227 matches found
Capstone 安全漏洞
Capstone is a suite of cross-platform disassembly frameworks from Capstone, Inc. that supports use for binary analysis and reverse engineering of secure communications, among other things. A security vulnerability exists in Capstone 6.0.0-Alpha5 and earlier versions, which stems from an unchecked...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414466)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414466 advisory. A vulnerability was found in the Linux kernel's nftsetdescconcatparse function .This flaw allows an attacker to trigger a buffer overflow via nftsetdescconcatparse ,...
EUVD-2025-10312
Malicious code in bioql PyPI...
EUVD-2021-33018
Malicious code in bioql PyPI...
EUVD-2024-0173
Malicious code in bioql PyPI...
ROS-20250929-07
A vulnerability in the SQL concatws function of the SQLite database management system is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service via the malloc parameter...
Linux Distros Unpatched Vulnerability : CVE-2016-1646
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data...
Malicious code in bud-concat (npm)
The package bud-concat was found to contain malicious code...
MAL-2025-16254 Malicious code in bud-concat (npm)
The package bud-concat was found to contain malicious code...
SUSE CVE-2025-38120
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapoavx2: fix initial map fill If the first field doesn't cover the entire start map, then we must zero out the remainder, else we leak those bits into the next match round map. The early fix was incomplete and...
Security update for sqlite3
This update for sqlite3 fixes the following issues: CVE-2025-29087,CVE-2025-3277: Fixed integer overflow in sqlite concat function bsc1241020 CVE-2025-29088: Fixed integer overflow through the SQLITEDBCONFIGLOOKASIDE component bsc1241078 Other fixes: Updated to version 3.49.1 from Factory...
SUSE-SU-2025:01456-2 Security update for sqlite3
This update for sqlite3 fixes the following issues: - CVE-2025-29087,CVE-2025-3277: Fixed integer overflow in sqlite concat function bsc1241020 - CVE-2025-29088: Fixed integer overflow through the SQLITEDBCONFIGLOOKASIDE component bsc1241078 Other fixes: - Updated to version 3.49.1 from Factory...
Security update for sqlite3
This update for sqlite3 fixes the following issues: CVE-2025-3277,CVE-2025-29087: Fixed integer overflow in sqlite concat function bsc1241020 CVE-2025-29088: Fixed integer overflow through the SQLITEDBCONFIGLOOKASIDE component bsc1241078 Other fixes: Updated to version 3.49.1 from Factory...
SUSE-SU-2025:01455-1 Security update for sqlite3
This update for sqlite3 fixes the following issues: - CVE-2025-3277,CVE-2025-29087: Fixed integer overflow in sqlite concat function bsc1241020 - CVE-2025-29088: Fixed integer overflow through the SQLITEDBCONFIGLOOKASIDE component bsc1241078 Other fixes: - Updated to version 3.49.1 from Factory...
Security update for sqlite3
This update for sqlite3 fixes the following issues: Update to release 3.49.1: Improve portability of makefiles and configure scripts. CVE-2025-29087: Fixed Integer Overflow in SQLite concat Function bsc1241020 CVE-2025-29088: Fixed integer overflow through the SQLITEDBCONFIGLOOKASIDE component...
Security update for sqlite3
This update for sqlite3 fixes the following issues: CVE-2025-29087,CVE-2025-3277: Fixed integer overflow in sqlite concat function bsc1241020 CVE-2025-29088: Fixed integer overflow through the SQLITEDBCONFIGLOOKASIDE component bsc1241078 Other fixes: Updated to version 3.49.1 from Factory...
SUSE-SU-2025:01456-1 Security update for sqlite3
This update for sqlite3 fixes the following issues: - CVE-2025-29087,CVE-2025-3277: Fixed integer overflow in sqlite concat function bsc1241020 - CVE-2025-29088: Fixed integer overflow through the SQLITEDBCONFIGLOOKASIDE component bsc1241078 Other fixes: - Updated to version 3.49.1 from Factory...
Insufficient Control Flow Management
Vyper is vulnerable to Insufficient Control Flow Management. The vulnerability is due to a fastpath optimization in the concat function that skips evaluating argument expressions when their length is zero, allowing the omission of side effects and potentially leading to unintended logic behavior ...
Insufficient Control Flow Management
Overview vyper is a Pythonic Smart Contract Language for the EVM. Affected versions of this package are vulnerable to Insufficient Control Flow Management through optimization in the concat function. An attacker can skip evaluation of side effects when the length of an argument provided to the...
GHSA-QHR6-MGQR-MCHM Vyper's `concat()` builtin may elide side-effects for zero-length arguments
Impact concat may skip evaluation of side effects when the length of an argument is zero. this is due to a fastpath in the implementation which skips evaluation of argument expressions when their length is zero:...