[SECURITY] Fedora 42 Update: python-pydicom-3.0.2-1.fc42

pydicom is a pure python package for working with DICOM files. It was made for inspecting and modifying DICOM data in an easy "pythonic" way. The modifications can be written again to a new file. pydicom is not a DICOM server, and is not primarily about viewing images. It is designed to let you...

EUVD-2025-33761

An arbitrary file upload vulnerability exists in JeeWMS 20250820, which is caused by the lack of file checking in the saveFiles function in /jeewms/cgUploadController.do. An attacker with normal privileges was able to upload a malicious file that would lead to remote code execution...

Linux Distros Unpatched Vulnerability : CVE-2023-24287

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - A crafted save file can cause a buffer overrun in the Undead puzzle CVE-2023-24287 Note that Nessus relies on the presence of the package as...

PT-2024-20208 · Tcpdump · Tcpdump

Name of the Vulnerable Software and Affected Versions: tcpdump versions from 2023-06-05 to 2024-03-21 git master branch Description: The PPP printer in tcpdump can enter an infinite loop when reading a crafted DLT PPP SERIAL .pcap savefile due to a bug in packet data buffers management...

PT-2024-15037 · WordPress · The Greenshift

Name of the Vulnerable Software and Affected Versions: The Greenshift – animation and page builder blocks plugin for WordPress versions up to, and including, 7.6.2 Description: The issue is related to arbitrary file uploads due to missing file type validation on the gspb save files function. This...

PT-2023-19517 · Unknown · Simon Tatham'S Portable Puzzle Collection

Name of the Vulnerable Software and Affected Versions: Simon Tatham's Portable Puzzle Collection affected versions not specified Description: A crafted save file can cause a buffer overrun in the software. This issue can potentially be exploited, but no specific details about the estimated number...

FreedroidRPG Input Validation Error Vulnerability

FreedroidRPG is an open source role-playing game from the Freedroid team. A security vulnerability exists in the savestructinternal.c file in FreedroidRPG version 1.0rc2, which originates from a saved game file being a Lua script file. The vulnerability stems from the fact that the saved game fil...

PT-2020-14076 · Freedroidrpg +1 · Freedroidrpg +1

Name of the Vulnerable Software and Affected Versions: FreedroidRPG version 1.0rc2 Description: An issue was discovered in savestruct internal.c where saved game files, composed of Lua scripts, can be modified to include arbitrary Lua code. This leads to arbitrary code execution during game...

libvirt: virDomainManagedSaveDefineXML API exposed to readonly clients

It was discovered that libvirtd would permit readonly clients to use the virDomainManagedSaveDefineXML API, which would permit them to modify managed save state files. If a managed save had already been created by a privileged user, a local attacker could modify this file such that libvirtd would...

CVE-2019-9845

madskristensen Miniblog.Core through 2019-01-16 allows remote attackers to execute arbitrary ASPX code via an IMG element with a data: URL, because SaveFilesToDisk in Controllers/BlogController.cs writes a decoded base64 string to a file without validating the extension...

Fedora 18 : freeradius-2.2.0-0.fc18 (2012-15342)

This updates to the current upstream 2.2.0 release which is configuration compatible with the prior 2.1.12. Version 2.2.0 includes a security fix for CVE-2012-3547 Stack-based buffer overflow This update also includes a fix to prevent .rpmsave and .rpmnew files from being read from the...

Saving Files from Firefox

You will then see an Options window that has a Category row at the top and the features for that category below. The first category of interest is the General category. Select the option Always ask me where to save files. This will make it more obvious when a web page attempts to save a file to...

Zune software ActiveX unauthorized access

It's possible to save files to any location...

CVE-2006-6378

BTSaveMySql 1.2 stores sensitive data under the web root with insufficient access control, which allows remote attackers to obtain configuration and save files via direct requests...

mac-excel98.txt

Subject: MM Giant Excel security hole Date: Thu, 12 Nov 1998 16:09:22 -0500 x-sender: [email protected] From: Steve Klein To: "Mac Mgrs" Mime-Version: 1.0 Sender: [email protected] Status: Question short version: Does anyone know of a way to protect my Macs from Excel's confused pathname...