CVE-2022-50188 drm/meson: Fix refcount leak in meson_encoder_hdmi_init

In the Linux kernel, the following vulnerability has been resolved: drm/meson: Fix refcount leak in mesonencoderhdmiinit offinddevicebynode takes reference, we should use putdevice to release it when not need anymore. Add missing putdevice in error path to avoid refcount leak...

TencentOS Server 3: nodejs:18 (TSSA-2024:0766)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0766 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

KB5060842: Windows 11 Version 24H2 / Windows Server 2025 Security Update (June 2025)

The remote Windows host is missing security update 5060842 or Hot Patch 5060841. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-33066 -...

CVE-2025-20993

Out-of-bounds write in libsecimaging.camera.samsung.so prior to SMR Jun-2025 Release 1 allows local attackers to write out-of-bounds memory...

PT-2025-23754 · Samsung · Libsecimaging.Camera.Samsung.So

Name of the Vulnerable Software and Affected Versions: libsecimaging.camera.samsung.so versions prior to SMR Jun-2025 Release 1 Description: The issue is an out-of-bounds write that allows local attackers to write out-of-bounds memory. This can be exploited by local attackers. Recommendations: Fo...

CVE-2025-44906

CVE-2025-44906 : jhead v3.08 contains a heap-use-after-free in the ProcessFile function (jhead.c), causing memory corruption. Public sources describe an application‑level issue upon processing crafted JPEG files; CVSSv3.1 base score is 7.8 (HIGH) with local access and user interaction required. T...

The vulnerability of the Mojo library for Google Chrome and Microsoft Edge browsers allows a hacker to execute arbitrary code.

The vulnerability of the Mojo library for Google Chrome and Microsoft Edge browsers stems from the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

ABB M2M Gateway Uncontrolled Resource Consumption in embedded Bind (CVE-2023-3341)

The code that processes control channel messages sent to named calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of available stack memory,...

CVE-2024-25452

Bento4 v1.6.0-640 was discovered to contain an out-of-memory bug via the AP4UrlAtom::AP4UrlAtom function...

CVE-2024-6609

When almost out-of-memory an elliptic curve key which was never allocated could have been freed again. This vulnerability affects Firefox 128 and Thunderbird 128...

CVE-2023-25656

notation-go is a collection of libraries for supporting Notation sign, verify, push, and pull of oci artifacts. Prior to version 1.0.0-rc.3, notation-go users will find their application using excessive memory when verifying signatures. The application will be killed, and thus availability is...

CVE-2022-48292

The Bluetooth module has an out-of-memory OOM vulnerability. Successful exploitation of this vulnerability may affect data confidentiality...

CVE-2022-35009

PNGDec commit 8abf6be was discovered to contain a memory allocation problem via asanmalloclinux.cpp...

CVE-2022-29546

HtmlUnit NekoHtml Parser before 2.61.0 suffers from a denial of service vulnerability. Crafted input associated with the parsing of Processing Instruction PI data leads to heap memory consumption. This is similar to CVE-2022-28366 but affects a much later version of the product...

CVE-2021-45703

An issue was discovered in the tectonicxdv crate before 0.1.12 for Rust. XdvParser::::process may read from uninitialized memory locations...

CVE-2021-39525

An issue was discovered in libredwg through v0.10.1.3751. bitreadfixed in bits.c has a heap-based buffer overflow...

CVE-2021-46337

There is an Assertion 'pagep != NULL' failed at /parser/js/js-parser-mem.cparserlistget in JerryScript 3.0.0...

CVE-2021-42219

Go-Ethereum v1.10.9 was discovered to contain an issue which allows attackers to cause a denial of service DoS via sending an excessive amount of messages to a node. This is caused by missing memory in the component /ethash/algorithm.go...

CVE-2020-9944

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, tvOS 14.0, iOS 14.0 and iPadOS 14.0. An application may be able to read restricted memory...

CVE-2020-3872

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to read restricted memory...