75 matches found
Astra Linux – Vulnerability in imagemagick
A flaw was discovered in ImageMagick within MagickCore/statistic.c. An attacker who submits a crafted file processed by ImageMagick could induce undefined behavior, resulting in an excessively large value for the 64-bit type ssizet. This likely leads to a disruption in the application’s...
[SECURITY] Fedora 44 Update: kernel-7.0.9-205.fc44
The kernel meta package...
Astra Linux - уязвимость в redis
Redis is an in-memory database that persists data on disk.Authenticated users can use string matching commands such as SCAN or KEYS with specially crafted patterns to trigger a denial-of-service attack on Redis, causing it to hang and consume 100% of CPU resources. This issue has been fixed in...
Astra Linux – Vulnerability in imagemagick
A flaw was discovered in ImageMagick, specifically in the file MagickCore/quantum-export.c. An attacker who submits a crafted file processed by ImageMagick could trigger undefined behavior, resulting in values that are outside the range of the unsigned long long type, as well as a shift exponent...
PT-2026-42137
The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 7.0.9 via the 'get stream data' function. This makes it possible for unauthenticated attackers to extract sensitive data including published password-protected post, page,...
[SECURITY] Fedora 43 Update: kernel-7.0.9-102.fc43
The kernel meta package...
EUVD-2018-8181
Malware in sbrugna...
EUVD-2020-20277
Malware in sbrugna...
EUVD-2020-20279
Malware in sbrugna...
EUVD-2020-20271
Malware in sbrugna...
EUVD-2020-20256
Malware in sbrugna...
EUVD-2020-20273
Malware in sbrugna...
EUVD-2025-10710
Malicious code in bioql PyPI...
CVE-2025-57347
A vulnerability exists in the 'dagre-d3-es' Node.js package version 7.0.9, specifically within the 'bk' module's addConflict function, which fails to properly sanitize user-supplied input during property assignment operations. This flaw allows attackers to exploit prototype pollution...
SUSE CVE-2025-29916
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Datasets declared in rules have an option to specify the hashsize to use. This size setting isn't properly limited, so the hash table allocation can be large. Untrusted rules can...
CVE-2025-29661
Litepubl CMS = 7.0.9 is vulnerable to RCE in admin/service/run...
litepubl 安全漏洞
litepubl is a small CMS by Vladimir Personal Developer. A security vulnerability exists in litepubl 7.0.9 and earlier versions, which stems from improper handling of the admin/service/run path and could lead to remote code execution...
DEBIAN-CVE-2025-29918
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability i...
CVE-2025-29917
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The bytes setting in the decodebase64 keyword is not properly limited. Due to this, signatures using the keyword and setting can cause large memory allocations of up to 4 GiB per...
UBUNTU-CVE-2025-29918
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability i...