EUVD-2025-23559

Malicious code in bioql PyPI...

EUVD-2023-0935

Malicious code in bioql PyPI...

CVE-2023-53502

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2023-53502

...

CVE-2023-53502

This CVE-2023-53502 entry is rejected by the CVE Numbering Authority.

PT-2025-40209

In the Linux kernel, the following vulnerability has been resolved: xen/netback: Fix buffer overrun triggered by unusual packet It is possible that a guest can send a packet that contains a head + 18 slots and yet has a len tx map ops. Rework the code to account for the extra frag overflow slots...

ROS-20250929-13

Vulnerability in Mozilla Firefox, Mozilla Firefox ESR, Mozilla Thunderbird email client is related to with an operation exceeding the memory buffer boundaries. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code Vulnerability in JavaScript Engine...

ROS-20250929-05

A vulnerability in the Libarchive library is related to a data bounds checking error. Exploitation of the vulnerability could allow an attacker to execute arbitrary code Windows operating system Libarchive library vulnerability is related to integer overflow. Exploitation of the vulnerability cou...

ROS-20250929-01

Vulnerability of the library for working with DICOM DCMTK format is related to the operation exceeding the buffer boundaries. memory buffer. Exploitation of the vulnerability could allow an attacker to cause a denial of service using a specially crafted DICOM file A vulnerability in the library f...

CLSA-2025-1758705355 Fix CVE(s): CVE-2025-5318

SECURITY UPDATE: out-of-bounds read in sftphandle function - debian/patches/CVE-2025-5318.patch: fix possible buffer overrun issue in sftpserver.c by changing conditional from val SFTPHANDLES to val = SFTPHANDLES - CVE-2025-5318...

ROS-20250922-03

The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the null pointer dereferencing. null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to affect the confidentiality of protected information. remotely to...

Apple macOS Audio APAC Frame Decoding Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the decoding of audio...

Amazon Linux 2 : gstreamer1-plugins-base, --advisory ALAS2-2025-3002 (ALAS-2025-3002)

The version of gstreamer1-plugins-base installed on the remote host is prior to 1.18.4-5. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3002 advisory. In GStreamer through 1.26.1, the subparse plugin's parsesubriptime function may write data past the bound...

Amazon Linux 2023 : gstreamer1-plugins-base, gstreamer1-plugins-base-devel, gstreamer1-plugins-base-tools (ALAS2023-2025-1184)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1184 advisory. In GStreamer through 1.26.1, the subparse plugin's parsesubriptime function may write data past the bounds of a stack buffer, leading to a crash. CVE-2025-47806 In GStreamer through 1.26.1, th...

Medium: gstreamer1-plugins-base

Issue Overview: In GStreamer through 1.26.1, the subparse plugin's parsesubriptime function may write data past the bounds of a stack buffer, leading to a crash. CVE-2025-47806 In GStreamer through 1.26.1, the subparse plugin's subripunescapeformatting function may dereference a NULL pointer whil...

ROS-20250911-02

Vulnerability of the rterawcksummbuf function of the vhost library of the DPDK suite of libraries and drivers for fast packet processing is related to the operation exceeding the memory buffer boundary while processing the len parameter. DPDK packet processing is related to the operation exceedin...

Advisory ROSA-SA-2025-2976

Software: rsync 3.4.1 OS: ROSA-CHROME unaffected versions = rsync-3.4.1-1 affected versions rsync-3.4.1-1 CVE-ID: CVE-2024-12084 BDU-ID: 2025-00378 CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the rsyncd daemon of the Rsync file transfer and synchronization utility is related to an operation...

Linux Distros Unpatched Vulnerability : CVE-2023-24288

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - A crafted save file can cause a buffer overrun in Simon Tatham's Portable Puzzle Collection CVE-2023-24288 Note that Nessus relies on the presenc...

Linux Distros Unpatched Vulnerability : CVE-2023-24286

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - A crafted save file can cause a buffer overrun in the Mosaic puzzle CVE-2023-24286 Note that Nessus relies on the presence of the package as...

Linux Distros Unpatched Vulnerability : CVE-2023-24283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - A crafted save file can cause a buffer overrun in the Guess puzzle CVE-2023-24283 Note that Nessus relies on the presence of the package as...