58 matches found
EUVD-2017-16538
Malware in sbrugna...
EUVD-2018-10434
Malware in sbrugna...
EUVD-2019-16015
Malware in sbrugna...
EUVD-2020-17412
Malware in sbrugna...
EUVD-2022-43601
Malicious code in bioql PyPI...
EUVD-2025-20935
Malicious code in bioql PyPI...
CVE-2025-38313
In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix double-free on mcdev The blamed commit tried to simplify how the deallocations are done but, in the process, introduced a double-free on the mcdev variable. In case the MC device is a DPRC, a new mcbus is allocat...
CVE-2025-32988
A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject Alternative Name SAN entries containing an otherName. If the type-id OID is invalid or malformed, GnuTLS will call asn1deletestructure on an ASN.1 node it do...
SUSE-SU-2025:02228-1 Security update for vim
This update for vim fixes the following issues: - CVE-2024-41965: Fixed improper neutralization of argument delimiters in zip.vim that could have led to data loss bsc1228776. - CVE-2025-29768: Fixed double-free in dialogchanged bsc1239602...
Important: Red Hat Security Advisory: libvpx security update
An update for libvpx is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
RHEL 7 : libvpx (RHSA-2025:9331)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:9331 advisory. The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia...
Important: Red Hat Security Advisory: libvpx security update
An update for libvpx is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...
TencentOS Server 4: libdwarf (TSSA-2024:0169)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0169 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Important: libvpx security update
The libvpx packages provide the VP8 SDK, which allows the encoding and decoding of the VP8 video codec, commonly used with the WebM multimedia container file format. Security Fixes: libvpx: Double-free in libvpx encoder CVE-2025-5283 For more details about the security issues, including the impac...
CVE-2025-5262
A double-free could have occurred in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This could have caused memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 139 and Thunderbird 128.11...
PT-2025-22987
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 139 Firefox ESR versions prior to 115.24 Firefox ESR versions prior to 128.11 Description A double-free issue could occur in the vpx codec enc init multi function after a failed allocation when initializing the encode...
CVE-2022-49775
CVE-2022-49775 (Linux kernel) affects the tcp_cdg congestion control. The advisory notes that when MPTCP calls tcp_disconnect() on an already-disconnected flow under CDG, it may trigger a double-free in the SLAB allocator. The vulnerability arises from the ability to call tcp_cdg_release() multip...
Azure Linux 3.0 Security Update: libdwarf (CVE-2024-2002)
The version of libdwarf installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2002 advisory. - A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf May try t...
CVE-2023-52930
In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix potential bit17 double-free A userspace with multiple threads racing I915GEMSETTILING to set the tiling to I915TILINGNONE could trigger a double free of the bit17 bitmask. Or conversely leak memory on the transition...
CVE-2024-58055
Mode C: The connected Astra Linux bulletin corroborates the CVE-2024-58055 issue in the Linux kernel USB gadget f_tcm: the bug is a double-free caused by freeing the command before the sense/status completion. The fix is a kernel patch that prevents premature command free; the advisory notes the ...