6112 matches found
SUSE-SU-2025:03294-1 Security update for wireshark
This update for wireshark fixes the following issues: Update to version 4.2.13. Security issues fixed: - CVE-2025-9817: SSH dissector crash due to NULL pointer dereference when processing malformed packet traces bsc1249090. Non-security issues fixed: - Bug in UDS dissector with Service...
Self-Supervised Learning of Graph Representations for Network Intrusion Detection
Detecting intrusions in network traffic is a challenging task, particularly under limited supervision and constantly evolving attack patterns. While recent works have leveraged graph neural networks for network intrusion detection, they often decouple representation learning from anomaly detectio...
[SECURITY] Fedora 43 Update: perl-Cpanel-JSON-XS-4.40-1.fc43
This module converts Perl data structures to JSON and vice versa. Its primary goal is to be correct and its secondary goal is to be fast. To reach the latter goal it was written in C...
[SECURITY] Fedora 43 Update: libsixel-1.10.5-4.fc43
An encoder/decoder implementation for DEC SIXEL graphics...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ffmpeg-4 (SUSE-SU-2025:03162-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:03162-1 advisory. - CVE-2025-7700: Fixed NULL Pointer Dereference in FFmpeg ALS Decoder bsc1246790. Tenable has extracted...
Advisory ROSA-SA-2025-2992
Software: dav1d 1.3.0 AXIS: ROSA-CHROME unaffected versions = dav1d-1.3.0-2 affected versions dav1d-1.3.0-2 CVE-ID: CVE-2024-1580 BDU-ID: 2024-04901 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the dav1d decoder of the iOS, iPadOS, visionOS, macOS, Fedora, and Safari browser operating systems i...
Security update for ffmpeg-4
This update for ffmpeg-4 fixes the following issues: CVE-2025-7700: Fixed NULL Pointer Dereference in FFmpeg ALS Decoder bsc1246790. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...
SUSE-SU-2025:03162-1 Security update for ffmpeg-4
This update for ffmpeg-4 fixes the following issues: - CVE-2025-7700: Fixed NULL Pointer Dereference in FFmpeg ALS Decoder bsc1246790...
Linux Distros Unpatched Vulnerability : CVE-2016-2428
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libAACdec/src/aacdecdrc.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not properly limi...
Linux Distros Unpatched Vulnerability : CVE-2019-20091
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4Descriptor::GetTag in mp42ts when called from...
ROS-20250910-05
Vulnerability of the library for working with DICOM DCMTK format is related to dereferencing of the NULL pointer in the /libsrc/dcrleccd.cc component using a created DICOM file. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability ...
Linux Distros Unpatched Vulnerability : CVE-2016-0842
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The H.264 decoder in libstagefright in Android 6.x before 2016-04-01 mishandles Memory Management Control Operation MMCO data, which allows remote attackers to...
Linux Distros Unpatched Vulnerability : CVE-2019-9720
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because...
Linux Distros Unpatched Vulnerability : CVE-2016-2463
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflows in the h264dec component in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6....
Linux Distros Unpatched Vulnerability : CVE-2016-6773
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in the ih264d decoder in Mediaserver could enable a local malicious application to access data outside of its permission...
Linux Distros Unpatched Vulnerability : CVE-2016-3741
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The H.264 decoder in mediaserver in Android 6.x before 2016-07-01 does not initialize certain slice data, which allows remote attackers to execute arbitrary cod...
Linux Distros Unpatched Vulnerability : CVE-2016-3820
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ih264d decoder in mediaserver in Android 6.x before 2016-08-01 mishandles slice numbers, which allows remote attackers to execute arbitrary code or cause a...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the getsiz function in jpeg2000dec.c. An attacker can execute arbitrary code or cause a crash by supplying a crafted JPEG2000 file containing a malicious cdef atom. Remediation Upgrade ffmpeg to version 8....
CVE-2025-9951
FFmpeg is affected by CVE-2025-9951 due to a heap-buffer-overflow in the JPEG 2000 decoder (jpeg2000dec) that can allow remote code execution or denial of service when processing certain JPEG2000 data. Multiple advisories (Debian DLA-4440, Astra Linux, Ubuntu USN-7830-1, and Nessus entries) enume...
Linux Distros Unpatched Vulnerability : CVE-2025-58057
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. In...