16560 matches found
CVE-2026-8502
Technical details for CVE-2026-8502 are not provided in the connected documents; the available description notes exposure via c_status and return_type in LearnPress
CVE-2026-42485
AGL agl-service-can-low-level contains a stack buffer overflow in the uds-c library. The senddiagnosticrequest function in uds.c allocates a 6-byte stack buffer MAXDIAGNOSTICPAYLOADSIZE=6 but copies up to 7 bytes MAXUDSREQUESTPAYLOADLENGTH=7 via memcpy at an offset of 1+pidlength 2-3 bytes,...
CVE-2026-37530
AGL agl-service-can-low-level thru 17.1.12 contains a stack buffer overflow in the uds-c library. The senddiagnosticrequest function in uds.c allocates a 6-byte stack buffer MAXDIAGNOSTICPAYLOADSIZE=6 but copies up to 7 bytes MAXUDSREQUESTPAYLOADLENGTH=7 via memcpy at an offset of 1+pidlength 2-3...
CVE-2025-65087
An Out-of-Bounds Read vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose information or execute arbitrary code when a specially crafted VC6 file is being parsed...
Updated xmlrpc-c packages fix security vulnerabilities
This update fixes the vulnerabilities by no longer building with the vulnerable bundled libexpat version...
MGASA-2026-0173 Updated xmlrpc-c packages fix security vulnerabilities
This update fixes the vulnerabilities by no longer building with the vulnerable bundled libexpat version...
MINI-C7H6-2P2V-5H92
Bulletin has no description...
[SECURITY] Fedora 44 Update: perl-ExtUtils-Builder-Compiler-0.036-1.fc44
This is an interface wrapping around different compilers. It's usually not used directly but by a portability layer like ExtUtils::Builder::Autodetect::C...
[SECURITY] Fedora 43 Update: perl-ExtUtils-Builder-Compiler-0.036-1.fc43
This is an interface wrapping around different compilers. It's usually not used directly but by a portability layer like ExtUtils::Builder::Autodetect::C...
CVE-2026-10948
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
Joern 4.0.554
Joern is the bug hunter's workbench. With this tool, you can uncover attack surface, sloppy coding practices, and variants of known vulnerabilities using an interactive code analysis shell. Joern supports C, C++, LLVM bitcode, x86 binaries via Ghidra, JVM bytecode via Soot, and Javascript...
RockyLinux 10 : glibc (RLSA-2026:20594)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:20594 advisory. glibc: glibc: Denial of Service via iconv function with specific character sets CVE-2026-4046 Tenable has extracted the preceding description block directly fro...
GHSA-3PV8-6F4R-FFG2 vulnerabilities
Vulnerabilities for packages: sccache, cleave, rustup, cargo-c, wasmcloud, zizmor, litmus, wasm-pack, rye, qdrant, deno, buck2...
GHSA-9857-6MW7-FQ2M vulnerabilities
Vulnerabilities for packages: cargo-c, cargo-audit...
CVE-2026-10298 ggml-org whisper.cpp ggml.c whisper_model_load null pointer dereference
A security flaw has been discovered in ggml-org whisper.cpp up to 1.8.2. This vulnerability affects the function whispermodelload of the file ggml/src/ggml.c. The manipulation results in null pointer dereference. Attacking locally is a requirement. The exploit has been released to the public and...
DEBIAN-CVE-2025-60486
A heap use-after-free in the dasherprocess function /filters/dasher.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted MPEG-2 file...
CVE-2026-46527
A flaw was found in cpp-httplib, a C++ HTTP/HTTPS library. When a server using cpp-httplib has configured trusted proxies, a remote attacker can send a specially crafted HTTP request with a malformed X-Forwarded-For header. This can lead to undefined behavior, resulting in abnormal process...
GHSA-3PV8-6F4R-FFG2 vulnerabilities
Vulnerabilities for packages: rustup, deno, wasmcloud, rye, qdrant, wasm-pack, buck2, cargo-c, cleave, litmus, sccache, bootc, fnm, zizmor, typst...
GHSA-9857-6MW7-FQ2M vulnerabilities
Vulnerabilities for packages: cargo-audit, cargo-c...
RUSTSEC-2026-0156 Bad-free in `MetaCallException::new`
exceptionstruct is a local stack variable, but the code passes its address to the C language as &mut exceptionstruct as mut as mut cvoid. Then, the returned MetaCallException value is stored here: rust OkSelf exceptionstruct: Arc::newexceptionstruct, value: exceptionptr, leak: false, Because leak...