34027 matches found
PT-2026-41548
Allok Fast AVI MPEG Splitter 1.2 contains a stack based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious license name string. Attackers can craft a payload with 780 bytes of junk data followed by structured shellcode and place it in the...
PostgreSQL refint allows stack buffer overflow and SQL injection
...
SUSE-SU-2026:21680-1 Security update for freeipmi
This update for freeipmi fixes the following issue - CVE-2026-33554: improper memory handling and data validation can lead to stack buffer overflows and acceptance of malformed payloads/responses bsc1260414...
CVE-2026-41963
Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-41963
Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability...
EUVD-2026-30525
Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-41963
Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-41963
Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-41963
Technical details (affected product, versions, root cause, fix) are not publicly available in the provided documents. Monitor for updates.
SUSE CVE-2026-45205
Uncontrolled Recursion vulnerability in Apache Commons. When processing an untrusted configuration file, Commons Configuration will throw a StackOverflowError for YAML input with cycles. This issue affects Apache Commons: from 2.2 before 2.15.0. Users are recommended to upgrade to version 2.15.0,...
PT-2026-41284
Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability...
Medium: ImageMagick
Issue Overview: Stack buffer overflow in XTileImage CVE-2026-42050 Affected Packages: ImageMagick Issue Correction: Run dnf update ImageMagick --releasever 2023.11.20260514 or dnf update --advisory ALAS2023-2026-1704 --releasever 2023.11.20260514 to update your system. More information on how to...
Imager::File::GIF 缓冲区错误漏洞
Imager::File::GIF is a Perl image module developed by Tony Cook, which supports the reading, writing, and processing of GIF images. Versions of Imager::File::GIF 1.002 and earlier contained a buffer error vulnerability. This vulnerability stemmed from the ireadgifmultilow function, which allocate...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system developed by Chinese company Huawei. It is a full-scenario distributed operating system based on a microkernel architecture. There is a security vulnerability in Huawei HarmonyOS, which stems from a stack overflow issue and may affect its usability...
Siemens Solid Edge Multiple File Parsing Vulnerabilities (SSA-921111)
The version of Siemens Solid Edge installed on the remote Windows host is SE2026 prior to V226.0 Update 5. It is, therefore, affected by multiple file parsing vulnerabilities: - The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An...
CLSA-2026-1778767103 Fix CVE(s): CVE-2026-25576, CVE-2026-28688, CVE-2026-28690
Security: - CVE-2026-25576: heap buffer over-read in raw pixel coders - CVE-2026-28688: use-after-free in MSL encoder - CVE-2026-28690: stack-based buffer overflow in MNG/JNG encoder...
CVE-2026-44375
Nerdbank.MessagePack is a NativeAOT-compatible MessagePack serialization library. Prior to 1.1.62, Nerdbank.MessagePack contains an uncontrolled stack allocation vulnerability in DateTime decoding. A malicious MessagePack payload can declare an oversized timestamp extension length, causing the...
CVE-2026-44375
Nerdbank.MessagePack is a NativeAOT-compatible MessagePack serialization library. Prior to 1.1.62, Nerdbank.MessagePack contains an uncontrolled stack allocation vulnerability in DateTime decoding. A malicious MessagePack payload can declare an oversized timestamp extension length, causing the...
CVE-2026-44375
The CVE-2026-44375 entry affects Nerdbank.MessagePack. The vulnerability arises in DateTime decoding where the reader can be fed a malicious MessagePack payload declaring an oversized timestamp extension length, enabling an attacker-controlled amount of stack memory to be allocated via stackalloc...
EUVD-2026-30299
Nerdbank.MessagePack is a NativeAOT-compatible MessagePack serialization library. Prior to 1.1.62, Nerdbank.MessagePack contains an uncontrolled stack allocation vulnerability in DateTime decoding. A malicious MessagePack payload can declare an oversized timestamp extension length, causing the...