Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issues: CVE-2025-6199: Fixed uninitialized memory leading to arbitrary memory contents leak bsc1245227 CVE-2025-7345: Fixed heap buffer overflow within the gdkpixbufjpegimageloadincrement function bsc1246114 Patch Instructions: To install this SUSE...

CVE-2024-49365

tiny-secp256k1 is a tiny secp256k1 native/JS wrapper. Prior to version 1.1.7, a malicious JSON-stringifyable message can be made passing on verify, when global Buffer is the buffer package. This affects only environments where require'buffer' is the NPM buffer package. Buffer.isBuffer check can b...

CVE-2022-50131 HID: mcp2221: prevent a buffer overflow in mcp_smbus_write()

In the Linux kernel, the following vulnerability has been resolved: HID: mcp2221: prevent a buffer overflow in mcpsmbuswrite Smatch Warning: drivers/hid/hid-mcp2221.c:388 mcpsmbuswrite error: memcpy '&mcp-txbuf5' too small 59 vs 255 drivers/hid/hid-mcp2221.c:388 mcpsmbuswrite error: memcpy 'buf'...

PT-2025-25803 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition in the nfs local open fh function has been resolved. The issue occurs when the clp-cl uuid.lock is dropped, allowing another CPU to potentially free the struct nfsd fi...

CVE-2022-31501

The ChaoticOnyx/OnyxForum repository before 2022-05-04 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

PT-2025-22798

Name of the Vulnerable Software and Affected Versions easysoft zentaopms version 21.5 20250307 Description A critical issue has been discovered that affects the Edit function of the component Committer. The issue is related to the manipulation of the filePath argument in the...

CVE-2019-17352

In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile function: one can upload any type of file. For example, a .jsp file may be stored and almost immediately deleted, but this deletion step does not occur for certain exceptions...

CVE-2025-37794

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Purge vif txq in ieee80211dostop After ieee80211dostop SKB from vif's txq could still be processed. Indeed another concurrent vif scheduleandwaketxq call could cause those packets to be dequeued see...

RUSTSEC-2025-0021 SHA-1 collision attacks are not detected

Summary gitoxide uses SHA-1 hash implementations without any collision detection, leaving it vulnerable to hash collision attacks. Details gitoxide uses the sha1smol or sha1 crate, both of which implement standard SHA-1 without any mitigations for collision attacks. This means that two distinct G...

curl: Double free caused by mqtt_doing()

mqttdoing lib/mqtt.c causes a double free under certain conditions. The conditions are 1 an mqttsend is unable to send its entire buffer at one time; and 2 the next call to mqttsend fails. The bug arises because mqttdoing frees the pointer mq-sendleftovers without nulling it line 755. Source belo...

PT-2024-36476 · Rhymix · Rhymix

Name of the Vulnerable Software and Affected Versions: Rhymix version 2.1.19 Description: The issue is related to Server-Side Request Forgery SSRF in the background import data function. This means that an attacker could potentially forge requests from the server, leading to unauthorized access t...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-50013)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50013 advisory. - In the Linux kernel, the following vulnerability has been resolved: exfat: fix memory leak in exfatloadbitma...

Fortinet Fortigate - Improper authentication in fgfmd (FG-IR-24-032)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-032 advisory. - A missing authentication for critical function in Fortinet FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4,...

Pug allows JavaScript code execution if an application accepts untrusted input

Pug through 3.0.2 allows JavaScript code execution if an application accepts untrusted input for the name option of the compileClient, compileFileClient, or compileClientWithDependenciesTracked function. NOTE: these functions are for compiling Pug templates into JavaScript, and there would...

PT-2024-1576

Name of the Vulnerable Software and Affected Versions OpenSSL versions 3.0 through 3.1 Description The issue is related to the function EVP PKEY public check in the OpenSSL library, which can lead to a Denial of Service DoS attack when checking excessively long invalid RSA public keys. This can...

Design/Logic Flaw

tdpServer of TP-Link RE300 V1 improperly processes its input, which may allow an attacker to cause a denial-of-service DoS condition of the product's OneMesh function...

GHSA-HR8V-F4G2-P66F Mediawiki information disclosure vulnerability

Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains an information disclosure flaw in the Special:Redirect/logid...

PT-2022-1561 · D Link · Di-7200Gv2.E1

Name of the Vulnerable Software and Affected Versions: D-Link device DI-7200GV2.E1 version 21.04.09E1 Description: The issue is related to a command injection vulnerability in the usb paswd.asp function. This vulnerability allows attackers to execute arbitrary commands via the name parameter. The...

Out-of-bounds

The clifeatreadcb function in src/gatt-database.c does not perform bounds checks on the 'offset' variable before using it as an index into an array for reading...

Remote Code Execution (RCE)

salt is vulnerable to remote code execution. The vulnerability exists due to local privilege escalation where the master calls the snapper.diff function which executes popen unsafely when an attacker creates a file that is backed up by snapper...