Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000310)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000310 advisory. A buffer over-read flaw was found in RH kernel versions before 5.0 in cryptoauthencextractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module,...

CVE-2025-47395

CVE-2025-47395 concerns Qualcomm chipsets’ WLAN firmware. The issue is a transient denial-of-service that occurs while parsing a WLAN management frame containing a Vendor Specific Information Element. Impact is the potential disruption of service (availability) with no confidentiality/integrity l...

CVE-2025-47331

Technical details are not publicly available in the provided documents for CVE-2025-47331; monitor for updates.

CVE-2025-47331 Buffer Over-read in Video

Information disclosure while processing a firmware event...

CVE-2025-47330 Buffer Over-read in Video

Transient DOS while parsing video packets received from the video firmware...

CVE-2025-15382 Client SCP Request Triggers Buffer Overread by 1 Byte

A heap buffer over-read vulnerability exists in the wolfSSHCleanPath function in wolfSSH. An authenticated remote attacker can trigger the issue via crafted SCP path input containing '/./' sequences, resulting in a heap over read by 1 byte...

PT-2026-22015

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.23.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A buffer overread exists in the freerdp image copy from icon data function libfreerdp/codec/color.c. This issue can be triggered by...

PT-2026-21477

A flaw was found in libsoup. An integer underflow vulnerability occurs when processing content with a zero-length resource, leading to a buffer overread. This can allow an attacker to potentially access sensitive information or cause an application level denial of service...

CVE-2025-68431

libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEIF that exercises the overlay image item path triggers a heap buffer over-read in HeifPixelImage::overlay. The function computes a negative row length likely from an unclipped overlay rectangle or...

Buffer Over-read

Overview Affected versions of this package are vulnerable to Buffer Over-read via the pcapetheraton function. An attacker can cause unintended reads and writes outside the bounds of allocated memory by providing a specially crafted input string. Remediation Upgrade libpcap to version 1.10.6 or...

AZL-73373 CVE-2025-11961 affecting package libpcap for versions less than 1.10.1-5

pcapetheraton is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string argument must be a well-formed MAC-48 address in one of the supported formats, but this requirement has been poorly documented. If an application calls the function...

CVE-2025-11961

pcapetheraton is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string argument must be a well-formed MAC-48 address in one of the supported formats, but this requirement has been poorly documented. If an application calls the function...

Unity Linux 20.1070e Security Update: util-linux (UTSA-2025-993327)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993327 advisory. A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 256-byte usernames, specifically within the setpwnam function,...

CVE-2025-68431

libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEIF that exercises the overlay image item path triggers a heap buffer over-read in HeifPixelImage::overlay. The function computes a negative row length likely from an unclipped overlay rectangle or...

CVE-2025-68431 libheif has Potential Heap Buffer Over-Read

libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEIF that exercises the overlay image item path triggers a heap buffer over-read in HeifPixelImage::overlay. The function computes a negative row length likely from an unclipped overlay rectangle or...

[SECURITY] [DLA 4419-1] gst-plugins-good1.0 security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-4419-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta December 25, 2025 https://wiki.debian.org/LTS -...

CVE-2025-14401

PDFsam Enhanced App Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDFsam Enhanced. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

CVE-2025-14401

PDFsam Enhanced App Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDFsam Enhanced. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

CVE-2025-14401

CVE-2025-14401 affects PDFsam Enhanced App. The issue is an out-of-bounds read in the handling of App objects caused by insufficient validation of user-supplied data, which can permit executing code in the current process. Exploitation requires user interaction (the target must visit a malicious ...

AlmaLinux 9 : python3.9 (ALSA-2025:23342)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:23342 advisory. python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used CVE-2024-5642 cpython: Python HTMLParser quadratic complexity...