5 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-10732
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of the package decompress are vulnerable to Arbitrary File Write via Archive Extraction Zip Slip when extracting a ZIP archive containing two entri...
Astra Linux – Vulnerability in ntfs-3g
A properly crafted NTFS image can lead to a out-of-bounds access vulnerability in the ntfsdecompress function in NTFS-3G, version 2021.8.22...
-llscw-react-cli (>=1.0.0 <=1.1.0-beta2), 002-node-cli (=1.0.0) +28672 more potentially affected by CVE-2020-12265 +1 more via decompress (>=0.1.10 <=4.2.1)
decompress NPM version =0.1.10, =1.0.0, =0.0.1, =0.0.4 - 1095h-cli =1.0.1 - 10secondsofcode-custom =1.0.0 and more Source cves: CVE-2020-12265, CVE-2026-10732 Source advisory: SNYK:JS-DECOMPRESS-16415209...
The vulnerability of the `ntfs_decompress` function in the NTFS file system driver for the FUSE NTFS-3G module arises from writing beyond the buffer boundaries in memory. This allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the ntfsdecompress function in the NTFS file system driver for the FUSE NTFS-3G module is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service...
08cms (=1.0.0), 17fe-template-cli (>=1.0.4 <=1.0.6) +8156 more potentially affected by CVE-2020-12265 via decompress (>=0.1.10 <=4.2.0)
decompress NPM version =0.1.10, =1.0.4, =1.0.3, =0.0.1, =1.0.0, =1.0.0, =1.1.0, =0.1.6, =1.0.0, =3.2.0, =3.6.0-rc.1 - @acidic9/slate-tools =1.0.0-beta.20 and more Source cves: CVE-2020-12265 Source advisory: OSV:GHSA-QGFR-5HQP-VRW9...