Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: sctp: fix kernel-infoleak for SCTP sockets syzbot reported a kernel infoleak 1 of 4 bytes. After analysis, it turned out r-idiagexpires is not initialized if inetsctpdiagfill calls inetdiagmsgcommonfill Make sure to clear...

EUVD-2025-31333

Malicious code in bioql PyPI...

CVE-2025-11012

A vulnerability was determined in BehaviorTree up to 4.7.0. This affects the function ParseScript of the file /src/scriptparser.cpp of the component Diagnostic Message Handler. Executing manipulation of the argument errormsgsbuffer can lead to stack-based buffer overflow. The attack can only be...

CVE-2025-11012

A vulnerability was determined in BehaviorTree up to 4.7.0. This affects the function ParseScript of the file /src/scriptparser.cpp of the component Diagnostic Message Handler. Executing manipulation of the argument errormsgsbuffer can lead to stack-based buffer overflow. The attack can only be...

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow via the ParseScript function in the Diagnostic Message Handler component of scriptparser.cpp. An attacker can execute arbitrary code or cause a denial of service by providing a specially crafted argument to...

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow via the ParseScript function in the Diagnostic Message Handler component of scriptparser.cpp. An attacker can execute arbitrary code or cause a denial of service by providing a specially crafted argument to...

CVE-2025-11012

BehaviorTree.CPP before 4.7.0 is affected by a vulnerability in the Diagnostic Message Handler’s ParseScript function (src/script_parser.cpp). Improper manipulation of the error_msgs_buffer can cause a stack-based buffer overflow. Exploitation is local, and public disclosures and a patch referenc...

PT-2025-39633

Name of the Vulnerable Software and Affected Versions BehaviorTree versions prior to 4.7.0 Description A flaw exists in BehaviorTree that could lead to a stack-based buffer overflow. This issue is related to the manipulation of the error msgs buffer argument within the ParseScript function locate...

SUSE CVE-2008-1685

gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a protection mechanism against integer overflow and buffer...

Xine media player format string vulnerability

Format string bug on diagnostic message printing, including playlist files parsing...

GpsDrive friendsd2 GPS map location service format string bug

Format string bug on diagnostic message gisplaying...

Уявзвимость в IIS при обработке HTW (.htw URL script)

При обращении к .htw файлам URL может содержать скрипт. При выдаче дагностического сообщения URL не будет комментироваться, что позволяет выполнить скрипт в контексте сервера...