firefox: thunderbird: Sandbox escape in the Storage: IndexedDB component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape in the Storage: IndexedDB component...

CVE-2024-34064 affecting package nodejs24 for versions less than 24.13.0-1

CVE-2024-34064 affecting package nodejs24 for versions less than 24.13.0-1. A patched version of the package is available...

fontforge: FontForge: Remote Code Execution via Use-After-Free in SFD file parsing

A flaw was found in FontForge. This use-after-free vulnerability, occurring during the parsing of SFD Spline Font Database files, allows a remote attacker to execute arbitrary code. Successful exploitation requires user interaction, such as opening a specially crafted malicious file or visiting a...

CVE-2011-0814 vulnerabilities

Vulnerabilities for packages: openjdk-26-openj9, openjdk-11-openj9, openjdk-21-openj9, openjdk-8-openj9, openjdk-25-openj9, openjdk-17-openj9...

Linux Distros Unpatched Vulnerability : CVE-2017-5067

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An insufficient watchdog timer in navigation in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac allowed a remote attacker to spoof the contents ...

SUSE CVE-2013-6487

Integer overflow in libpurple/protocols/gg/lib/http.c in the Gadu-Gadu gg parser in Pidgin before 2.10.8 allows remote attackers to have an unspecified impact via a large Content-Length value, which triggers a buffer overflow...

SUSE CVE-2020-21839

An issue was discovered in GNU LibreDWG 0.10. Crafted input will lead to an memory leak in dwgdecodeeed ../../src/decode.c:3638...

SUSE CVE-2022-3725

Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file...

exiv2: assertion failure in BigTiffImage::readData in bigtiffimage.cpp

In Exiv2 0.26, an assertion failure in BigTiffImage::readData in bigtiffimage.cpp results in an abort...

[SECURITY] Fedora 32 Update: glibc-2.31-2.fc32

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

format): Filenames with newline character can lead to revision corruption

Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote authenticated users to cause a denial of service FSFS repository corruption via a newline character in a file name...