Lucene search
K

27 matches found

OSV
OSV
added 2026/01/06 3:17 p.m.4 views

USN-7942-1 glib2.0 vulnerabilities

It was discovered that GLib incorrectly handled escaping URI strings. An attacker could use this issue to cause GLib to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2025-13601 It was discovered that GLib incorrectly parsed certain GVariants. An attacker could u...

9.8CVSS6.9AI score0.00754EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-10006

Malicious code in bioql PyPI...

3.7CVSS4.8AI score0.00416EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

EulerOS 2.0 SP12 : glib2 (EulerOS-SA-2025-2005)

According to the versions of the glib2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the...

4.8CVSS6.8AI score0.00426EPSS
Exploits0References3
OSV
OSV
added 2025/05/20 10:52 a.m.1 views

SUSE-SU-2025:01599-1 Security update for glib2

This update for glib2 fixes the following issues: - CVE-2025-3360: Fixed integer overflow and buffer underread when parsing a very long and invalid ISO 8601 timestamp with gdatetimenewfromiso8601 bsc1240897...

3.7CVSS5.3AI score0.00416EPSS
Exploits0References3
OSV
OSV
added 2025/05/12 9:55 a.m.4 views

SUSE-SU-2025:20318-1 Security update for glib2

This update for glib2 fixes the following issues: - CVE-2025-3360: Fixed integer overflow and buffer underread when parsing a very long and invalid ISO 8601 timestamp with gdatetimenewfromiso8601 bsc1240897...

3.7CVSS6.9AI score0.00416EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/04/25 12:0 a.m.10 views

SUSE SLED15: gio-branding-upstream / glib2-devel / glib2-devel-32bit / etc (SUSE-SU-2025:1367-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:1367-1 advisory. - CVE-2025-3360: Fixed integer overflow and buffer underread when parsing a very long and invalid ISO 860...

3.7CVSS6.1AI score0.00416EPSS
Exploits0References4
OSV
OSV
added 2025/04/07 1:15 p.m.9 views

CVE-2025-3360

A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the gdatetimenewfromiso8601 function...

3.7CVSS7.4AI score0.00416EPSS
Exploits0References3
NVD
NVD
added 2025/04/07 1:15 p.m.8 views

CVE-2025-3360

A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the gdatetimenewfromiso8601 function...

3.7CVSS0.00416EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/04/07 12:53 p.m.7 views

CVE-2025-3360 Glibc: glib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid iso 8601 timestamp with g_date_time_new_from_iso8601().

A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the gdatetimenewfromiso8601 function...

3.7CVSS4.4AI score0.00416EPSS
Exploits0References3
CVE
CVE
added 2025/04/07 12:53 p.m.105 views

CVE-2025-3360

CVE-2025-3360 : GLib2 contains an integer overflow and buffer under-read when parsing a long invalid ISO 8601 timestamp via g_date_time_new_from_iso8601(). Debian LTS notes a fix in glib2.0 for Bullseye (2.66.8-1+deb11u6); other advisories (e.g., Astra/IBM-related pages) reference GLib fixes. CVS...

3.7CVSS7.3AI score0.00416EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/04/07 12:53 p.m.27 views

CVE-2025-3360 Glibc: glib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid iso 8601 timestamp with g_date_time_new_from_iso8601().

A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the gdatetimenewfromiso8601 function...

3.7CVSS0.00416EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/07 12:0 a.m.4 views

PT-2025-15227

Name of the Vulnerable Software and Affected Versions GLib affected versions not specified openSUSE Leap 15.4 SUSE Micro versions 5.1 through 5.5 Red Hat Enterprise Linux 6 Description An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp. This issue is...

3.7CVSS6.9AI score0.00416EPSS
Exploits0References67
OpenVAS
OpenVAS
added 2024/11/21 12:0 a.m.26 views

openSUSE: Security Advisory for bea (SUSE-SU-2024:4007-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.8AI score0.03948EPSS
Exploits6References2
OSV
OSV
added 2024/11/18 1:20 p.m.24 views

SUSE-SU-2024:4007-1 Security update for SUSE Manager Server 4.3

This update fixes the following issues: release-notes-susemanager: - Update to SUSE Manager 4.3.14 Ubuntu 24.04 support as client Product migration from RHEL and Clones to SUSE Liberty Linux POS image templates now produce compressed images Date format for API endpoints has been changed to ISO-86...

9.8CVSS6.6AI score0.03948EPSS
Exploits6References57
SUSE CVE
SUSE CVE
added 2023/02/15 4:58 a.m.5 views

SUSE CVE-2016-7129

The phpwddxprocessdata function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddxdeserialize call that...

9.8CVSS8.5AI score0.06842EPSS
Exploits1References10
Veracode
Veracode
added 2019/05/02 5:4 a.m.54 views

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A buffer overflow flaw was found in the Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifthumbnail function to crash or, possibly, execute arbitrary code...

7.5CVSS9.5AI score0.30128EPSS
Exploits16References20Affected Software5
RedHat Linux
RedHat Linux
added 2017/08/01 3:34 p.m.4 views

gstreamer: Out-of-bounds read in gst_date_time_new_from_iso8601_string()

The gstdatetimenewfromiso8601string function in gst/gstdatetime.c in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via a malformed datetime string...

7.5CVSS5.9AI score0.04574EPSS
Exploits0References4
NVD
NVD
added 2016/09/12 1:59 a.m.36 views

CVE-2016-7129

The phpwddxprocessdata function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddxdeserialize call that...

9.8CVSS9.8AI score0.06842EPSS
Exploits1References10
Prion
Prion
added 2016/09/12 1:59 a.m.26 views

Code injection

The phpwddxprocessdata function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddxdeserialize call that...

7.5CVSS8AI score0.06842EPSS
Exploits1References10Affected Software1
UbuntuCve
UbuntuCve
added 2016/09/11 12:0 a.m.36 views

CVE-2016-7129

The phpwddxprocessdata function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddxdeserialize call that...

9.8CVSS7.2AI score0.06842EPSS
Exploits1References5
Rows per page
Query Builder