15 matches found
OESA-2026-2347 libgcrypt security update
Libgcrypt is a general purpose cryptographic library originally based on code from GnuPG. Security Fixes: Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcrypkdecrypt.CVE-2026-41989...
CVE-2026-41990
Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data...
CVE-2026-41989
Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcrypkdecrypt...
Linux Distros Unpatched Vulnerability : CVE-2026-41989
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcrypkdecrypt. CVE-2026-41989 Note th...
CVE-2026-41989
Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcrypkdecrypt...
Linux Distros Unpatched Vulnerability : CVE-2026-27809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - psd-tools is a Python package for working with Adobe Photoshop PSD files. Prior to version 1.12.2, when a PSD file contains malformed RLE-compressed image data...
CoreDNS 安全漏洞
CoreDNS is a DNS server for the CoreDNS community. A security vulnerability exists in CoreDNS versions prior to 1.12.2, which stems from uncontrolled resource consumption and could lead to a denial of service...
Orthanc Security Breach
Orthanc is a free and open source software from Orthanc. A security vulnerability exists in versions of Orthanc prior to 1.12.2 that stems from vulnerability to reflective cross-site scripting XSS attacks...
SUSE CVE-2019-9635
NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file...
PYSEC-2019-228
NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file...
PT-2019-19768 · Google · Go
Name of the Vulnerable Software and Affected Versions: Go versions prior to 1.12.2 Description: The issue is related to the misuse of certain LoadLibrary functionality in Go on Windows, leading to DLL injection. Recommendations: For Go versions prior to 1.12.2, update to version 1.12.2 or later t...
PT-2016-6826 · Foreman · Foreman
Name of the Vulnerable Software and Affected Versions: Foreman versions prior to 1.12.2 Description: A cross-site scripting XSS issue exists, allowing remote authenticated users to inject arbitrary web script or HTML via the network interface device identifier in the host interface form. This is...
wireshark: AMQP dissector crash (wnpa-sec-2014-21)
Multiple integer overflows in epan/dissectors/packet-amqp.c in the AMQP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allow remote attackers to cause a denial of service application crash via a crafted amqp010 PDU in a packet...
wireshark: NCP dissector crashes (wnpa-sec-2014-22)
The buildexpertdata function in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 does not properly initialize a data structure, which allows remote attackers to cause a denial of service application crash via a crafted packet...
UBUNTU-CVE-2014-4342
MIT Kerberos 5 aka krb5 1.7.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service buffer over-read or NULL pointer dereference, and application crash by injecting invalid tokens into a GSSAPI application session...