23142 matches found
ALSA-2025:4658 Moderate: libtiff security update
The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: Heap-based buffer overflow in tools/pal2rgb.c can lead to denial of service CVE-2017-17095 For more details about the security issues, including the impact, a CVSS...
jinja2: Jinja has a sandbox breakout through indirect reference to format method
A flaw was found in the Jinja package. In affected versions of Jinja, an oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to...
CVE-2025-47256
Libxmp through 4.6.2 has a stack-based buffer overflow in depackpha in loaders/prowizard/pha.c via a malformed Pha format tracker module in a .mod file...
CVE-2025-47256
Libxmp through 4.6.2 has a stack-based buffer overflow in depackpha in loaders/prowizard/pha.c via a malformed Pha format tracker module in a .mod file...
CVE-2025-47256
Libxmp through 4.6.2 has a stack-based buffer overflow in depackpha in loaders/prowizard/pha.c via a malformed Pha format tracker module in a .mod file...
Security update for ImageMagick
This update for ImageMagick fixes the following issues: CVE-2025-43965: mishandling of image depth after SetQuantumFormat is used in MIFF image processing. bsc1241659 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
SUSE-SU-2025:1489-1 Security update for ImageMagick
This update for ImageMagick fixes the following issues: - CVE-2025-43965: mishandling of image depth after SetQuantumFormat is used in MIFF image processing. bsc1241659...
SUSE-SU-2025:1488-1 Security update for ImageMagick
This update for ImageMagick fixes the following issues: - CVE-2025-43965: mishandling of image depth after SetQuantumFormat is used in MIFF image processing. bsc1241659 - CVE-2025-46393: mishandling of packetsize leads to rendering of channels in arbitrary order in multispectral MIFF image...
SUSE CVE-2022-49801
In the Linux kernel, the following vulnerability has been resolved: tracing: Fix memory leak in tracingreadpipe kmemleak reports this issue: unreferenced object 0xffff888105a18900 size 128: comm "testprogs", pid 18933, jiffies 4336275356 age 22801.766s hex dump first 32 bytes: 25 73 00 90 81 88 f...
Publicly Verifiable Secret Sharing: Generic Constructions and Lattice-Based Instantiations in the Standard Model
Publicly verifiable secret sharing PVSS allows a dealer to share a secret among a set of shareholders so that the secret can be reconstructed later from any set of qualified participants. In addition, any public verifier should be able to check the correctness of the sharing and reconstruction...
CVE-2025-47256
Libxmp through 4.6.2 has a stack-based buffer overflow in depackpha in loaders/prowizard/pha.c via a malformed Pha format tracker module in a .mod file...
AI-Driven Security in Cloud Computing: Enhancing Threat Detection, Automated Response, and Cyber Resilience
Cloud security concerns have been greatly realized in recent years due to the increase of complicated threats in the computing world. Many traditional solutions do not work well in real-time to detect or prevent more complex threats. Artificial intelligence is today regarded as a revolution in...
PT-2025-19987 · Libxmp +1 · Libxmp +1
Name of the Vulnerable Software and Affected Versions: Libxmp versions 4.6.2 and earlier Description: The issue is a stack-based buffer overflow in the depack pha function in loaders/prowizard/pha.c, which occurs when processing a malformed Pha format tracker module in a .mod file. Recommendation...
CVE-2025-47256
Libxmp through 4.6.2 has a stack-based buffer overflow in depackpha in loaders/prowizard/pha.c via a malformed Pha format tracker module in a .mod file...
CVE-2025-47256
Libxmp up to 4.6.2 is affected by a stack-based buffer overflow in depack_pha (loaders/prowizard/pha.c) triggered by a malformed Pha format tracker module in a .mod file. The exploitation is Local with no privileges required and no user interaction, with a CVSS v3.1 base score of 5.6 (Low confide...
The vulnerability of the server of the Zabbix universal monitoring system allows a intruder to gain unauthorized access to protected information.
The vulnerability of the Zabbix universal monitoring system relates to the use of uncontrolled format strings in processing HttpRequest objects. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...
Security update for ImageMagick
This update for ImageMagick fixes the following issues: CVE-2025-43965: Fixed mishandling of image depth after SetQuantumFormat is used in MIFF image processing. bsc1241659 CVE-2025-46393: Fixed mishandling of packetsize leads to rendering of channels in arbitrary order in multispectral MIFF imag...
SUSE-SU-2025:1464-1 Security update for ImageMagick
This update for ImageMagick fixes the following issues: - CVE-2025-43965: Fixed mishandling of image depth after SetQuantumFormat is used in MIFF image processing. bsc1241659 - CVE-2025-46393: Fixed mishandling of packetsize leads to rendering of channels in arbitrary order in multispectral MIFF...
SUSE-SU-2025:1457-1 Security update for glib2
This update for glib2 fixes the following issues: - CVE-2025-3360: Fixed integer overflow and buffer underread when parsing a very long and invalid ISO 8601 timestamp with gdatetimenewfromiso8601 bsc1240897...
The vulnerability of the header_gnu_longlink function in the archive_read_support_format_tar.c file of the Libarchive library allows a attacker to cause a service failure.
The vulnerability of the headergnulonglink function in the archivereadsupportformattar.c file of the Libarchive library is related to the execution of operations outside of the buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...