SSH MCP Server 注入漏洞

SSH MCP Server is a tool developed by Tufan Tunç for remotely executing Shell commands via SSH. Versions of SSH MCP Server 1.5.0 and earlier have a vulnerability due to improper handling of the Description parameter in the shell.write function of the src/index.ts file, which may lead to command...

PT-2026-35222

A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit has been disclosed...

CVE-2026-25638

ImageMagick (IM) is affected by a memory leak in the msl encoder code path. Specifically, in coders/msl.c, resources allocated in the WriteMSLImage function are not released when the function returns early, leading to a leak. This affects IM versions prior to 7.1.2-15 and 6.9.13-40. A patch addre...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002245)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002245 advisory. Buffer overflow in the ozcdevwrite function in drivers/staging/ozwpan/ozcdev.c in the Linux kernel before 3.12 allows local users to cause a denial of service or...

LIBPNG has an integer truncation causing heap buffer over-read in png_image_write_*

...

AZL-70856 CVE-2025-64506 affecting package gdal 3.6.3-2

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From version 1.6.0 to before 1.6.51, a heap buffer over-read vulnerability exists in libpng's pngwriteimage8bit function when processing 8-bit images through t...

Linux Distros Unpatched Vulnerability : CVE-2021-46966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ACPI: custommethod: fix potential use-after-free issue In cmwrite, buf is always freed when...

CVE-2022-36141

SWFMill commit 53d7690 was discovered to contain a segmentation violation via SWF::MethodBody::writeSWF::Writer, SWF::Context...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the dmcryptwrite function not adding condresched, which could lead to a soft lockup...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible array underflow in the sofipc4prioritymaskdfswrite function of the ASoC SOF component...

PT-2024-10580 · Unknown · Mtk Ts Abts.C

Name of the Vulnerable Software and Affected Versions: mtk ts Abts.c affected versions not specified Description: The issue is related to a possible buffer overflow in an sscanf due to improper input validation in the tscpu write GPIO out and mtkts Abts write functions of mtk ts Abts.c. This coul...

PT-2024-10667 · Gt1151 · Gt1151

Name of the Vulnerable Software and Affected Versions: GT1151 affected versions not specified Description: The issue is related to a possible out of bounds write due to a missing bounds check in the gt1x debug write proc and gt1x tool write functions of the gt1x generic.c and gt1x tools.c files...

PT-2024-22557 · Ifm · Smart Plc Ac14Xx Firmware +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A remote attacker with high privileges may use a writing file function to inject OS commands. There is no information provided about the estimated numbe...

Linux kernel code issue vulnerability

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel that stems from a null pointer dereference in the dvbdmxwrite method of media/dvb-core...

PT-2024-19550 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC version 2.3 Description: A buffer overflow issue was detected in GPAC via the gf isom new generic sample description function in the isomedia/isom write.c file at line 4577. This issue can be exploited, potentially leading to security...

PT-2023-27098 · Lrzip +1 · Lrzip +1

Name of the Vulnerable Software and Affected Versions: lrzip version 0.651 Description: The issue is related to a heap overflow via the libzpaq::PostProcessor::writeint function at /libzpaq/libzpaq.cpp. This allows attackers to cause a Denial of Service DoS via a crafted file. Recommendations: Fo...

PT-2023-25508 · Libredwg · Libredwg

Name of the Vulnerable Software and Affected Versions: LibreDWG version 0.12.5 Description: A heap buffer overflow issue was discovered in LibreDWG via the bit write TF function at bits.c. Recommendations: For LibreDWG version 0.12.5, consider disabling the bit write TF function as a temporary...

libredwg 缓冲区错误漏洞

libredwg is a free implementation of the DWG file format. A buffer error vulnerability exists in libredwg version 0.12.5, which stems from the bitwriteTF function containing a heap buffer overflow vulnerability...

SUSE CVE-2023-31082

An issue was discovered in drivers/tty/ngsm.c in the Linux kernel 6.2. There is a sleeping function called from an invalid context in gsmldwrite, which will block the kernel. Note: This has been disputed by 3rd parties as not a valid vulnerability...

SUSE CVE-2019-19252

vcswrite in drivers/tty/vt/vcscreen.c in the Linux kernel through 5.3.13 does not prevent write access to vcsu devices, aka CID-0c9acb1af77a...