DEBIAN-CVE-2025-39737

In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid soft lockup in kmemleakdocleanup A soft lockup warning was observed on a relative small system x86-64 system with 16 GB of memory when running a debug kernel with kmemleak enabled. watchdog: BUG: soft lockup -...

Improper Authentication

Overview Affected versions of this package are vulnerable to Improper Authentication due to an implementation flaw that allows an invalid object to be processed. An attacker can compromise the integrity of the authentication process by circumventing the client verification mechanism. Remediation...

Improper Authentication

Overview Affected versions of this package are vulnerable to Improper Authentication due to an implementation flaw that allows an invalid object to be processed. An attacker can compromise the integrity of the authentication process by circumventing the client verification mechanism. Remediation...

Apple WebKit WebCore ContainerNode Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple WebKit. User interaction is required to exploit this vulnerability. The specific flaw exists within the processing of Text objects. The issue results from the lack of validating the existence o...

The vulnerability of the getBoundName() function in the JIT-compiler of Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a malicious actor to execute arbitrary code.

The vulnerability of the getBoundName function in the JIT-compiler of Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to access to resources through incompatible types during object processing. Exploiting this vulnerability allows an attacker to execute arbitrary code...

SUSE CVE-2013-5614

Mozilla Firefox before 26.0 and SeaMonkey before 2.23 do not properly consider the sandbox attribute of an IFRAME element during processing of a contained OBJECT element, which allows remote attackers to bypass intended sandbox restrictions via a crafted web site...

The vulnerability of the Redis database management system, related to integer overflow when processing objects, allows a attacker to cause a service failure.

The vulnerability of the Redis database management system is related to integer overflow when processing objects. Exploiting this vulnerability can allow attackers to trigger a service failure using the SETRANGE and SORT/SORT-RO commands. source-iocs-preserved const=SORTRO...

The vulnerability of the Windows operating system’s kernel allows attackers to enhance their privileges.

The vulnerability of Windows operating system kernels is related to insufficient validation of input data during object processing. Exploiting this vulnerability can allow attackers to enhance their privileges...

GO-2022-1071 Denial of service in flux controllers in github.com/fluxcd modules

Flux controllers are vulnerable to a denial of service attack. Users that have permissions to change Flux's objects, either through a Flux source or directly within a cluster, can provide invalid data to fields .spec.interval or .spec.timeout and structured variations of these fields, causing the...

The vulnerability of the PDF-XChange PDF document viewing and editing program lies in the fact that operations outside the buffer are allowed in memory when processing Collab objects, allowing an attacker to execute arbitrary code.

The vulnerability of the PDF document viewing and editing software PDF-XChange lies in the fact that operations may go beyond the buffer in memory when processing Collab objects. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malware fil...

The vulnerability of the Microsoft Silverlight software platform, related to insufficient checking of pointers, allows a perpetrator to execute arbitrary code or gain access to read, modify, or delete data.

The vulnerability of the Microsoft Silverlight software platform lies in the insufficient checking of pointers used to access elements when processing HTML objects. Exploiting this vulnerability allows an attacker to execute arbitrary code or gain access to read, modify, or delete data by running...

The vulnerability of the VMware Carbon Black Cloud for MacOS installer relates to memory object processing errors, which allows an attacker to compromise the integrity and accessibility of the protected information.

The vulnerability of the VMware Carbon Black Cloud for MacOS installer is related to errors in memory object processing. Exploiting this vulnerability could allow an attacker to compromise the integrity and accessibility of the protected information...

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Foundation, and Microsoft SharePoint Enterprise Server packages lies in memory object processing errors, which allow attackers to disclose protected information.

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Foundation, and Microsoft SharePoint Enterprise Server lies in memory object processing errors. Exploiting this vulnerability can allow an attacker to disclose protected information remotely...

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Foundation, and Microsoft SharePoint Enterprise Server packages lies in memory object processing errors, which allow an attacker to gain unauthorized access to protected information.

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Foundation, and Microsoft SharePoint Enterprise Server lies in memory object processing errors. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Windows COM Server component of the Windows operating system, which allows attackers to escalate their privileges

The vulnerability of the Windows COM Server component of the operating system is related to errors in the processing of COM objects. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

Vulnerability of the object processing function in the kernel memory of the Windows operating system, allowing attackers to gain access to protected information

The vulnerability of the object processing function in the kernel memory of the Windows operating system is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to gain access to protected information...

Vulnerability of the object processing function in the kernel memory of the Windows operating system, allowing attackers to gain access to protected information

The vulnerability of the object processing function in the kernel memory of the Windows operating system is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to gain access to protected information...

The vulnerability of the relational database management system used by Microsoft Access programs within the Microsoft Office and Office 365 suites allows a perpetrator to execute arbitrary code.

The vulnerability of the relational database management system used by Microsoft Access programs within the Microsoft Office and Office 365 suites exists due to errors in object processing in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Jet Database Engine database management system in the Windows operating system, related to errors in object processing in memory, allows a perpetrator to execute arbitrary code.

The vulnerability of the Jet Database Engine database management system in the Windows operating system is related to errors in object processing in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file...

The vulnerability of the Windows Spatial Data Service in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows Spatial Data Service for Windows operating systems exists due to errors in object processing in memory. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...