CVE-2026-20426

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5538...

EUVD-2025-11170

Malicious code in bioql PyPI...

PT-2025-35602

Name of the Vulnerable Software and Affected Versions Digilent DASYLab affected versions not specified Description An out-of-bounds write issue exists due to improper bounds checking in displ2.dll when parsing a DSB file. This can lead to arbitrary code execution if a user opens a specially craft...

SUSE-SU-2025:02281-1 Security update for libssh

This update for libssh fixes the following issues: - CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. - CVE-2025-4878: Fixed use of uninitialized variable in privatekeyfromfile bsc1245310. - CVE-2025-5318: Fixed likely read beyond bounds in sftp server...

Security update for libssh

This update for libssh fixes the following issues: CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. CVE-2025-4878: Fixed use of uninitialized variable in privatekeyfromfile bsc1245310. CVE-2025-5318: Fixed likely read beyond bounds in sftp server handl...

CVE-2025-23133

The CVE-2025-23133 issue is in Linux kernel ath11k: when a new channel list is received, it updates cfg80211 and queues reg_work, but may immediately execute reg_update_chan_list() before cfg80211 finishes handling the list, causing a potential slab-out-of-bounds write (KASAN) in ath11k_reg_updat...

CVE-2024-47698

CVE-2024-47698 (Linux kernel) affects DVB frontends rtl2830/rtl2832 in the media/dvb-frontends subsystem. The issue is an out-of-bounds write in the pid_filter logic for rtl2832, caused by not enforcing the maximum index on bit manipulations (dev->filters is 32-bit; indices must be 0–31). The ...

CVE-2024-47697

In the Linux kernel, the following vulnerability has been resolved: drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error Ensure index in rtl2830pidfilter does not exceed 31 to prevent out-of-bounds access. dev-filters is a 32-bit value, so setbit and clearbit functions should...

RHEL 7 : opencv (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - opencv: out-of-bounds write error in the function FillColorRow4 CVE-2017-12606 - OpenCV 3.0.0 has a doubl...

Adobe Illustrator Multiple Vulnerabilities (APSB24-25) - Mac OS X

Adobe Illustrator is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:illustrator";...

Apple Mac OS X Security Update (HT214095)

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux kernel out-of-bounds write vulnerability (CNVD-2024-45901)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to cause a kernel error...

Security Bulletin: Fix for BIRT Report Engine that is vulnerable due to nested jtidy.jar r938

Summary BIRT report engine bundled in IBM DevOps Model Architect v1.0 is vulnerable as it has a nested jtidy.jar r938. Vulnerability Details CVEID:CVE-2023-34623 DESCRIPTION: jtidy is vulnerable to a denial of service, caused by an out-of-bounds write error. By using a specially crafted object th...

PT-2023-13625 · Unknown · Gpu Driver

Name of the Vulnerable Software and Affected Versions: gpu driver affected versions not specified Description: The issue is related to a missing bounds check in the gpu driver, which could lead to a possible out of bounds write. This might result in a local denial of service in the kernel...

PT-2023-13088 · Mdp · Mdp

Name of the Vulnerable Software and Affected Versions: mdp affected versions not specified Description: The issue is related to incorrect error handling, which can cause an out of bounds write. This could potentially lead to local escalation of privilege. System execution privileges are required...

Adobe Illustrator Multiple Vulnerabilities (APSB21-24) - Windows

Adobe Illustrator is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you c...

Adobe Media Encoder Arbitrary Code Execution Vulnerability (APSB20-10) - Windows

Adobe Media Encoder is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

Adobe InDesign RCE Vulnerabilities (APSB22-30) - Mac OS X

Adobe Indesign is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:indesignserver";...

Mageia: Security Advisory (MGASA-2018-0308)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome Security Updates (stable-channel-update-for-desktop-2021-02) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...