UBUNTU-CVE-2026-33948

jq is a command-line JSON processor. Commits before 6374ae0bcdfe33a18eb0ae6db28493b1f34a0a5b contain a vulnerability where CLI input parsing allows validation bypass via embedded NUL bytes. When reading JSON from files or stdin, jq uses strlen to determine buffer length instead of the actual byte...

EUVD-2021-30906

Malicious code in bioql PyPI...

CVE-2010-20123

The CVE-2010-20123 entry concerns Steinberg MyMP3Player (version 3.0, build 3.0.0.67). It describes a stack-based buffer overflow triggered while parsing .m3u playlist files, due to improper validation of input length in the playlist data. The vulnerability allows an attacker to overwrite memory ...

USN-7660-1: fdkaac vulnerabilities

It was discovered that fdkaac did not correctly handle certain input. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. CVE-2022-36148 It was discovered that fdkaac did not correctly handle...

CVE-2024-12387

A vulnerability in the binary-husky/gptacademic repository, as of commit git 3890467, allows an attacker to crash the server by uploading a specially crafted zip bomb. The server decompresses the uploaded file and attempts to load it into memory, which can lead to an out-of-memory crash. This iss...

Sttr - Cross-Platform, Cli App To Perform Various Operations On String

sttr is command line software that allows you to quickly run various transformation operations on the string. // With input prompt sttr // Direct input sttr md5 "Hello World" // File input sttr md5 file.text sttr base64-encode image.jpg // Reading from different processor like cat, curl, printf...