PT-2025-29268 · Unknown · Executorch

Name of the Vulnerable Software and Affected Versions: ExecuTorch versions prior to commit 93b1a0c15f7eda49b2bc46b5b4c49557b4e9810f Description: A heap-buffer-overflow vulnerability exists in the loading of ExecuTorch methods. This issue can cause the runtime to crash and may lead to code executi...

SQLite DoS Vulnerability 3.49.0 < 3.49.1

The version of SQLite installed on the remote host is prior to 3.49.1 and is, therefore, affected by dos vulnerability where a certain argument values to sqlite3dbconfig in the C-language API can cause a denial of service application crash. An sznBig multiplication is not cast to a 64-bit integer...

CVE-2025-24883

go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.14.13...

crash bug fix and enhancement update

An update is available for crash. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8.10...

PT-2025-5595

Name of the Vulnerable Software and Affected Versions rust-openssl versions prior to 0.10.70 Description The issue arises when ssl::select next proto returns a slice pointing into the server argument's buffer but with a lifetime bound to the client argument. If the server buffer's lifetime is...

Important: glibc

Issue Overview: The iconv function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable. CVE-2024-2961...

PT-2025-25903 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the ftrace functionality. This issue arises when ftrace startup enable fails, causing the...

Medium: nodejs20

Issue Overview: c-ares is a C library for asynchronous DNS requests. aresreadline is used to parse local configuration files such as /etc/resolv.conf, /etc/nsswitch.conf, the HOSTALIASES file, and if using a c-ares version prior to 1.27.0, the /etc/hosts file. If any of these configuration files...

PT-2023-21062 · Netapp · Ontap

Name of the Vulnerable Software and Affected Versions: ONTAP 9 versions prior to 9.8P19 ONTAP 9 versions prior to 9.9.1P16 ONTAP 9 versions prior to 9.10.1P12 ONTAP 9 versions prior to 9.11.1P8 ONTAP 9 versions prior to 9.12.1P2 ONTAP 9 versions prior to 9.13.1 Description: The issue allows a...

PT-2025-26059 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0-rc7-00043-gfd8619f4fd54 Description: A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the xhci plat remove function. This issue can cause a kernel crash when the...

PT-2025-13340 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the version containing commit f1e525009493 Description: A vulnerability in the Linux kernel has been resolved, related to the Advanced Configuration and Power Interface ACPI handling when suspending the system...

container-tools:4.0 bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fix: Udica crashes when processing inspect file without capabilities BZ2077474...

SUSE: Security Advisory (SUSE-SU-2016:0200-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2014-1614 · Libpng +5 · Libpng +5

Name of the Vulnerable Software and Affected Versions: libpng versions prior to 1.6.8 Description: The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash. This can be achieved via a PLTE chunk of zero bytes or a NULL palette,...