Azure Linux 3.0 Security Update: kernel (CVE-2025-38429)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38429 advisory. - In the Linux kernel, the following vulnerability has been resolved: bus: mhi: ep: Update read pointer only...

OESA-2026-1110 libpcap security update

This is the official web site of tcpdump, a powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture. Security Fixes: pcapetheraton is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string...

Adobe Substance3D Painter 缓冲区错误漏洞

Adobe Substance3D Painter is a 3D scene builder from Audobee Adobe USA. A buffer error vulnerability exists in Adobe Substance3D Painter 11.0.3 and prior versions, which stems from an out-of-bounds write and could lead to the execution of arbitrary code...

CVE-2023-45678

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

AZL-73373 CVE-2025-11961 affecting package libpcap for versions less than 1.10.1-5

pcapetheraton is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string argument must be a well-formed MAC-48 address in one of the supported formats, but this requirement has been poorly documented. If an application calls the function...

CVE-2025-14409

Soda PDF Desktop PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Soda PDF Desktop. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2025-14308

An integer overflow vulnerability exists in the write method of the Buffer class in Robocode version 1.9.3.6. The method fails to properly validate the length of data being written, allowing attackers to cause an overflow, potentially leading to buffer overflows and arbitrary code execution. This...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the write method of the Buffer class. An attacker can execute arbitrary code or cause a buffer overflow by submitting specially crafted inputs that manipulate the data length. Remediation Upgrade...

CVE-2025-14308

CVE-2025-14308 affects Robocode 1.9.3.6, where the write method in the Buffer class fails to validate data length, enabling an integer overflow that can lead to buffer overflow and potentially arbitrary code execution. The vulnerability is described across multiple feeds (NVD, OSV/Ubuntu/Debian m...

CVE-2025-14308 Integer Overflow in Robocode's Buffer Write Method

An integer overflow vulnerability exists in the write method of the Buffer class in Robocode version 1.9.3.6. The method fails to properly validate the length of data being written, allowing attackers to cause an overflow, potentially leading to buffer overflows and arbitrary code execution. This...

Linux Distros Unpatched Vulnerability : CVE-2025-40331

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sctp: Prevent TOCTOU out-of-bounds write For the following path not holding the sock lock, sctpdiagdump - sctpforeachendpoint - sctpepdump make sure not to exce...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: ep: The read pointer is updated only after the buffer has been written. Within mhiepringaddelement, the read pointer rdoffset is updated before the buffer is written. This may lead to race conditions, where the host see...

CVE-2025-53855

An out-of-bounds write vulnerability exists in the XML parser functionality of GCC Productions Inc. Fade In 4.2.0. A specially crafted .fadein file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability...

EUVD-2019-2299

Malware in sbrugna...

EUVD-2012-1517

Malware in sbrugna...

EUVD-2018-4093

Malware in sbrugna...

EUVD-2018-3307

Malware in sbrugna...

CVE-2025-59728 Heap-buffer-overflow write in FFmpeg MDASH resolve_content_path

When calculating the content path in handling of MPEG-DASH manifests, there's an out-of-bounds NUL-byte write one byte past the end of the buffer.When we call xmlNodeGetContent below 0, it returns a buffer precisely allocated to match the string length, using strdup internally. If this buffer is...

EUVD-2025-21795

Malicious code in bioql PyPI...

EUVD-2025-22656

Malicious code in bioql PyPI...