949 matches found
EUVD-2025-208347
GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dumprelocations returns early due to parsing errors, the internal allrelocations array may remain partially uninitialized...
PT-2026-22271
Name of the Vulnerable Software and Affected Versions XWEB Pro versions prior to 1.12.1 Description A stack-based buffer overflow exists in an API route of XWEB Pro. This allows unauthenticated attackers to cause stack corruption and program termination. The vulnerable API route is not specified...
CVE-2026-25898 Imagemagick Has Global Buffer Overflow (OOB Read) via Negative Pixel Index in UIL and XPM Writer
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the UIL and XPM image encoder do not validate the pixel index value returned by GetPixelIndex before using it as an array subscript. In HDRI builds, Quantum is ...
IBM DB2 Merge Backup 安全漏洞
IBM DB2 Merge Backup is a database-assisted backup tool developed by IBM. Version 12.1.0.0 of IBM DB2 Merge Backup contains a security vulnerability. This vulnerability stems from an error in calculating buffer sizes, which could allow authenticated users to cause the program to crash...
Nsasoft SpotMSN 安全漏洞
Nsasoft SpotMSN is a password recovery tool developed by the US company Nsasoft. Version 2.4.6 of Nsasoft SpotMSN contains a security vulnerability; this vulnerability stems from a buffer overflow in the registration name input field, which may cause the application to crash...
PT-2026-7680
Redir 3.3 contains a stack overflow vulnerability in the doproxyconnect function that allows attackers to crash the application by sending oversized input. Attackers can exploit the sprintf buffer without proper length checking to overwrite memory and cause a segmentation fault, resulting in...
EUVD-2026-4842
Multiple Buffer Overflows in Admin UI of EZCast Pro II version 1.17478.146 allow attackers to cause a program crash and potential remote code execution...
CVE-2026-24344
The CVE-2026-24344 entry describes multiple buffer overflows in the EZCast Pro II Admin UI, affecting version 1.17478.146. The root cause per the documents is buffer overflow conditions in the Admin UI, enabling a crash and potentially remote code execution. No detailed exploit vectors, affected ...
Raimersoft TapinRadio security vulnerability
Raimersoft TapinRadio is a web radio software developed by Raimersoft Corporation. The version 2.13.7 of Raimersoft TapinRadio contains a security vulnerability. This vulnerability stems from a buffer overflow in the application’s proxy settings, which could lead to program crashes...
CVE-2021-33629
isula-build before 0.9.5-6 can cause a program crash, when building container images, some functions for processing external data do not remove spaces when processing data...
CVE-2022-35952
TensorFlow is an open source platform for machine learning. The UnbatchGradOp function takes an argument id that is assumed to be a scalar. A nonscalar id can trigger a CHECK failure and crash the program. It also requires its argument batchindex to contain three times the number of elements as...
CVE-2022-35941
TensorFlow is an open source platform for machine learning. The AvgPoolOp function takes an argument ksize that must be positive but is not checked. A negative ksize can trigger a CHECK failure and crash the program. We have patched the issue in GitHub commit...
CVE-2022-23496
Yet Another UserAgent Analyzer Yauaa is a java library that tries to parse and analyze the useragent string and extract as many relevant attributes as possible. Applications using the Client Hints analysis feature introduced with 7.0.0 can crash because the Yauaa library throws an...
CVE-2022-31173
Juniper is a GraphQL server library for Rust. Affected versions of Juniper are vulnerable to uncontrolled recursion resulting in a program crash. This issue has been addressed in version 0.15.10. Users are advised to upgrade. Users unable to upgrade should limit the recursion depth manually...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000494)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000494 advisory. A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows an attacker with a local account to crash a trivial program and...
SUSE CVE-2022-50798
This candidate is a duplicate of CVE-2017-11359...
PT-2026-26144
HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...
CVE-2022-50798
Rejected reason: This candidate is a duplicate of CVE-2017-11359...
DEBIAN-CVE-2022-50798
SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program crashes. Attackers can trigger a floating point exception by providing a specially crafted WAV file that causes arithmetic errors during sound file processing...
PT-2025-54245
Name of the Vulnerable Software and Affected Versions SoX version 14.4.2 Description SoX version 14.4.2 contains a division by zero issue when processing WAV files, potentially leading to program crashes. An attacker can provide a crafted WAV file to trigger a floating point exception due to...