1134 matches found
📄 libxml2 2.9.14 (2022) Heap Buffer Overflow
libxml2 version 2.9.14 2022 proof of concept exploit for a heap buffer overflow in the xmlRegEpxFromParse function in xmlregexp.c. ============================================================================================================================================= | Title : libxml2 2.9.14...
CLSA-2025-1764580671 pki-servlet-engine: Fix of 2 CVEs
CVE-2024-50379: fix TOCTOU vulnerability in JSP compilation to prevent RCE on case insensitive file systems - CVE-2024-38286: fix issue of resource allocation without limits or throttling vulnerability in TLS handshake process - Apply skip-common-daemon patch to remove the commons-daemon.jar copy...
Mozilla Firefox Code Execution Vulnerability (CNVD-2025-28720)
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a code execution vulnerability that originates from a compilation error in the JIT component of the JavaScript Engine, which can be exploited by an attacker to execute...
MAL-2025-62373 Malicious code in compatible_cobra_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1484a3c16c187ceab43a6a49bf4279d3fd8ef70e0f30c9e6f362dc8407ecc12b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
[SECURITY] Fedora 42 Update: mingw-qt6-qtmultimedia-6.9.3-1.fc42
This package contains the Qt software toolkit for developing cross-platform applications. This is the 32-bit Windows version of Qt, for use in conjunction with the Fedora Windows cross-compiler...
[SECURITY] Fedora 43 Update: mingw-binutils-2.45-2.fc43
Cross compiled binutils utilities like 'strip', 'as', 'ld' which understand Windows executables and DLLs...
UBUNTU-CVE-2025-11678
Stack-based Buffer Overflow in lwsadnsparselabel in warmcat libwebsockets allows, when the LWSWITHSYSASYNCDNS flag is enabled during compilation, to overflow the labelstack, when the attacker is able to sniff a DNS request in order to craft a response with a matching id containing a label longer...
[SECURITY] Fedora 42 Update: mingw-binutils-2.43.1-5.fc42
Cross compiled binutils utilities like 'strip', 'as', 'ld' which understand Windows executables and DLLs...
AlmaLinux 10 : tomcat9 (ALSA-2025:11332)
The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:11332 advisory. tomcat: Incomplete fix for CVE-2024-50379 - RCE due to TOCTOU issue in JSP compilation CVE-2024-56337 tomcat: Apache Tomcat: DoS via malformed HTTP/2...
EUVD-2019-19331
Malware in sbrugna...
EUVD-2016-10741
Malware in sbrugna...
EUVD-2015-0830
Malware in sbrugna...
EUVD-2020-19476
Malware in sbrugna...
EUVD-2019-4662
Malware in sbrugna...
EUVD-2006-2466
Malware in sbrugna...
EUVD-2016-5993
Malware in sbrugna...
EUVD-2017-18167
Malware in sbrugna...
EUVD-2018-0386
Malware in sbrugna...
EUVD-2019-11000
Malware in sbrugna...
EUVD-2020-0204
Malware in sbrugna...