2 matches found
CVE-2026-42250
CVE-2026-42250 describes an off‑by‑one error in the bzip2recover utility of bzip2. Processing a specially crafted file can trigger an out‑of‑bounds write to a global buffer, causing memory corruption and a denial of service (local impact). The issue is fixed in bzip2 version 1.0.9. Affected compo...
CVE-2025-55195
The CVE-2025-55195 entry concerns @std/toml (Deno Standard Library). The vulnerability arises prior to version 1.0.9 when parsing untrusted TOML data, allowing Prototype Pollution by merging an untrusted object with an empty object whose prototype chain is inherited. This affects environments usi...