DEBIAN-CVE-2026-5928

Calling the ungetwc function on a FILE stream with wide characters encoded in a character set that has overlaps between its single byte and multi-byte character encodings, in the GNU C Library version 2.43 or earlier, may result in an attempt to read bytes before an allocated buffer, potentially...

CVE-2025-30038

The CVE-2025-30038 vulnerability concerns a session ID leak when saving a file downloaded from CGM CLININET. The exposed identifier is stored in an NTFS alternate data stream (ADS) via a built-in Windows security feature that preserves extra metadata for files downloaded from potentially untruste...

SUSE-SU-2025:02566-1 Security update for libarchive

This update for libarchive fixes the following issues: - CVE-2025-5914: Fixed double free due to an integer overflow in the archivereadformatrarseekdata function bsc1244272 - CVE-2025-5915: Fixed heap buffer over read in copyfromlzsswindow at archivereadsupportformatrar.c bsc1244273 -...

SUSE CVE-2025-5918

A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdtar, potentially allowing for reading past the end of the file. This out-of-bounds read can lead to unintended consequences, including unpredictable program behavior, memo...

CVE-2025-5918

A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdtar, potentially allowing for reading past the end of the file. This out-of-bounds read can lead to unintended consequences, including unpredictable program behavior, memo...

CVE-2025-5918 Libarchive: reading past eof may be triggered for piped file streams

A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdtar, potentially allowing for reading past the end of the file. This out-of-bounds read can lead to unintended consequences, including unpredictable program behavior, memo...

CVE-2025-5918

CVE-2025-5918 is a libarchive vulnerability where piping file streams into bsdtar can trigger an out-of-bounds read, potentially causing memory corruption or DoS. The issue is documented across multiple platforms (including Debian, CBL-Mariner, and macOS security notes) and is associated with the...

libarchive 缓冲区错误漏洞

libarchive is a multi-format archive and compression library open-sourced by libarchive. A buffer error vulnerability exists in libarchive, which stems from an out-of-bounds read when bsdtar handles file streams, which could result in memory corruption or denial of service...

MacOS X with HFS+ filesystem multiple web servers information disclosure

By accessing named file streams it's possible to access protected file data...