CVE-2025-1250

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

CVE-2025-1250

Summary (CVE-2025-1250) : A vulnerability in GitLab CE/EE affects versions 15.0 through 18.1.5, 18.2 through 18.2.5, and 18.3 through 18.3.1 that could allow an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or notes...

CVE-2025-1250 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

CVE-2025-1250 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

CVE-2025-1250 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

PT-2025-37290

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 15.0 through 18.1.5 GitLab CE/EE versions 18.2 through 18.2.5 GitLab CE/EE versions 18.3 through 18.3.1 Description: An issue exists in GitLab CE/EE that could allow an authenticated user to disrupt background job...

CVE-2025-59046

The npm package interactive-git-checkout is an interactive command-line tool that allows users to checkout a git branch while it prompts for the branch name on the command-line. It is available as an npm package and can be installed via npm install -g interactive-git-checkout. Versions up to and...

CVE-2025-58750

rAthena is an open-source cross-platform massively multiplayer online role playing game MMORPG server. Versions prior to commit 0cc348b are missing a bound check in chclifparsemoveCharSlot that can result in reading and writing out of bounds using input from the user. The problem has been fixed i...

CVE-2025-58448

rAthena is an open-source cross-platform massively multiplayer online role playing game MMORPG server. Versions prior to commit 0d89ae0 have a SQL Injection in the PartyBooking component via WorldName parameter. Commit 0d89ae0 fixes the issue...

Linux Distros Unpatched Vulnerability : CVE-2022-35108

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a segmentation violation via DCTStream::getChar at /xpdf/Stream.cc. CVE-2022-35108 Note that Nessus relies on...

Linux Distros Unpatched Vulnerability : CVE-2022-35093

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a global buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc. CVE-2022-35093 Note that Nessus...

Linux Distros Unpatched Vulnerability : CVE-2022-35086

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a segmentation violation via /multiarch/memmove-vec- unaligned-erms.S. CVE-2022-35086 Note that Nessus relies...

Linux Distros Unpatched Vulnerability : CVE-2025-10060

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MongoDB Server may allow upsert operations retried within a transaction to violate unique index constraints, potentially causing an invariant failure and server...

Linux Distros Unpatched Vulnerability : CVE-2022-35081

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via pngreadheader at /src/png2swf.c. CVE-2022-35081 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2022-35091

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a floating point exception FPE via DCTStream::readMCURow at /xpdf/Stream.cc.ow CVE-2022-35091 Note that Nessu...

Linux Distros Unpatched Vulnerability : CVE-2022-35105

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via /bin/png2swf+0x552cea. CVE-2022-35105 Note that Nessus relies on the presence of t...

Linux Distros Unpatched Vulnerability : CVE-2022-35106

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a segmentation violation via FoFiTrueType::computeTableChecksumunsigned char, int at /xpdf/FoFiTrueType.cc...

Linux Distros Unpatched Vulnerability : CVE-2022-35095

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a segmentation violation via InfoOutputDev::type3D1 at /pdf/InfoOutputDev.cc. CVE-2022-35095 Note that Nessus...

Linux Distros Unpatched Vulnerability : CVE-2022-35100

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a segmentation violation via gfxlinegetbbox at /lib/gfxtools.c. CVE-2022-35100 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2022-35089

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a heap-buffer-overflow via getTransparentColor at /home/bupt/Desktop/swftools/src/gif2swf. CVE-2022-35089 Not...