CVE-2025-59734 Heap-buffer-overflow write in FFmpeg SANM process_ftch

It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be referenced by FTCH chunks. For files using subversion storedframe. Leaving ctx-hasdimensions set to false. A subsequent chunk with type...

CVE-2025-59734

CVE-2025-59734 affects FFmpeg SANM decoding. A use-after-free read can occur when processing SANM frames via STOR/FOBJ/FTCH chunks for subversion stored_frame with an invalid state, and later reallocation that frees the old buffer while GetByteContext gb is still referenced. This can enable a rea...

CVE-2025-59731

When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data. We read rlerawsize from the input file at 0, we decompress and decode into the buffer td-rlerawdata of size rlerawsize a...

CVE-2025-59730

CVE-2025-59730 affects SANM/ANIM v0 frames decoded by the old_codec48 path in FFmpeg. The issue: when decoding a frame, the run-length encoded data can exceed the allocated buffer because there are no bounds checks for decoded frame size, causing a heap-buffer-overflow. Affected component/functio...

CVE-2025-59730 Heap-buffer-overflow write in FFmpeg SANM decoding due to lack of bounds-checking in old_codec48

When decoding a frame for a SANM file ANIM v0 variant, the decoded data can be larger than the buffer allocated for it. Frames encoded with codec 48 can specify their resolution width x height. A buffer of appropriate size is allocated depending on the resolution. This codec can encode the frame...

CVE-2025-59730

When decoding a frame for a SANM file ANIM v0 variant, the decoded data can be larger than the buffer allocated for it. Frames encoded with codec 48 can specify their resolution width x height. A buffer of appropriate size is allocated depending on the resolution. This codec can encode the frame...

libtasn1: Inefficient DER Decoding in libtasn1 Leading to Potential Remote DoS

A flaw in libtasn1 causes inefficient handling of specific certificate data. When processing a large number of elements in a certificate, libtasn1 takes much longer than expected, which can slow down or even crash the system. This flaw allows an attacker to send a specially crafted certificate,...

Moderate: Red Hat Security Advisory: libtasn1 security update

An update for libtasn1 is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

FFmpeg 安全漏洞

FFmpeg is a complete solution for recording, converting, and streaming audio and video from the FFmpeg team. A security vulnerability exists in FFmpeg versions prior to 8.0, which stems from decoding frames without checking if the decoded data exceeds the allocated buffer, potentially resulting i...

RHEL 9 : gnutls (RHSA-2025:17361)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:17361 advisory. The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such a...

ILIAS 代码问题漏洞

ILIAS is an open source learning management system from ILIAS Open Source. A code issue vulnerability exists in ILIAS versions 8.23 and earlier, 9.13 and earlier, and 10.1 and earlier, which stems from improper deserialization of the parameter fsettings in the Base64 Decoding Handler component,...

PT-2025-40943

Name of the Vulnerable Software and Affected Versions ILIAS versions prior to 8.24 ILIAS versions prior to 9.14 ILIAS versions prior to 10.2 Description A flaw exists in ILIAS related to the unserialize function within the Base64 Decoding Handler component. Manipulation of the f settings argument...

Apache Subversion 安全漏洞

Apache Subversion is an open source version control system from the American Apache Apache Foundation. The system is compatible with the Concurrent Versions System CVS. A security vulnerability exists in versions prior to Apache Subversion 2 that stems from post-release reuse during SANM decoding...

RLSA-2025:7076 Moderate: gnutls security update

The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fixes: gnutls: GnuTLS Impacted by Inefficient DER Decoding in libtasn1 Leading to Remote DoS CVE-2024-12243 For more details...

gnutls security update

An update is available for gnutls. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gnutls packages provide the GNU Transport Layer Security GnuTLS library,...

RockyLinux 9 : libtasn1 (RLSA-2025:7077)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7077 advisory. libtasn1: Inefficient DER Decoding in libtasn1 Leading to Potential Remote DoS CVE-2024-12133 Tenable has extracted the preceding description block directly from...

EUVD-2023-23425

Malicious code in bioql PyPI...

EUVD-2025-25737

Malicious code in bioql PyPI...

EUVD-2021-9007

Malicious code in bioql PyPI...

EUVD-2021-9015

Malicious code in bioql PyPI...