MiracleLinux 8 : libxml2-2.9.7-7.el8 (AXSA:2020-301:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-301:02 advisory. libxml2: NULL pointer dereference in xmlXPathCompOpEval function in xpath.c CVE-2018-14404 libxml2: infinite loop in xzdecomp function in xzlib.c...

Always-Incorrect Control Flow Implementation

Overview torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Always-Incorrect Control Flow Implementation when compiling model with torch.rot90 and torch.randnlike functions while...

SUSE CVE-2025-39731

In the Linux kernel, the following vulnerability has been resolved: f2fs: vmunmapram may be called from an invalid context When testing F2FS with xfstests using UFS backed virtual disks the kernel complains sometimes that f2fsreleasedecompmem calls vmunmapram from an invalid context. Example trac...

CVE-2025-39731

CVE-2025-39731 concerns the Linux kernel, specifically the F2FS file system, where vm_unmap_ram() may be invoked from an invalid context. The connected documents confirm a patch that changes the in_task() check inside f2fs_read_end_io() to also verify that interrupts are disabled, ensuring pages ...

openSUSE Security Update : vlc (openSUSE-2016-755)

This update for vlc to version 2.1.6 fixes the following issues : These CVE were fixed : - CVE-2016-5108: Reject invalid QuickTime IMA files boo984382. - CVE-2016-3941: Heap overflow in processing wav files boo973354. These security issues without were fixed : - Fix heap overflow in decomp stream...

PT-2015-2754

Name of the Vulnerable Software and Affected Versions libxml2 version 2.9.1 Description The issue is related to the xz decomp function in xzlib.c, which does not properly handle compression errors. This allows attackers to cause a denial of service, resulting in a process hang, by providing craft...

PT-2015-6598

Name of the Vulnerable Software and Affected Versions libmspack versions prior to 0.5 Description The issue concerns the chmd init decomp function in chmd.c, which does not properly validate the reset interval. This allows remote attackers to cause a denial of service, resulting in a divide-by-ze...

IrfanView RLE Image Decompression Buffer Overflow Vulnerability

No description provided by source. Application: IrfanView RLE Image Decompression Buffer Overflow Vulnerability Plateform: Windows Version: The vulnerabilities are confirmed in version 4.33. Other versions may also be affected. Exploitation: Remote code execution Secunia Number: SA49856 PRL:...

XnView JLS File Decompression Heap Overflow

XnView JLS File Decompression Heap Overflow Summary XnView Formats PlugIn is prone to an overflow condition. The JLS Plugin xjpegls.dll library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JLS compressed image file, a...

ZDI-11-315 : Apple QuickTime FLC Delta Decompression Remote Code Execution Vulnerability

ZDI-11-315 : Apple QuickTime FLC Delta Decompression Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-315 October 27, 2011 -- CVE ID: CVE-2011-3249 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Apple -- Affected Products: Apple Quicktime --...