Unity Linux 20.1060e / 20.1070e Security Update: SDL (UTSA-2026-017580)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017580 advisory. SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in MSADPCMdecode in audio/SDLwave.c. Tenable has extracted the...

RHEL 9 : kernel (RHSA-2026:2759)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2759 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: xHCI driver...

kernel: Linux kernel ALSA USB audio driver: Buffer overflow leading to information disclosure and denial of service

A flaw was found in the ALSA USB audio driver of the Linux kernel. This vulnerability, a buffer overflow, occurs when the size of the Pulse-Code Modulation PCM stream data packets exceeds the maximum allowed by the USB descriptor. A local attacker could exploit this by providing specially crafted...

CVE-2019-2341

Buffer overflow when the audio buffer size provided by user is larger than the maximum allowable audio buffer size. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...

ALSA: usb-audio: Fix potential overflow of PCM transfer buffer

...

EUVD-2019-11983

Malware in sbrugna...

EUVD-2018-10228

Malware in sbrugna...

EUVD-2020-6554

Malware in sbrugna...

EUVD-2020-1916

Malware in sbrugna...

CVE-2025-27030 Buffer Over-read in Audio

information disclosure while invoking calibration data from user space to update firmware size...

CVE-2023-30576

Apache Guacamole 0.9.10 through 1.5.1 may continue to reference a freed RDP audio input buffer. Depending on timing, this may allow an attacker to execute arbitrary code with the privileges of the guacd process...

GStreamer gstreamer-plugins-ugly Security Vulnerability

GStreamer is a set of frameworks for processing streaming media. A security vulnerability exists in GStreamer gstreamer-plugins-ugly that stems from an integer overflow in the SIPR audio buffer...

SUSE-SU-2023:3247-1 Security update for gstreamer-plugins-ugly

This update for gstreamer-plugins-ugly fixes the following issues: - CVE-2023-38103: Fixed an integer overflows when calculating the size of SIPR audio buffers. bsc1213751 - CVE-2023-38104: Fixed an integer overflow when calculation audio packet size . bsc1213750...

Apache Guacamole 资源管理错误漏洞

Apache Guacamole is a clientless remote desktop gateway from the Apache USA Foundation. The product supports protocols such as VNC, RDP and SSH. A resource management error vulnerability exists in Apache Guacamole versions 0.9.10 through 1.5.1, which stems from the fact that Apache Guacamole may...

PT-2023-22797 · Apache +1 · Apache Guacamole +1

Name of the Vulnerable Software and Affected Versions: Apache Guacamole versions 0.9.10 through 1.5.1 Description: The issue allows an attacker to execute arbitrary code with the privileges of the guacd process, depending on timing, as Apache Guacamole may continue to reference a freed RDP audio...

SUSE CVE-2014-1542

Buffer overflow in the Speex resampler in the Web Audio subsystem in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code via vectors related to a crafted AudioBuffer channel count and sample rate...

SUSE CVE-2014-1549

The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer function in Mozilla Firefox before 31.0 and Thunderbird before 31.0 does not properly allocate Web Audio buffer memory, which allows remote attackers to execute arbitrary code or cause a denial of service buffer overflow and...

SUSE CVE-2018-18503

When JavaScript is used to create and manipulate an audio buffer, a potentially exploitable crash may occur because of a compartment mismatch in some situations. This vulnerability affects Firefox 65...

MediaTek audio 缓冲区错误漏洞

MediaTek audio is an audio component of a chip from China's MediaTek Corporation MediaTek. A security vulnerability exists in the audio module of the MediaTek chips, which is caused by an out-of-scope write due to incorrect boundary checking. This could result in a local privilege escalation that...

Mozilla Firefox Security Advisory (MFSA2014-57) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...