62985 matches found
Security update for tiff
This update for tiff fixes the following issues: CVE-2025-61143: Fixed NULL pointer dereference bsc1258798. CVE-2025-61144: Fixed stack overflow in readSeparateStripsIntoBuffer bsc1258801. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
SUSE-SU-2026:1408-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2025-61143: Fixed NULL pointer dereference bsc1258798. - CVE-2025-61144: Fixed stack overflow in readSeparateStripsIntoBuffer bsc1258801...
Security update for tiff
This update for tiff fixes the following issues: CVE-2025-61143: Fixed NULL pointer dereference bsc1258798. CVE-2025-61144: Fixed stack overflow in readSeparateStripsIntoBuffer bsc1258801. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
SUSE-SU-2026:1407-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2025-61143: Fixed NULL pointer dereference bsc1258798. - CVE-2025-61144: Fixed stack overflow in readSeparateStripsIntoBuffer bsc1258801...
SUSE CVE-2026-3392
A weakness has been identified in FascinatedBox lily up to 2.3. The affected element is the function evaltree of the file src/lilyemitter.c. This manipulation causes null pointer dereference. The attack is restricted to local execution. The exploit has been made available to the public and could ...
CVE-2026-30656
A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...
fio 安全漏洞
Fio is a flexible I/O testing software developed by Jens Axboe as an individual project. Version 3.41 of Fio contains a security vulnerability. This vulnerability stems from a null pointer dereferencing during the parsing of job files that contain the fdppli option. It may lead to segmentation...
CVE-2026-30656
A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...
CVE-2026-30656
The CVE-2026-30656 entry affects fio (Flexible I/O Tester) v3.41. A NULL pointer dereference occurs when parsing job files that contain the fdp_pli option; the callback str_fdp_pli_cb() calls strdup() on a NULL input when the option is provided without an argument, causing a segmentation fault an...
CVE-2026-30656
A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...
PT-2026-33324
A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdp pli option. The callback function str fdp pli cb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This...
CVE-2026-30656
A NULL pointer dereference vulnerability exists in fio Flexible I/O Tester v3.41 when parsing job files containing the fdppli option. The callback function strfdpplicb does not validate the input pointer and calls strdup on a NULL value when the option is specified without an argument. This resul...
KB5061195: Windows Server 2008 R2 OOB Security Update (May 2025) (CVE-2025-32709)
The remote Windows host is missing a security update and is therefore affected by an elevation of privilege vulnerability: - Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. CVE-2025-32709 Note that Nessus has n...
KB5061197: Windows Server 2008 OOB Security Update (May 2025) (CVE-2025-32709)
The remote Windows host is missing a security update and is therefore affected by an elevation of privilege vulnerability: - Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. CVE-2025-32709 Note that Nessus has n...
Security Bulletin: Multiple vulnerabilities in Python affect AIX
Summary Vulnerabilities in Python could allow a null pointer dereference CVE-2026-32776, CVE-2026-32778, an infinite loop CVE-2026-32777, or impact availability CVE-2025-12084. Python is used by AIX as part of Ansible node management automation. Vulnerability Details CVEID:CVE-2026-32776...
CVE-2026-32216
Null pointer dereference in Windows Redirected Drive Buffering allows an authorized attacker to deny service locally...
Multiple vulnerabilities in Python affect AIX
IBM SECURITY ADVISORY First Issued: Wed Apr 15 15:19:52 CDT 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/pythonadvisory19.asc Security Bulletin: Multiple vulnerabilities in Python affect AIX...
Security update for expat
This update for expat fixes the following issues: CVE-2026-32776: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259726. CVE-2026-32777: denial of service due to infinite loop in DTD content parsing bsc1259711. CVE-2026-32778: NUL...
SUSE-SU-2026:1352-1 Security update for expat
This update for expat fixes the following issues: - CVE-2026-32776: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259726. - CVE-2026-32777: denial of service due to infinite loop in DTD content parsing bsc1259711. - CVE-2026-3277...
Security Bulletin: IBM Cloud Pak for Data System (CPDS 2.0) - NULL Pointer Dereference in OpenSSL cryptography package
Summary IBM Cloud Pak for Data System CPDS 2.0 uses the Python cryptography package version 3.4.7, which depends on OpenSSL. CVE-2024-0727 affects OpenSSL's PKCS12 file processing functionality. A maliciously formatted PKCS12 file can cause a NULL pointer dereference, leading to application crash...