TencentOS Server 3: sysstat (TSSA-2023:0106)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0106 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

The vulnerability of the `mov_read_trak` function in the libavformat library, a multimedia library within FFmpeg, allows a attacker to cause a service failure.

The vulnerability of the movreadtrak function in the libavformat library, a multimedia library within FFmpeg, is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

CLSA-2025-1749826078 rsync: Fix of CVE-2016-9840

CVE-2016-9840: fix improper pointer arithmetic in bundled zlib...

CLSA-2025-1749825355 rsync: Fix of CVE-2016-9840

CVE-2016-9840: fix improper pointer arithmetic in bundled zlib...

SHIELD: Secure Hypernetworks for Incremental Expansion Learning Defense

Traditional deep neural networks suffer from several limitations, including catastrophic forgetting. When models are adapted to new datasets, they tend to quickly forget previously learned knowledge. Another significant issue is the lack of robustness to even small perturbations in the input data...

SUSE CVE-2025-4638

A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary PCL. This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic. Since version 1.14.0, PCL by default uses a zlib...

Oracle Linux 8 : rsync (ELSA-2025-8395)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8395 advisory. 3.1.3-23 - Resolves: RHEL-52004 - Slowness in rsync due to extra validation steps 3.1.3-22 - Resolves: RHEL-91519 - Improper Pointer Arithmetic in pcl Tenable h...

zlib: Out-of-bound pointer arithmetic in inftrees.c

A vulnerability was discovered in the inftrees.c file of zlib. Pointer arithmetic operations violate the C standard by subtracting an offset from an array pointer before its allocated memory, leading to undefined behavior...

RHEL 8 : rsync (RHSA-2025:8395)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:8395 advisory. The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only...

rsync security update

3.1.3-23 - Resolves: RHEL-52004 - Slowness in rsync due to extra validation steps 3.1.3-22 - Resolves: RHEL-91519 - Improper Pointer Arithmetic in pcl...

Important: Red Hat Security Advisory: zlib security update

An update for zlib is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

zlib: Out-of-bound pointer arithmetic in inftrees.c

A vulnerability was discovered in the inftrees.c file of zlib. Pointer arithmetic operations violate the C standard by subtracting an offset from an array pointer before its allocated memory, leading to undefined behavior...

RHEL 7 : zlib (RHSA-2025:8314)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:8314 advisory. The zlib packages provide a general-purpose lossless data compression library that is used by many different programs. Security Fixes: pcl: zlib:...

Mageia: Security Advisory (MGASA-2025-0162)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated zsync packages fix security vulnerabilities

Improper Pointer Arithmetic in pcl. CVE-2025-4638...

MGASA-2025-0162 Updated zsync packages fix security vulnerabilities

Improper Pointer Arithmetic in pcl. CVE-2025-4638...

CVE-2025-46713

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 0.0.1 and prior to 1.15.12, APISETSECUREPARAM may have an arithmetic overflow deep in the memory allocation subsystem that would lead to a smaller allocation than requeste...

CVE-2022-34739

The fingerprint module has a vulnerability of overflow in arithmetic addition. Successful exploitation of this vulnerability may result in the acquisition of data from unknown addresses in address mappings...

CVE-2020-11296

Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon...

CVE-2025-46714

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to 1.15.12, APIGETSECUREPARAM has an arithmetic overflow leading to a small memory allocation and then a extremely large copy into the small allocation...