OpenVPN -- avoid buffer overread parsing routes or endpoints

Mikhail Khachaiants reports: socket: reject mismatched address family in getaddrgeneric. Add a family check to prevent copying address data of the wrong type, which could cause buffer over-read when parsing routes or endpoints...

JLSEC-2025-84 An issue was discovered in xmllint (from libxml2) before 2.11.8 and 2.12.x before 2.12.7

An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c...

JLSEC-2025-69 GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesIntern...

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e...

OESA-2025-2417 gdb security update

GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: A critical vulnerability was found in GNU Binutils version 2.45. This vulnerability is classified as CWE-122...

OESA-2025-2416 gdb security update

GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: A critical vulnerability was found in GNU Binutils version 2.45. This vulnerability is classified as CWE-122...

OESA-2025-2414 gdb security update

GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: A critical vulnerability was found in GNU Binutils version 2.45. This vulnerability is classified as CWE-122...

CVE-2025-55325

Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

CVE-2025-59192

Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally...

EUVD-2025-34299

Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally...

EUVD-2025-34423

Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

CVE-2025-59192

Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally...

CVE-2025-55325

Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

CVE-2025-55325

Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

Storport.sys Driver Elevation of Privilege Vulnerability

Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally...

Windows Storage Management Provider Information Disclosure Vulnerability

Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

BIT-LIBPYTHON-2024-5642 Buffer overread when using an empty list with SSLContext.set_npn_protocols()

CPython 3.9 and earlier doesn't disallow configuring an empty list "" for SSLContext.setnpnprotocols which is an invalid value for the underlying OpenSSL API. This results in a buffer over-read when NPN is used see CVE-2024-5535 for OpenSSL. This vulnerability is of low severity due to NPN being...

ROS-20251013-02

Vulnerability of the fpsimdreleasetask function in the arch/arm64/kernel/fpsimd.c module of the Linux kernel is related to a memory leak. Linux kernel is related to a memory leak. Exploitation of the vulnerability could allow an attacker to affect confidentiality, integrity and availability of...

SUSE SLES15 Security Update : squid (SUSE-SU-2025:03521-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03521-1 advisory. - CVE-2025-59362: fixed buffer overflow bsc1250627 - CVE-2024-37894: fixed denial of service in ESI processing bsc1227086 -...

CVE-2025-11617 Buffer Over-read when receiving IPv6 packets with incorrect payload length in FreeRTOS-Plus-TCP

A missing validation check in FreeRTOS-Plus-TCP's IPv6 packet processing code can lead to an out-of-bounds read when receiving a IPv6 packet with incorrect payload lengths in the packet header. This issue only affects applications using IPv6. We recommend users upgrade to the latest version and...

CVE-2025-11617 Buffer Over-read when receiving IPv6 packets with incorrect payload length in FreeRTOS-Plus-TCP

A missing validation check in FreeRTOS-Plus-TCP's IPv6 packet processing code can lead to an out-of-bounds read when receiving a IPv6 packet with incorrect payload lengths in the packet header. This issue only affects applications using IPv6. We recommend users upgrade to the latest version and...