CVE-2025-64331

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Prior to versions 7.0.13 and 8.0.2, a stack overflow can occur on large HTTP file transfers if the user has increased the HTTP response body limit and enabled the...

USN-7890-1: FFmpeg vulnerability

It was discovered that FFmpeg did not properly handle the parsing of certain malformed HLS playlists. If a user were tricked into opening a specially crafted HLS playlist, an attacker could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service...

mingw-expat security update

2.5.0-1 - Rebase to version 2.5.0 - Fix the following CVEs CVE-2023-52425 CVE-2024-28757 CVE-2024-45490 CVE-2024-45491 CVE-2024-45492 CVE-2024-50602 CVE-2024-8176 CVE-2025-59375 - Resolves: RHEL-114628...

CVE-2025-59777 affecting package libmicrohttpd for versions less than 0.9.77-4

CVE-2025-59777 affecting package libmicrohttpd for versions less than 0.9.77-4. A patched version of the package is available...

CVE-2025-63498

alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting XSS via the "userName" parameter...

CVE-2025-65499

Array index error in tlsverifycallback in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSLgetexdataX509STORECTXidx to return -1...

CVE-2025-65495

Integer signedness error in tlsverifycallback in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted TLS certificate that causes i2dX509 to return -1 and be misused as a malloc size parameter...

CVE-2025-65498

NULL pointer dereference in coapdtlsgeneratecookie in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSLgetSSLCTX to return NULL...

CVE-2025-65500

NULL pointer dereference in coapdtlsgeneratecookie in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSLgetSSLCTX to return NULL...

CVE-2025-65102

PJSIP is a free and open source multimedia communication library. Prior to version 2.16, Opus PLC may zero-fill the input frame as long as the decoder ptime, while the input frame length, which is based on stream ptime, may be less than that. This issue affects PJSIP users who use the Opus audio...

GHSA-J5W8-Q4QC-RX2X vulnerabilities

Vulnerabilities for packages: rancher-machine, dapr, prometheus-operator, apache-exporter, knative-eventing, azure-ipam, secrets-store-csi-driver-provider-azure, secrets-store-csi-driver, rancher-system-agent, external-dns, bank-vaults, harbor, helm, steampipe, grafana-operator, grype, chartmuseu...

CVE-2025-47914 vulnerabilities

Vulnerabilities for packages: mailpit, rancher-machine, dapr, prometheus-operator, apache-exporter, knative-eventing, azure-ipam, secrets-store-csi-driver-provider-azure, secrets-store-csi-driver, rancher-system-agent, external-dns, bank-vaults, helm, grafana-operator, grype, chartmuseum,...

CVE-2025-22105 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-azure, linux-aws...

GHSA-R4VM-3MC7-PRGX vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-azure, linux-aws...

firefox: thunderbird: Use-after-free in the Audio/Video component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the Audio/Video component...

firefox: thunderbird: Spoofing issue in Firefox

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Spoofing issue in Firefox...

CVE-2025-64524

cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. In versions 2.0.1 and prior, a heap-buffer-overflow vulnerability in the rastertopclx filter causes the program to crash with a segmentation fault...

firefox: thunderbird: Mitigation bypass in the DOM: Security component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Mitigation bypass in the DOM: Security component...

expat security update

2.5.0-1 - Rebase to version 2.5.0 - Fix CVE-2025-59375 - Resolves: RHEL-114618...

CVE-2025-58181

SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption...