Lucene search
K

14 matches found

OSV
OSV
added 2026/06/22 12:34 p.m.2 views

SUSE-SU-2026:2490-1 Security update for libarchive

This update for libarchive fixes the following issues - CVE-2025-60753: bsdtar hangs and OOMs with zero-length pattern matches bsc1253088. - CVE-2026-4111: logical deadlock the RAR5 filter subsystem and the half-window output limiter leads to infinite loop and DoS bsc1259635. - CVE-2026-4424:...

9.8CVSS7.2AI score0.01073EPSS
Exploits1References11
OSV
OSV
added 2026/06/18 8:0 a.m.2 views

SUSE-SU-2026:22241-1 Security update for libarchive

This update for libarchive fixes the following issues - CVE-2025-60753: bsdtar hangs and OOMs with zero-length pattern matches bsc1253088. - CVE-2026-4111: logical deadlock the RAR5 filter subsystem and the half-window output limiter leads to infinite loop and DoS bsc1259635. - CVE-2026-4424:...

9.8CVSS6.4AI score0.01073EPSS
Exploits1References11
Amazon
Amazon
added 2026/04/14 12:0 a.m.11 views

Important: freerdp

Issue Overview: DoS via WINPRASSERT in rtsreadauthverifiernochecks NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4v4p-9v5x-hc93 CVE-2026-33952 DoS via WINPRASSERT in IMA ADPCM audio decoder dsp.c:331 NOTE:...

7.5CVSS5.8AI score0.00426EPSS
Exploits2
Debian CVE
Debian CVE
added 2026/03/30 9:43 p.m.3 views

CVE-2026-33985

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched in version 3.24.2...

7.1CVSS4.6AI score0.00205EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/03/30 9:42 p.m.4 views

CVE-2026-33982

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflow READ vulnerability at 24 bytes before the allocation, in winpralignedoffsetrecalloc. This issue has been patched in version 3.24.2...

8.1CVSS5.8AI score0.00191EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/03/30 9:42 p.m.5 views

CVE-2026-33982

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflow READ vulnerability at 24 bytes before the allocation, in winpralignedoffsetrecalloc. This issue has been patched in version 3.24.2...

8.1CVSS4.6AI score0.00191EPSS
Exploits0
CVE
CVE
added 2025/10/16 3:51 p.m.102 views

CVE-2025-62492

CVE-2025-62492 is a vulnerability in the QuickJS engine affecting the implementation of TypedArray.prototype.indexOf(). When a negative fromIndex is supplied, the calculation d_new = d + len can suffer floating-point precision loss, producing k = len. The search then reads starting at index len, ...

6.5CVSS6.2AI score0.00356EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-5594

Malicious code in bioql PyPI...

6CVSS6AI score0.0026EPSS
Exploits0References4
OSV
OSV
added 2025/03/03 3:15 p.m.9 views

CVE-2024-45779

An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file with an indirect extent map, grub2 fails to validate the number of extent entries to be read. A crafted or corrupted BFS filesystem may cause an integer overflow during the file reading, leading to a he...

6CVSS6.7AI score0.0026EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/11/07 8:22 a.m.4 views

opensc: buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package

A vulnerability was found in OpenSC. This issue causes a buffer overrun in the pkcs15 cardoshaveverifyrcpackage. This flaw allows an attacker to supply a smart card package with a malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for two tags, where the remainin...

7.1CVSS6AI score0.00295EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2022/12/02 8:0 a.m.3 views

`MirrorPadGrad` heap out of bounds read in Tensorflow

...

7.5CVSS7.7AI score0.0044EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2021/05/14 12:0 a.m.3 views

PT-2021-18333 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.5.0 TensorFlow versions 2.4.2 and earlier TensorFlow versions 2.3.3 and earlier TensorFlow versions 2.2.3 and earlier TensorFlow versions 2.1.4 and earlier Description: Due to lack of validation in tf.raw...

7.1CVSS6.7AI score0.00198EPSS
Exploits1References13
CNVD
CNVD
added 2020/11/12 12:0 a.m.1 views

Heap Overrun Read Vulnerability in ABC Lookup of Shanghai Zhanmeng Network Technology Co. Ltd (CNVD-2020-66603)

ABC Viewer is a permanent free image viewing software, intelligently turns on hardware acceleration and supports various image formats. Shanghai Zhanmeng Network Science and Technology Co., Ltd. ABC to see the map of the existence of heap out-of-bounds read vulnerability, the vulnerability for th...

6.8AI score
Exploits0
CNVD
CNVD
added 2018/06/20 12:0 a.m.2 views

libyal libpff Information Disclosure Vulnerability

libyal libpff is a library for accessing Personal Folder Files PFF and Offline Folder Files OFF. A security vulnerability exists in the 'libpffnametoidmapentryread' function in the libpffnametoidmap.c file in libyal libpff 2018-04-28 and earlier versions. A remote attacker can exploit this...

5.5CVSS5.3AI score0.01184EPSS
Exploits0References1
Rows per page
Query Builder