OESA-2025-1660 wireshark security update

Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless WiFi or Bluetooth networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. Security Fixes: A...

The vulnerability of the Microsoft Remote Desktop application for Windows operating systems arises from reading data beyond the buffer boundaries in memory. This allows an attacker to gain unauthorized access to protected information.

The vulnerability of the Microsoft Remote Desktop application for Windows operating systems relates to the reading of data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information from a remote location...

The vulnerability of the Windows operating system’s Storage Management Provider component, which allows a hacker to exploit it to disclose protected information

The vulnerability of the Windows operating system’s Storage Management Provider component is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

The vulnerability of the Windows operating system’s Storage Management Provider component allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Windows operating system’s Storage Management Provider component is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the sorting_key_copy function in the structured file library of The GNOME Project’s libgsf library, which allows an attacker to compromise the confidentiality of protected information.

The vulnerability of the sortingkeycopy function in the structured file library of The GNOME Project’s libgsf is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality of the protected information...

The vulnerability of the Windows operating system’s Storage Management Provider component, which allows a hacker to exploit it to disclose protected information

The vulnerability of the Windows operating system’s Storage Management Provider component is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

The vulnerability in the JBIG2Bitmap::combine() function of the Poppler PDF file rendering library allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the JBIG2Bitmap::combine function in the Poppler PDF rendering library is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the ath12k_dp_rx_process() function in the Wi-Fi driver’s code, located at drivers/net/wireless/ath/ath12k/dp_rx.c, in the Linux kernel, allows a hacker to compromise privacy.

The vulnerability of the ath12kdprxprocess function in the Wi-Fi driver’s code, located at drivers/net/wireless/ath/ath12k/dprx.c, in the Linux kernel, relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise confidentiality...

The vulnerability of the Storage Management Provider component in Windows operating systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Storage Management Provider component in Windows operating systems is related to reading data beyond the buffer limits of memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Buffer Over-read

Overview Affected versions of this package are vulnerable to Buffer Over-read via improper output length handling in the GIF LZW decoding process. An attacker can access limited portions of uninitialized memory by providing a specially crafted GIF file that triggers the inclusion of arbitrary...

Astra Linux – Vulnerability in libsoup3, libsoup2.4

A flaw was discovered in libsoup. The libsoup appendparamquoted function may contain an overflow bug, which can lead to a buffer under-read...

TencentOS Server 3: ruby:3.3 (TSSA-2024:0239)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0239 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

TencentOS Server 3: openssl (TSSA-2024:0725)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0725 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

TencentOS Server 3: ruby:3.0 (TSSA-2024:0234)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0234 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

TencentOS Server 3: squid:4 (TSSA-2024:0001)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0001 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

TencentOS Server 3: ruby:3.1 (TSSA-2024:0235)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0235 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

TencentOS Server 3: mysql:8.0 (TSSA-2025:0204)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0204 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Medium: postgresql

Issue Overview: Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5...

CVE-2025-24068

Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

Adobe Acrobat Reader 缓冲区错误漏洞

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader has an out-of-bounds read vulnerability that can be exploited by an attacker to cause a sensitive memory leak...