DEBIAN-CVE-2026-22695

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

libpng 缓冲区错误漏洞

libpng is The PNG Development Group's open source PNG reference library for creating, reading and writing PNG graphics files. A buffer error vulnerability exists in libpng versions 1.6.51 through 1.6.53, which stems from a heap buffer over-read in the pngimagefinishread function...

ROS-20260112-7342

Vulnerability in the xlogrecoverprocessdata function in the fs/xfs/xfslogrecover.c module of the xfs file system of the Linux kernel is related to reading memory outside of the allocated buffer Exploitation of the vulnerability could allow an attacker to affect the confidentiality and availabilit...

ROS-20260112-7308

A vulnerability in the amdgpudm.c component of the Linux operating system kernel is related to reading outside of the allowed data buffer boundaries. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260112-7312

A vulnerability in the qplibfp.c component of the Linux operating system kernel is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

CVE-2022-42411

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2024-41445

Library MDF mdflib v2.1 is vulnerable to a heap-based buffer overread via a crafted mdf4 file is parsed using the ReadData function...

CVE-2022-33297

Information disclosure due to buffer overread in Linux sensors...

CVE-2026-20027

Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak sensitive information or to restart, resulting in an interruption of packet inspection. This vulnerabili...

Siemens Ruggedcom ROX Improper Input Validation (CVE-2024-5642)

CPython 3.9 and earlier doesn't disallow configuring an empty list for SSLContext.setnpnprotocols which is an invalid value for the underlying OpenSSL API. This results in a buffer over-read when NPN is used see CVE-2024-5535 for OpenSSL. This vulnerability is of low severity due to NPN being not...

CVE-2026-20027

Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak sensitive information or to restart, resulting in an interruption of packet inspection. This vulnerabili...

CVE-2026-20027 Cisco Snort DCERPC Stub Data Out of Bounds Read

Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak sensitive information or to restart, resulting in an interruption of packet inspection. This vulnerabili...

CVE-2026-20026 Multiple Cisco Products Snort 3 DCERPC Vulnerabilities

Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak sensitive information or to restart, resulting in an interruption of packet inspection. This vulnerabili...

CVE-2025-1400

Out-of-bounds Read vulnerability in unpackresponse conn.c in libplctag from 2.0 through 2.6.3 allows Overread Buffers via network...

PT-2026-2047

Name of the Vulnerable Software and Affected Versions Cisco products affected versions not specified Description A flaw exists in the processing of DCE/RPC requests that may allow a remote attacker to obtain sensitive information or cause the Snort 3 Detection Engine to restart, leading to an...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000310)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000310 advisory. A buffer over-read flaw was found in RH kernel versions before 5.0 in cryptoauthencextractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module,...

CVE-2025-47395

CVE-2025-47395 concerns Qualcomm chipsets’ WLAN firmware. The issue is a transient denial-of-service that occurs while parsing a WLAN management frame containing a Vendor Specific Information Element. Impact is the potential disruption of service (availability) with no confidentiality/integrity l...

CVE-2025-47331

Technical details are not publicly available in the provided documents for CVE-2025-47331; monitor for updates.

CVE-2025-47331 Buffer Over-read in Video

Information disclosure while processing a firmware event...

CVE-2025-47330 Buffer Over-read in Video

Transient DOS while parsing video packets received from the video firmware...