Mageia: Security Advisory (MGASA-2025-0121)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2025:0988-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : zvbi (SUSE-SU-2025:0988-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0988-1 advisory. - CVE-2025-2173: Fixed check on srclength to avoid an unitinialized heap read bsc1239222. - CVE-2025-2174: Fixed integer overflow leading to he...

SUSE-SU-2025:0988-1 Security update for zvbi

This update for zvbi fixes the following issues: - CVE-2025-2173: Fixed check on srclength to avoid an unitinialized heap read bsc1239222. - CVE-2025-2174: Fixed integer overflow leading to heap overflow in src/conv.c, src/io-sim.c, src/search.c bsc1239299. - CVE-2025-2175: Fixed integer overflow...

libzvbi-chains0-0.2.44-1.1 on GA media (moderate)

libzvbi-chains0-0.2.44-1.1 on GA media Announcement ID: openSUSE-SU-2025:14891-1 Rating: moderate Cross-References: CVE-2025-2173 CVE-2025-2174 CVE-2025-2175 CVE-2025-2176 CVE-2025-2177 CVSS scores: CVE-2025-2173 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2025-2173 SUSE : 6.9...

CVE-2025-2174

creationtimestamp| type| source ---|---|--- 2025-03-11 07:39:46+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7115 2025-03-11 09:15:43+00:00| seen| https://t.me/cvedetector/20038...

CVE-2025-2174 libzvbi conv.c vbi_strndup_iconv_ucs2 integer overflow

A vulnerability was found in libzvbi up to 0.2.43. It has been declared as problematic. Affected by this vulnerability is the function vbistrndupiconvucs2 of the file src/conv.c. The manipulation of the argument srclength leads to integer overflow. The attack can be launched remotely. The exploit...

CVE-2025-2174 libzvbi conv.c vbi_strndup_iconv_ucs2 integer overflow

A vulnerability was found in libzvbi up to 0.2.43. It has been declared as problematic. Affected by this vulnerability is the function vbistrndupiconvucs2 of the file src/conv.c. The manipulation of the argument srclength leads to integer overflow. The attack can be launched remotely. The exploit...

CVE-2025-2175

A vulnerability was found in libzvbi up to 0.2.43. It has been rated as problematic. Affected by this issue is the function vbistrndupiconv. The manipulation leads to integer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to...