CVE-2019-25345 RTK IIS Codec Service 6.4.10041.133 - 'RtkI2SCodec' Unquote Service Path

Realtek IIS Codec Service 6.4.10041.133 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in the service configuration to inject malicious executables and escalate privileges on the system...

CVE-2019-25345

CVE-2019-25345 involves Realtek RTK IIS Codec Service 6.4.10041.133, where an unquoted service path in the service configuration for RtkI2SCodec could allow a local attacker to inject a malicious executable and escalate privileges. The vulnerability is described as enabling local code execution w...

CVE-2019-25345 RTK IIS Codec Service 6.4.10041.133 - 'RtkI2SCodec' Unquote Service Path

Realtek IIS Codec Service 6.4.10041.133 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in the service configuration to inject malicious executables and escalate privileges on the system...

Realtek IIS Codec Service 代码问题漏洞

The Realtek IIS Codec Service is a backend service for audio decoders provided by Realtek Semiconductor in China. Version 6.4.10041.133 of the Realtek IIS Codec Service contains a code vulnerability. This vulnerability stems from the lack of quotation marks around the service path, which may allo...

PT-2026-7881

Realtek IIS Codec Service 6.4.10041.133 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in the service configuration to inject malicious executables and escalate privileges on the system...

[SECURITY] Fedora 42 Update: rust-gst-plugin-dav1d-0.13.7-2.fc42

GStreamer dav1d AV1 decoder Plugin...

[SECURITY] Fedora 43 Update: rust-gst-plugin-dav1d-0.14.0-3.fc43

GStreamer dav1d AV1 decoder Plugin...

freerdp: FreeRDP: Heap buffer overflow leads to denial of service and potential code execution

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. A malicious server can exploit a client-side heap buffer overflow vulnerability in the RDPGFX ClearCodec decode path. This occurs when maliciously crafted residual data causes out-of-bounds writes during color...

📄 Samsung Quram DNG TrimBounds Out-Of-Bounds Read

A vulnerability exists in the image decoding logic of Quram DNG parser within libimagecodec.quram.so. The flawed bounds validation in handling TrimBounds opcode triggers out-of-bounds reads on heap-allocated image buffers. This issue allows remote attackers to craft a malicious DNG payload, embed...

freerdp: FreeRDP: Heap buffer overflow via crafted RDPGFX surface updates leads to denial of service and potential code execution.

A flaw was found in FreeRDP. A malicious server can exploit an out-of-bounds read/write vulnerability in the ClearCodec component by sending crafted RDPGFX surface updates. This can trigger a client-side heap buffer overflow, leading to a crash Denial of Service DoS and potential heap corruption...

Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in netty-codec-4.1.100.Final.jar

Summary IBM Watson Discovery Cartridge affected by vulnerability in netty-codec-4.1.100.Final.jar Vulnerability Details CVEID:CVE-2025-58057 DESCRIPTION: Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers &...

CVE-2025-71192 ALSA: ac97: fix a double free in snd_ac97_controller_register()

In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97: fix a double free in sndac97controllerregister If ac97addadapter fails, putdevice is the correct way to drop the device reference. kfree is not required. Add kfree if idralloc fails and in ac97adapterrelease to do the...

SUSE SLES12 Security Update : kernel (SUSE-SU-2026:0316-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0316-1 advisory. The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: -...

CVE-2026-24807

Improper Verification of Cryptographic Signature vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/util modules. This vulnerability is associated with program files SeekableOutputStream.Java. This issue affects quick-media:...

com.github.liuyueyi.media:svg-core (>=2.5 <=3.0.0) potentially affected by CVE-2026-24807 via com.github.liuyueyi.media:batik-codec-fix (>=2.5 <=3.0.0)

com.github.liuyueyi.media:batik-codec-fix MAVEN version =2.5, =2.5, =3.0.0 Source cves: CVE-2026-24807 Source advisory: SNYK:JAVA-COMGITHUBLIUYUEYIMEDIA-15127915...

com.github.liuyueyi.media:svg-core (>=2.5 <=3.0.0) potentially affected by CVE-2026-24806 via com.github.liuyueyi.media:batik-codec-fix (>=2.5 <=3.0.0)

com.github.liuyueyi.media:batik-codec-fix MAVEN version =2.5, =2.5, =3.0.0 Source cves: CVE-2026-24806 Source advisory: SNYK:JAVA-COMGITHUBLIUYUEYIMEDIA-15127912...

com.github.liuyueyi.media:svg-core (>=2.5 <=3.0.0) potentially affected by CVE-2026-24806 via com.github.liuyueyi.media:batik-codec-fix (>=2.5 <=3.0.0)

com.github.liuyueyi.media:batik-codec-fix MAVEN version =2.5, =2.5, =3.0.0 Source cves: CVE-2026-24806 Source advisory: OSV:GHSA-8623-9FWR-4CXV...

GHSA-8623-9FWR-4CXV Quick-Media Batik Codec FIX package has Code Injection vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules. This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects all...

com.github.liuyueyi.media:svg-core (>=2.5 <=3.0.0) potentially affected by CVE-2026-24807 via com.github.liuyueyi.media:batik-codec-fix (>=2.5 <=3.0.0)

com.github.liuyueyi.media:batik-codec-fix MAVEN version =2.5, =2.5, =3.0.0 Source cves: CVE-2026-24807 Source advisory: OSV:GHSA-23F4-HFMQ-94MJ...

GHSA-23F4-HFMQ-94MJ Quick-Media Batik Codec FIX Package has Buffer Overflow Vulnerability in PNG Codec

Improper Verification of Cryptographic Signature vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/util modules. This vulnerability is associated with program files SeekableOutputStream.Java. This issue affects all versions...