302626 matches found
GHSA-6GXQ-F64P-5W6F ImageMagick: Heap Buffer Over-Read in distributed pixel cache server
An attacker who can connect to a magick -distribute-cache service can cause a heap buffer over-read in the server process...
CLSA-2025-1754649018 Fix CVE(s): CVE-2025-1176
SECURITY UPDATE: heap-based Buffer Overflow in ELF ld Component - debian/patches/CVE-2025-1176.patch: prevent illegal memory access when indexing into the symhashes array of the elf bfd cookie structure - CVE-2025-1176...
Heap-based Buffer Overflow
Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
GHSA-P93H-F2JC-477J ImageMagick: Heap Buffer Over-Write in distributed pixel cache server
An attacker who can connect to a magick -distribute-cache service can cause a heap buffer over-write in the server process...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the magick -distribute-cache process. An attacker can cause a heap buffer overwrite in the server process by connecting to the service. Remediation A fix was pushed into the master branch but not yet...
Heap-based Buffer Overflow
Overview Magick.NET-Q8-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
ImageMagick: Heap Buffer Over-Write in distributed pixel cache server
An attacker who can connect to a magick -distribute-cache service can cause a heap buffer over-write in the server process...
Heap-based Buffer Overflow
Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...
Heap-based Buffer Overflow
Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Heap-based Buffer Overflow
Overview Magick.NET-Q8-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package ar...
Heap-based Buffer Overflow
Overview Magick.NET-Q8-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...
Heap-based Buffer Overflow
Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
CLSA-2025-1754342894 php: Fix of CVE-2025-6491
CVE-2025-6491: fix buffer overflow vulnerability...
Security Bulletin: z/Transaction Processing Facility is affected by a vulnerability in the cryptography package (CVE-2026-39892)
Summary The cryptography package is used by the z/TPF system as part of runtime metrics collection RTMC. Vulnerability Details CVEID:CVE-2026-39892 DESCRIPTION: cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if...
OPENSUSE-SU-2026:20787-1 Security update for libsndfile
This update for libsndfile fixes the following issues - CVE-2025-52194: buffer overflow in the ircamreadheader function of file src/ircam.c when processing malformed IRCAM audio files bsc1248458. - CVE-2025-56226: memory leak in the mpegl3encoderinit function of mpegl3encode.c bsc1256702. -...
CLSA-2026-1779437608 dnsmasq: Fix of 5 CVEs
CVE-2026-2291: fix buffer overflow in union bigname - CVE-2026-4890: fix NSEC bitmap parsing infinite loop and OOB reads - CVE-2026-4891: verify rdlen field in RRSIG packets - CVE-2026-4892: fix buffer overflow in helper.c with large CLIDs - CVE-2026-4893: fix broken client subnet validation...
CLSA-2026-1779437548 dnsmasq: Fix of 5 CVEs
CVE-2026-2291: fix buffer overflow in union bigname - CVE-2026-4890: fix NSEC bitmap parsing infinite loop and OOB reads - CVE-2026-4891: verify rdlen field in RRSIG packets - CVE-2026-4892: fix buffer overflow in helper.c with large CLIDs - CVE-2026-4893: fix broken client subnet validation...
Chromium: CVE-2026-9119 Heap buffer overflow in WebRTC
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
CVE-2026-39830
A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection's read loop. The blocked goroutine could not be released by calling Close, resulting in a resource leak per connection. Unsolicited global responses are now discarded...
CVE-2026-39830
A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection's read loop. The blocked goroutine could not be released by calling Close, resulting in a resource leak per connection. Unsolicited global responses are now discarded...