Lucene search
K

3278 matches found

NVD
NVD
added 2026/02/10 2:16 p.m.8 views

CVE-2025-15570

A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzmadecompressbuf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the...

7.8CVSS0.00202EPSS
Exploits1References7
SUSE Linux
SUSE Linux
added 2026/02/10 2:14 p.m.5 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-22852: a malicious RDP server can trigger a heap-buffer-overflow in audinprocessformats bsc1256718. CVE-2026-22854: server-controlled read length is used to read file data into an IRP output can cause heap-buffer-overflow in...

7.7CVSS5.9AI score0.00756EPSS
Exploits8References32
OSV
OSV
added 2026/02/10 2:14 p.m.2 views

SUSE-SU-2026:0417-1 Security update for freerdp

This update for freerdp fixes the following issues: - CVE-2026-22852: a malicious RDP server can trigger a heap-buffer-overflow in audinprocessformats bsc1256718. - CVE-2026-22854: server-controlled read length is used to read file data into an IRP output can cause heap-buffer-overflow in...

9.8CVSS5.8AI score0.00756EPSS
Exploits8References17
Vulnrichment
Vulnrichment
added 2026/02/10 1:2 p.m.7 views

CVE-2025-15570 ckolivas lrzip stream.c lzma_decompress_buf use after free

A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzmadecompressbuf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the...

5.3CVSS5.1AI score0.00202EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/02/10 9:17 a.m.4 views

Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS

Scrapy are vulnerable to a denial of service DoS attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of available memory. This occur...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/10 9:11 a.m.3 views

Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS

Scrapy are vulnerable to a denial of service DoS attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of available memory. This occur...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/10 9:11 a.m.13 views

Important: Red Hat Security Advisory: brotli security update

An update for brotli is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerabilit...

7.5CVSS7.1AI score0.00509EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/10 9:6 a.m.1 views

Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS

Scrapy are vulnerable to a denial of service DoS attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of available memory. This occur...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/10 9:6 a.m.5 views

Important: Red Hat Security Advisory: brotli security update

An update for brotli is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7.1AI score0.00509EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/10 7:49 a.m.5 views

Important: Red Hat Security Advisory: brotli security update

An update for brotli is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS7.1AI score0.00509EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/10 4:45 a.m.11 views

Security Bulletin: Multiple Vulnerabilities in IBM Concert Software.

Summary Multiple vulnerabilities were addressed in IBM Concert Software version 2.2.0 Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, an...

9.8CVSS6.4AI score0.02164EPSS
Exploits11Affected Software1
Fedora
Fedora
added 2026/02/10 1:34 a.m.8 views

[SECURITY] Fedora 43 Update: rust-weezl-0.1.12-3.fc43

Fast LZW compression and decompression...

7.5CVSS5.4AI score0.00443EPSS
Exploits1
AlmaLinux
AlmaLinux
added 2026/02/10 12:0 a.m.9 views

Important: brotli security update

Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the best currently available general-purpose compression methods. It...

7.5CVSS5.6AI score0.00509EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.1 views

RHEL 8 : brotli (RHSA-2026:2399)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2399 advisory. Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffma...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2026/02/10 12:0 a.m.6 views

brotli security update

1.0.6-4 - Resolves: RHEL-133986 CVE-2025-6176 Brotli decompression bomb DoS in scrapy...

7.5CVSS5.4AI score0.00509EPSS
Exploits0
OSV
OSV
added 2026/02/10 12:0 a.m.5 views

ALSA-2026:2389 Important: brotli security update

Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the best currently available general-purpose compression methods. It...

7.5CVSS5.6AI score0.00509EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.2 views

RHEL 8 : brotli (RHSA-2026:2401)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:2401 advisory. Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffma...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.3 views

Oracle Linux 8 : brotli (ELSA-2026-2389)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2389 advisory. 1.0.6-4 - Resolves: RHEL-133986 CVE-2025-6176 Brotli decompression bomb DoS in scrapy Tenable has extracted the preceding description block directly from the...

7.5CVSS5.6AI score0.00509EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.1 views

RHEL 8 : brotli (RHSA-2026:2400)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2400 advisory. Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffma...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.7 views

RHEL 8 : brotli (RHSA-2026:2389)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2389 advisory. Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffma...

7.5CVSS5.8AI score0.00509EPSS
Exploits0References4
Rows per page
Query Builder