EUVD-2026-34203

OpenStack Ironic through before 35.0.2 allows file overwrite via directory traversal during deployment with a crafted ISO image...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : libarchive vulnerabilities (USN-8292-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8292-1 advisory. It was discovered that libarchive incorrectly handled certain RAR archive...

Linux Distros Unpatched Vulnerability : CVE-2024-36600

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow Vulnerability in libcdio 2.2.0 fixed in 2.3.0 allows an attacker to execute arbitrary code via a crafted ISO 9660 image file. CVE-2024-36600 Not...

MiracleLinux 7 : libcdio-0.92-3.0.1.el7.AXS7 (AXSA:2024-8818:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8818:01 advisory. CVE-2024-36600: Allocate more space for buffer, prevent overflow, CVEs: CVE-2024-36600 Buffer Overflow Vulnerability in libcdio v2.1.0 allows an attacker to...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002367)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002367 advisory. The parserockridgeinodeinternal function in fs/isofs/rock.c in the Linux kernel through 3.16.1 allows local users to cause a denial of service unkillable mount proce...

PT-2026-26290

Name of the Vulnerable Software and Affected Versions libarchive affected versions not specified Description An issue exists in libarchive’s zisofs decompression logic. Improper validation of the pz log2 bs field read from ISO9660 Rock Ridge extensions can lead to undefined behavior. An attacker...

EUVD-2017-9332

Malware in sbrugna...

EUVD-2008-4207

Malware in sbrugna...

EUVD-2007-0184

Malware in sbrugna...

EUVD-2007-0101

Malware in sbrugna...

CVE-2020-9320

Avira AV Engine before 8.3.54.138 allows virus-detection bypass via a crafted ISO archive. This affects versions before 8.3.54.138 of Antivirus for Endpoint, Antivirus for Small Business, Exchange Security Gateway, Internet Security Suite for Windows, Prime, Free Security Suite for Windows, and...

UBUNTU-CVE-2024-36600

Buffer Overflow Vulnerability in libcdio 2.2.0 fixed in 2.3.0 allows an attacker to execute arbitrary code via a crafted ISO 9660 image file...

K24036027: libarchive vulnerability CVE-2016-5844

Security Advisory Description Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service application crash via a crafted ISO file. CVE-2016-5844 Impact For BIG-IP and VIPRION platforms that are configured to use Virtual Clustered...

K17245: Linux kernel vulnerability CVE-2014-9584

Security Advisory Description The parserockridgeinodeinternal function in fs/isofs/rock.c in the Linux kernel before 3.18.2 does not validate a length value in the Extensions Reference ER System Use Field, which allows local users to obtain sensitive information from kernel memory via a crafted...

SUSE CVE-2014-9584

The parserockridgeinodeinternal function in fs/isofs/rock.c in the Linux kernel before 3.18.2 does not validate a length value in the Extensions Reference ER System Use Field, which allows local users to obtain sensitive information from kernel memory via a crafted iso9660 image...

SUSE CVE-2016-5844

Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service application crash via a crafted ISO file...

SUSE CVE-2017-18199

reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...

SUSE CVE-2017-18198

printiso9660recurse in iso-info.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service heap-based buffer over-read or possibly have unspecified other impact via a crafted iso file...

Avira AV Engine Code Issue Vulnerability

Avira is an independent developer of professional and personal security solutions. A security vulnerability exists in Avira AV Engine versions prior to 8.3.54.138. The vulnerability can be exploited by an attacker to bypass virus detection with the help of a specially crafted ISO file...

CVE-2020-9320

Avira AV Engine before 8.3.54.138 allows virus-detection bypass via a crafted ISO archive. This affects versions before 8.3.54.138 of Antivirus for Endpoint, Antivirus for Small Business, Exchange Security Gateway, Internet Security Suite for Windows, Prime, Free Security Suite for Windows, and...