5800 matches found
CLSA-2025-1753120992 libsoup: Fix of 7 CVEs
CVE-2025-32050: fix overflow in appendparamquoted - CVE-2025-32052: fix heap buffer overflow in soupcontentsniffersniff - CVE-2025-32053: fix heap buffer overflow in snifffeedorhtml - CVE-2025-32907: soup-message-headers: correct merge of ranges - CVE-2025-46420: fix leak in...
SUSE-SU-2025:02340-1 Security update for gnutls
This update for gnutls fixes the following issues: - CVE-2025-6395: Fix NULL pointer dereference when 2nd Client Hello omits PSK bsc1246299 - CVE-2025-32988: Fix double-free due to incorrect ownership handling in the export logic of SAN entries containing an otherName bsc1246232 - CVE-2025-32989:...
The vulnerability of Microsoft Excel, Microsoft Office, and Microsoft 365 Apps for Enterprise applications relates to reading beyond the buffer limit in memory, allowing an intruder to gain unauthorized access to protected information.
The vulnerability of Microsoft Excel, Microsoft Office, and Microsoft 365 Apps for Enterprise applications is related to reading data beyond the buffer limit of memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of the Perl JSON data structure transformation module Cpanel::JSON::XS, related to reading beyond the buffer boundary in memory, allows an attacker to obtain confidential information or cause service failures.
The vulnerability of the Perl Data Structure Transformation Module in JSON Cpanel::JSON::XS relates to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to obtain confidential information or cause service failures...
The vulnerability of Siemens Solid Edge’s design and simulation tools relates to reading beyond the buffer in memory, allowing an attacker to execute arbitrary code.
The vulnerability of Siemens Solid Edge’s design and simulation tools is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created .par file...
The vulnerability of Siemens Solid Edge’s design and simulation tools relates to reading beyond the buffer in memory, allowing an attacker to execute arbitrary code.
The vulnerability of Siemens Solid Edge’s design and simulation tools is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created .par file...
The vulnerability of Adobe Illustrator’s graphic editor, related to reading data beyond the buffer in memory, allows attackers to exploit this to disclose protected information.
The vulnerability of Adobe Illustrator graphic editor is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...
The vulnerability of the Adobe Substance 3D Viewer application, which allows for the reading beyond the buffer in memory, enables attackers to disclose protected information.
The vulnerability of the Adobe Substance 3D Viewer application for viewing and editing 3D files is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...
The vulnerability of the sub_410DDC() function in the web interface of the D-Link DIR-825 router’s microprogramming software allows a hacker to execute arbitrary code.
The vulnerability of the sub410DDC function in the web interface of the D-Link DIR-825 router’s microprogramming software is related to the reading of data beyond the buffer boundaries in memory during the processing of the language parameter. Exploiting this vulnerability allows a remote attacke...
The vulnerability of Adobe Illustrator’s graphic editor, related to reading data beyond the buffer in memory, allows attackers to exploit this to disclose protected information.
The vulnerability of Adobe Illustrator graphic editor is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...
OESA-2025-1808 libssh security update
The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...
OESA-2025-1807 libssh security update
The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...
OESA-2025-1806 libssh security update
The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...
OESA-2025-1804 libssh security update
The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...
OESA-2025-1805 libssh security update
The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...
The vulnerability of the MBT Transport Driver for Windows operating systems allows attackers to increase their privileges.
The vulnerability of the MBT Transport Driver driver for Windows operating systems is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the DWG File Parser component of the CADImage plugin for IrfanView, a software for viewing and playing graphic, video, and audio files, allows a malicious actor to execute arbitrary code within the context of the current process.
The vulnerability of the DWG File Parser component in the CADImage plugin for IrfanView software, which is used for viewing and playing graphic, video, and audio files, relates to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute...
The vulnerability of the DWG File Parser component of the CADImage plugin for IrfanView, a software for viewing and playing graphic, video, and audio files, allows a malicious actor to execute arbitrary code within the context of the current process.
The vulnerability of the DWG File Parser component in the CADImage plugin for IrfanView software, which is used for viewing and playing graphic, video, and audio files, relates to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute...
The vulnerability of the HID Class Driver for Windows operating systems allows attackers to increase their privileges.
The vulnerability of the HID Class Driver for Windows operating systems relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the Windows Hyper-V hardware virtualization system allows attackers to disclose protected information.
The vulnerability of the Windows Hyper-V hardware virtualization system is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by the system’s security measures...