sno...

PT-2025-42382

Name of the Vulnerable Software and Affected Versions Cisco Snort 3 affected versions not specified Description A flaw exists in the Snort 3 HTTP Decoder that may allow a remote, unauthenticated attacker to disrupt service. The issue stems from insufficient error checking during the parsing of HT...

PT-2025-42381

Name of the Vulnerable Software and Affected Versions Cisco Snort 3 affected versions not specified Description A flaw exists in the Snort 3 HTTP Decoder that may allow a remote attacker to disclose sensitive data or cause the Snort 3 Detection Engine to crash. This issue stems from an error in...

Cisco IOS XE Software 安全漏洞

Cisco IOS XE Software is a network operating system from Cisco. A security vulnerability exists in Cisco IOS XE Software that originates from a buffer handling logic error in the HTTP decoder when parsing the MIME field of the HTTP header, which could lead to a buffer under-read attack or sensiti...

Astra Linux - уязвимость в libheif

libheif before 1.19.6 has a NULL pointer dereference in ImageItemGrid::getdecoder in image-items/grid.cc because a grid image can reference a nonexistent image item...

MITRE CVE-2025-54957: Integer overflow in Dolby Digital Plus audio decoder

Deserialization of untrusted data in Microsoft Windows Codecs Library allows an unauthorized attacker to execute code locally...

netty-codec: netty-codec-compression: Netty's BrotliDecoder is vulnerable to DoS via zip bomb style attack

A flaw was found in Netty. With specially crafted input, BrotliDecoder and some other decompressing decoders will allocate a large number of reachable byte buffers, which can lead to denial of service...

SUSE SLES15 Security Update : haproxy (SUSE-SU-2025:03589-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:03589-1 advisory. - CVE-2025-11230: Fixed issue in the mjson JSON decoder, that could have let to excessive resource consumption when processing numbers with large...

openSUSE Security Advisory (SUSE-SU-2025:03587-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Dolby Digital Plus Audio Decoder 安全漏洞

Dolby Digital Plus Audio Decoder is an audio codec technology from Dolby Laboratories USA. A security vulnerability exists in Dolby Digital Plus Audio Decoder that stems from an integer overflow that could lead to remote code execution...

PT-2025-42572

Name of the Vulnerable Software and Affected Versions Dolby UDC versions 4.5 through 4.13 Description An out-of-bounds write exists in the Dolby Unified Decoder UDC when processing malformed Dolby Digital Plus DD+ bitstreams. The issue occurs in the evo priv.c file during the processing of...

SUSE SLES15 / openSUSE 15 Security Update : haproxy (SUSE-SU-2025:03587-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:03587-1 advisory. - CVE-2025-11230: Fixed issue in the mjson JSON decoder, that could have let to excessive resource consumption when processing numbers wi...

Security update for haproxy

This update for haproxy fixes the following issues: CVE-2025-11230: Fixed issue in the mjson JSON decoder, that could have let to excessive resource consumption when processing numbers with large exponents bsc1250983. Patch Instructions: To install this SUSE update use the SUSE recommended...

SUSE-SU-2025:03589-1 Security update for haproxy

This update for haproxy fixes the following issues: - CVE-2025-11230: Fixed issue in the mjson JSON decoder, that could have let to excessive resource consumption when processing numbers with large exponents bsc1250983...

Security update for haproxy

This update for haproxy fixes the following issues: CVE-2025-11230: Fixed issue in the mjson JSON decoder, that could have let to excessive resource consumption when processing numbers with large exponents bsc1250983. Patch Instructions: To install this SUSE update use the SUSE recommended...

SUSE-SU-2025:03587-1 Security update for haproxy

This update for haproxy fixes the following issues: - CVE-2025-11230: Fixed issue in the mjson JSON decoder, that could have let to excessive resource consumption when processing numbers with large exponents bsc1250983...

media: mediatek: vcodec: Handle invalid decoder vsi

...

CVE-2025-21070

Out-of-bounds write in the SPI decoder in Samsung Notes prior to version 4.4.30.63 allows local attackers to write out-of-bounds memory...

CVE-2025-21066

Out-of-bounds read in the SPI decoder in Samsung Notes prior to version 4.4.30.63 allows local attackers to access out-of-bounds memory...

EulerOS 2.0 SP11 : gdk-pixbuf2 (EulerOS-SA-2025-2191)

According to the versions of the gdk-pixbuf2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw exists in gdkpixbuf within the gdkpixbufjpegimageloadincrement function io-jpeg.c and in glibs gbase64encodestep glib/gbase64.c. When...