[SECURITY] Fedora 42 Update: gimp-3.0.8-5.fc42

GIMP GNU Image Manipulation Program is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for web pages. GIMP has many of the tools and filters you would expe ct to find in similar commercial offerings, and some interesting extras...

Mozilla Firefox < 60.0.2

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 60.0.2. It is, therefore, affected by a vulnerability as referenced in the mfsa2018-14 advisory. - A heap buffer overflow can occur in the Skia library when rasterizing paths using a maliciously crafted SVG file wit...

Mozilla Firefox ESR < 52.8.1

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 52.8.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2018-14 advisory. - A heap buffer overflow can occur in the Skia library when rasterizing paths using a maliciously crafted SVG file...

Mozilla Firefox ESR < 60.0.2

The version of Firefox ESR installed on the remote Windows host is prior to 60.0.2. It is, therefore, affected by a vulnerability as referenced in the mfsa2018-14 advisory. - A heap buffer overflow can occur in the Skia library when rasterizing paths using a maliciously crafted SVG file with...

Mozilla Firefox < 60.0.2

The version of Firefox installed on the remote Windows host is prior to 60.0.2. It is, therefore, affected by a vulnerability as referenced in the mfsa2018-14 advisory. - A heap buffer overflow can occur in the Skia library when rasterizing paths using a maliciously crafted SVG file with...

EUVD-2025-28586

Malicious code in bioql PyPI...

EUVD-2025-12557

Malicious code in bioql PyPI...

CVE-2025-55286

z2d is a pure Zig 2D graphics library. z2d v0.7.0 released with a new multi-sample anti-aliasing MSAA method, which uses a new buffering mechanism for storing coverage data. This differs from the standard alpha mask surface used for the previous super-sample anti-aliasing SSAA method. Under certa...

CVE-2025-55286 z2d OOB drawing with new multi-sample anti-aliasing could lead to invalid memory access and corruption

z2d is a pure Zig 2D graphics library. z2d v0.7.0 released with a new multi-sample anti-aliasing MSAA method, which uses a new buffering mechanism for storing coverage data. This differs from the standard alpha mask surface used for the previous super-sample anti-aliasing SSAA method. Under certa...

CVE-2025-55286

The CVE-2025-55286 issue affects z2d v0.7.0/v0.7.0-era MSAA buffering. Under scenarios where a drawn path lies wholly or partly outside the rendering surface, incorrect bounding can cause out-of-bounds access in the coverage buffer, impacting high-level operations (Context.fill/stroke, painter.fi...

CVE-2025-55286 z2d OOB drawing with new multi-sample anti-aliasing could lead to invalid memory access and corruption

z2d is a pure Zig 2D graphics library. z2d v0.7.0 released with a new multi-sample anti-aliasing MSAA method, which uses a new buffering mechanism for storing coverage data. This differs from the standard alpha mask surface used for the previous super-sample anti-aliasing SSAA method. Under certa...

PT-2025-33515 · Z2D · Z2D

Name of the Vulnerable Software and Affected Versions: z2d versions 0.7.0 Description: z2d is a pure Zig 2D graphics library. A new multi-sample anti-aliasing MSAA method introduced in version 0.7.0 uses a new buffering mechanism for storing coverage data. Incorrect bounding under certain...

CVE-2025-46333 z2d OOB composition could lead to invalid memory access and corruption

z2d is a pure Zig 2D graphics library. Versions of z2d after 0.5.1 and up to and including 0.6.0, when writing from one surface to another using z2d.compositor.StrideCompositor.run, and higher-level operations when the anti-aliasing mode is set to .default such as Context.fill, Context.stroke,...

SUSE SLES15 / openSUSE 15 Security Update : libqt5-qtquick3d (SUSE-SU-2024:3078-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3078-1 advisory. - CVE-2024-40724: Fixed heap-based buffer overflow in the PLY importer class in assimp bsc1228199 Other fixes: - Fix progressive...

SUSE-SU-2024:3078-1 Security update for libqt5-qtquick3d

This update for libqt5-qtquick3d fixes the following issues: - CVE-2024-40724: Fixed heap-based buffer overflow in the PLY importer class in assimp bsc1228199 Other fixes: - Fix progressive anti-aliasing, which doesn't work if any object in the scene used a PrincipledMaterial - Skip processing...

SUSE SLES15 Security Update : libqt5-qtquick3d (SUSE-SU-2024:2985-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2024:2985-1 advisory. - CVE-2024-40724: Fixed a heap-based buffer overflow in the PLY importer class bsc1228199 - Fixed progressive anti-aliasing, which doesn't work if any...

SUSE-SU-2024:2985-1 Security update for libqt5-qtquick3d

This update for libqt5-qtquick3d fixes the following issues: - CVE-2024-40724: Fixed a heap-based buffer overflow in the PLY importer class bsc1228199 - Fixed progressive anti-aliasing, which doesn't work if any object in the scene used a PrincipledMaterial - Fixed a crash when a custom...

SUSE CVE-2010-4698

Stack-based buffer overflow in the GD extension in PHP before 5.2.15 and 5.3.x before 5.3.4 allows context-dependent attackers to cause a denial of service application crash via a large number of anti-aliasing steps in an argument to the imagepstext function...

Mageia: Security Advisory (MGASA-2018-0282)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Denial Of Service (DoS)

Kernel is vulnerable to denial of service DoS. The Radeon GPU drivers in the Linux kernel were missing sanity checks for the Anti Aliasing AA resolve register values which could allow a local, unprivileged user to cause a denial of service or escalate their privileges on systems using a graphics...