440 matches found
NewStart CGSL MAIN 6.06 : gettext Vulnerability (NS-SA-2025-0218)
The remote NewStart CGSL host, running version MAIN 6.06, has gettext packages installed that are affected by a vulnerability: - An issue was discovered in GNU gettext 0.19.8. There is a double free in defaultaddmessage in read- catalog.c, related to an invalid free in pogramparse in po-gram-gen....
grub2: grub-core/gettext: Integer overflow leads to Heap OOB Write and Read.
When reading the language .mo file in grubmofileopen, grub2 fails to verify an integer overflow when allocating its internal buffer. A crafted .mo file may lead the buffer size calculation to overflow, leading to out-of-bound reads and writes. This flaw allows an attacker to leak sensitive data o...
Advisory ROSA-SA-2025-2996
software: grub2 2.06 WASP: ROSA-CHROME unaffected versions = grub2-2.06-23 affected versions grub2-2.06-23 CVE-ID: CVE-2024-45777 BDU-ID: 2025-07120 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the gettext component of the Grub operating systems loader is related to integer overflow. Exploitation...
Grub2: grub-core/gettext: integer overflow leads to heap oob write and read.
...
Grub2: grub-core/gettext: integer overflow leads to heap oob write.
...
Linux Distros Unpatched Vulnerability : CVE-2016-6175
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Eval injection vulnerability in php-gettext 1.0.12 and earlier allows remote attackers to execute arbitrary PHP code via a crafted plural forms header...
GNU GRUB Buffer Overflow Vulnerability (CNVD-2025-17795)
GNU GRUB is a Linux system boot program from the GNU community. A buffer error vulnerability exists in GNU GRUB, which originates in the grub-core/gettext module, where the system does not properly limit the size of the data, and can be exploited by an attacker to run arbitrary code in the contex...
Security update for grub2
This update for grub2 fixes the following issues: CVE-2025-4382: Fixed TPM auto-decryption data exposure bsc1242971 Filter out the non-subvolume btrfs mount points when creating the relative path bsc1239674 CVE-2024-45781: Fixed ufs strcpy overflow bsc1233617 CVE-2024-56737: Fixed heap-based buff...
SUSE-SU-2025:20511-1 Security update for grub2
This update for grub2 fixes the following issues: - CVE-2025-4382: Fixed TPM auto-decryption data exposure bsc1242971 - Filter out the non-subvolume btrfs mount points when creating the relative path bsc1239674 - CVE-2024-45781: Fixed ufs strcpy overflow bsc1233617 - CVE-2024-56737: Fixed...
The vulnerability of the gettext loader component in the Grub2 operating system allows a hacker to execute arbitrary code.
The vulnerability of the gettext loader component in operating system Grub is related to integer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
CVE-2022-3036
The Gettext override translations WordPress plugin before 2.0.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...
Photon OS 5.0: Gettext PHSA-2025-5.0-0485
An update of the gettext package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0485. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 4.0: Gettext PHSA-2025-4.0-0765
An update of the gettext package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0765. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Critical Photon OS Security Update - PHSA-2025-4.0-0765
Updates of 'rubygem-activesupport', 'libxml2', 'gettext' packages of Photon OS have been released...
Linux Distros Unpatched Vulnerability : CVE-2018-18751
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GNU gettext 0.19.8. There is a double free in defaultaddmessage in read- catalog.c, related to an invalid free in pogramparse in...
SUSE CVE-2024-45777
A flaw was found in grub2. The calculation of the translation buffer when reading a language .mo file in grubgettextgetstrfromposition may overflow, leading to a Out-of-bound write. This issue can be leveraged by an attacker to overwrite grub2's sensitive heap data, eventually leading to the...
CVE-2024-45777
A flaw was found in grub2. The calculation of the translation buffer when reading a language .mo file in grubgettextgetstrfromposition may overflow, leading to a Out-of-bound write. This issue can be leveraged by an attacker to overwrite grub2's sensitive heap data, eventually leading to the...
Security update for grub2
This update for grub2 fixes the following issues: CVE-2024-45781: Fixed strcpy overflow in ufs. bsc1233617 CVE-2024-56737: Fixed a heap-based buffer overflow in hfs. bsc1234958 CVE-2024-45782: Fixed strcpy overflow in hfs. bsc1233615 CVE-2024-45780: Fixed an overflow in tar/cpio. bsc1233614...
Security update for grub2
This update for grub2 fixes the following issues: CVE-2024-45781: Fixed strcpy overflow in ufs. bsc1233617 CVE-2024-56737: Fixed a heap-based buffer overflow in hfs. bsc1234958 CVE-2024-45782: Fixed strcpy overflow in hfs. bsc1233615 CVE-2024-45780: Fixed an overflow in tar/cpio. bsc1233614...
GNU GRUB 缓冲区错误漏洞
GNU GRUB is a Linux system boot program from the GNU community. A buffer error vulnerability exists in GNU GRUB, which originates in the grub-core/gettext module, where the system does not properly limit the size of the data, and can be exploited by an attacker to run arbitrary code in the contex...