4067 matches found
PT-2026-3384
Name of the Vulnerable Software and Affected Versions BYVoid OpenCC versions through 1.1.9 Description A flaw exists in BYVoid OpenCC that could allow for local code execution. This issue stems from a heap-based buffer overflow within the opencc::MaxMatchSegmentation function located in the...
PT-2026-3402
Name of the Vulnerable Software and Affected Versions Open Asset Import Library Assimp versions up to 6.0.2 Description A security issue exists in Open Asset Import Library Assimp. The Assimp::LWOImporter::FindUVChannels function within the /src/assimp/code/AssetLib/LWO/LWOMaterial.cpp file is...
PT-2026-3385
A security vulnerability has been detected in Mapnik up to 4.2.0. This issue affects the function mapnik::dbf file::string value of the file plugins/input/shape/dbfile.cpp. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclose...
OESA-2026-1131 hdf5 security update
HDF5 is a data model, library, and file format for storing and managing data. It supports an unlimited variety of datatypes, and is designed for flexible and efficient I/O and for high volume and complex data. HDF5 is portable and is extensible, allowing applications to evolve in their use of HDF...
OESA-2026-1084 assimp security update
Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A weakness has been identified in Op...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004486)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004486 advisory. A flaw was found in the way memory resources were freed in the unixstreamrecvmsg function in the Linux kernel when a signal was pending. This flaw allows an...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001639)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001639 advisory. The pingunhash function in net/ipv4/ping.c in the Linux kernel through 4.10.8 is too late in obtaining a certain lock and consequently cannot ensure that disconnect...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002087)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002087 advisory. The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service extended runtime of kernel code by...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002989)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002989 advisory. The tpacketrcv function in net/packet/afpacket.c in the Linux kernel before 4.13 mishandles vnet headers, which might allow local users to cause a denial of service...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001845)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001845 advisory. Multiple buffer underflows in the XFS implementation in the Linux kernel through 3.12.1 allow local users to cause a denial of service memory corruption or possibly...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003379)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003379 advisory. The cp2112gpiodirectioninput function in drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x before 4.9.9 does not have the expected EIO error status for a zero-lengt...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001982)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001982 advisory. Use-after-free vulnerability in the vhostnetsetbackend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002914)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002914 advisory. security/keys/bigkey.c in the Linux kernel before 4.8.7 mishandles unsuccessful crypto registration in conjunction with successful key-type registration, which allow...
TencentOS Server 3: binutils (TSSA-2025:0988)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0988 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
CVE-2025-15504
A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is the function Parser::parsebinary of the file src/ELF/Parser.tcc of the component ELF Binary Parser. The manipulation results in null pointer dereference. The attack must be initiated from a local...
CVE-2026-20871
CVE-2026-20871 refers to a Desktop Window Manager (dwm.exe) use-after-free vulnerability that enables local privilege escalation to SYSTEM. The connected exploit report and advisories describe a DWM-related attack path (Visual‑Field Singularity) affecting the DWM compositor, with PoC/claims of in...
Astra Linux – Vulnerability in binutils
A vulnerability has been identified in GNU Binutils 2.45. The affected component is the vfinfo function in the file ldmisc.c. Executing certain manipulations may lead to out-of-bounds read vulnerabilities. This attack can only be executed locally. The exploit has been made available to the public...
Astra Linux – Vulnerability in dcmtk
A vulnerability was detected in DCMTK up to version 3.6.7. The affected element is the function DcmQueryRetrieveConfig::readPeerList in the file /dcmqrcnf.cc of the component dcmqrscp. This vulnerability results in a null pointer dereference. The attack can be carried out locally. The exploit is...
Astra Linux – Vulnerability in hdf5
A vulnerability classified as problematic was discovered in HDF5 1.14.6. This vulnerability affects the function H5Ofsinfoencode in the file /src/H5Ofsinfo.c. The vulnerability leads to a heap-based buffer overflow. An attack can be launched on the local host. The exploit has been disclosed to th...
Astra Linux – Vulnerability in binutils
A vulnerability was identified in GNU Binutils 2.45. The function getlinkhashentry in the bfd/elflink.c file of the Linker component is affected by this vulnerability. This manipulation causes an out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed...