ROS-20260401-73-0047

Vulnerability in cflow related to incorrect resource cleanup or release. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

EUVD-2020-16593

Malware in sbrugna...

EUVD-2019-6986

Malware in sbrugna...

EUVD-2019-6985

Malware in sbrugna...

EUVD-2025-24013

Malicious code in bioql PyPI...

EUVD-2025-24014

Malicious code in bioql PyPI...

EUVD-2023-34245

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-2789

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in GNU cflow 1.7. It has been rated as problematic. This issue affects the function funcbody/parsevariabledeclaration of the file...

Linux Distros Unpatched Vulnerability : CVE-2025-8736

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, has been found in GNU cflow up to 1.8. Affected by this issue is the function yylex of the file c.c of the...

Linux Distros Unpatched Vulnerability : CVE-2025-8735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c of the componen...

cflow-1.8-2.1 on GA media (moderate)

cflow-1.8-2.1 on GA media Announcement ID: openSUSE-SU-2025:15459-1 Rating: moderate Cross-References: CVE-2023-6031 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the cflow-1.8-2.1 package o...

OPENSUSE-SU-2025:15458-1 cflow-1.8-2.1 on GA media

These are all security issues fixed in the cflow-1.8-2.1 package on the GA media of openSUSE Tumbleweed...

GNU cflow Buffer Overflow Vulnerability

GNU cflow is a flowchart generator for the US GNU community that reads C source files and generates externally referenced flowcharts. A buffer overflow vulnerability exists in GNU cflow version 1.8 and earlier, which originates from a boundary error when the application handles untrusted input. A...

SUSE CVE-2025-8735

A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c of the component Lexer. The manipulation leads to null pointer dereference. An attack has to be approached locally. The exploit has been disclosed to th...

SUSE CVE-2025-8736

A vulnerability, which was classified as critical, has been found in GNU cflow up to 1.8. Affected by this issue is the function yylex of the file c.c of the component Lexer. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclose...

CVE-2025-8735

A flaw was found in cflow. The yylex function in c.c exhibits a null pointer dereference due to manipulation, allowing a local attacker to trigger a denial of service via crafted input. This condition arises from improper handling of lexical analysis data. The resulting null pointer dereference c...

CVE-2025-8736

A flaw was found in cflow. The yylex function in c.c exhibits a buffer overflow vulnerability, triggered by manipulation of input data. A local attacker could exploit this issue to cause an application level denial of service. This vulnerability stems from insufficient bounds checking during...

CVE-2025-8736

A vulnerability, which was classified as critical, has been found in GNU cflow up to 1.8. Affected by this issue is the function yylex of the file c.c of the component Lexer. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclose...

CVE-2025-8735

A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c of the component Lexer. The manipulation leads to null pointer dereference. An attack has to be approached locally. The exploit has been disclosed to th...

DEBIAN-CVE-2025-8735

A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c of the component Lexer. The manipulation leads to null pointer dereference. An attack has to be approached locally. The exploit has been disclosed to th...