UBUNTU-CVE-2025-11082

A flaw has been found in GNU Binutils 2.45. Impacted is the function bfdelfparseehframe of the file bfd/elf-eh-frame.c of the component Linker. Executing manipulation can lead to heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be use...

CVE-2025-11082 GNU Binutils Linker elf-eh-frame.c _bfd_elf_parse_eh_frame heap-based overflow

A flaw has been found in GNU Binutils 2.45. Impacted is the function bfdelfparseehframe of the file bfd/elf-eh-frame.c of the component Linker. Executing manipulation can lead to heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be use...

CVE-2025-11015

A weakness has been identified in OGRECave Ogre up to 14.4.1. Impacted is the function STBIImageCodec::encode of the file /ogre/PlugIns/STBICodec/src/OgreSTBICodec.cpp. This manipulation causes mismatched memory management routines. The attack is restricted to local execution. The exploit has bee...

UBUNTU-CVE-2025-11015

A weakness has been identified in OGRECave Ogre up to 14.4.1. Impacted is the function STBIImageCodec::encode of the file /ogre/PlugIns/STBICodec/src/OgreSTBICodec.cpp. This manipulation causes mismatched memory management routines. The attack is restricted to local execution. The exploit has bee...

CVE-2025-11015

A weakness has been identified in OGRECave Ogre up to 14.4.1. Impacted is the function STBIImageCodec::encode of the file /ogre/PlugIns/STBICodec/src/OgreSTBICodec.cpp. This manipulation causes mismatched memory management routines. The attack is restricted to local execution. The exploit has bee...

CVE-2025-11000 Open Babel PQSformat.cpp ReadMolecule null pointer dereference

A vulnerability was determined in Open Babel up to 3.1.1. This affects the function PQSFormat::ReadMolecule of the file /src/formats/PQSformat.cpp. This manipulation causes null pointer dereference. The attack is restricted to local execution. The exploit has been publicly disclosed and may be...

PT-2025-39488

Name of the Vulnerable Software and Affected Versions Open Babel versions prior to 3.1.2 Description A flaw exists in Open Babel that may lead to a null pointer dereference. This issue is related to the PQSFormat::ReadMolecule function located in the file /src/formats/PQSformat.cpp. Exploitation ...

PT-2025-39639

Name of the Vulnerable Software and Affected Versions OGRECave Ogre versions through 14.4.1 Description A flaw exists in OGRECave Ogre that relates to mismatched memory management routines. This issue is present in the STBIImageCodec::encode function located in the file...

Security update for tiff

This update for tiff fixes the following issues: CVE-2025-9165: local execution manipulation leading to memory leak bsc1248330. CVE-2025-8534: null pointer dereference in function PSLvl2page bsc1247582. CVE-2025-8961: segmentation fault via main function of tiffcrop utility bsc1248117. Patch...

SUSE-SU-2025:03345-1 Security update for tiff

This update for tiff fixes the following issues: - CVE-2025-9165: local execution manipulation leading to memory leak bsc1248330. - CVE-2025-8534: null pointer dereference in function PSLvl2page bsc1247582. - CVE-2025-8961: segmentation fault via main function of tiffcrop utility bsc1248117...

CVE-2025-43884

Dell PowerProtect Data Manager, versions 19.19 and 19.20, Hyper-V contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Command...

CVE-2025-54903

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

OESA-2025-2191 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

CVE-2023-21476

Out-of-bounds Write vulnerability in libaudiosaplussec.so library prior to SMR Apr-2023 Release 1 allows local attacker to execute arbitrary code...

PT-2025-35688

Name of the Vulnerable Software and Affected Versions: libssavsvc.so versions prior to SMR Sep-2025 Release 1 Description: An out-of-bounds write issue exists in libsavsvc.so prior to SMR Sep-2025 Release 1. This can allow local attackers to potentially execute arbitrary code. Recommendations:...

CVE-2025-9330

CVE-2025-9330 affects Foxit PDF Reader Update Service. The flaw: the Update Service loads a library from an unsecured location, enabling a local attacker who can execute low-privileged code to escalate to SYSTEM and execute code. Impact details aligned with the NVD/NZD entries indicate local priv...

Linux Distros Unpatched Vulnerability : CVE-2025-9385

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fixipv6checksums of the file editpacket.c of the component...

CVE-2010-10017 WM Downloader 3.1.2.2 Buffer Overflow via Malformed M3U File

WM Downloader version 3.1.2.2 is vulnerable to a buffer overflow when processing a specially crafted .m3u playlist file. The application fails to properly validate input length, allowing an attacker to overwrite structured exception handler SEH records and execute arbitrary code. Exploitation...

CVE-2025-9385

A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fixipv6checksums of the file editpacket.c of the component tcprewrite. This manipulation causes use after free. The attack is restricted to local execution. The exploit has been published and may be used...

CVE-2025-9385

A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fixipv6checksums of the file editpacket.c of the component tcprewrite. This manipulation causes use after free. The attack is restricted to local execution. The exploit has been published and may be used...