Lucene search
K

8 matches found

FreeBSD
FreeBSD
added 2025/11/17 12:0 a.m.7 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 2 security fixes: 460017370 High CVE-2025-13223: Type Confusion in V8. Reported by Clément Lecigne of Google's Threat Analysis Group on 2025-11-12 450328966 High CVE-2025-13224: Type Confusion in V8. Reported by Google Big Sleep on 2025-10-09...

8.8CVSS7AI score0.04835EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2025/10/21 12:0 a.m.8 views

chromium -- security fix

Chrome Releases reports: This update includes 1 security fix: 452296415 High CVE-2025-12036: Inappropriate implementation in V8. Reported by Google Big Sleep on 2025-10-15...

8.8CVSS7AI score0.03638EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/10/06 12:0 a.m.2 views

CVE-2025-59728

When calculating the content path in handling of MPEG-DASH manifests, there's an out-of-bounds NUL-byte write one byte past the end of the buffer.When we call xmlNodeGetContent below 0, it returns a buffer precisely allocated to match the string length, using strdup internally. If this buffer is...

8.7CVSS6AI score0.00172EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/10/06 12:0 a.m.4 views

CVE-2025-59733

When decoding an OpenEXR file that uses DWAA or DWAB compression, there's an implicit assumption that all image channels have the same pixel type and size, and that if there are four channels, the first four are "B", "G", "R" and "A". The channel parsing code can be found in decodeheader. The...

8.7CVSS6.7AI score0.00171EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/10/06 12:0 a.m.4 views

CVE-2025-59734

It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be referenced by FTCH chunks. For files using subversion storedframe. Leaving ctx-hasdimensions set to false. A subsequent chunk with type...

8.7CVSS6AI score0.00167EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/10/06 12:0 a.m.4 views

CVE-2025-59730

When decoding a frame for a SANM file ANIM v0 variant, the decoded data can be larger than the buffer allocated for it. Frames encoded with codec 48 can specify their resolution width x height. A buffer of appropriate size is allocated depending on the resolution. This codec can encode the frame...

5.7CVSS6AI score0.00149EPSS
Exploits0References2
Snyk
Snyk
added 2025/08/13 1:59 p.m.5 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the ReadOneJNGImage function. An attacker can access data on the heap or cause memory corruption by tricking a user into processing a specially crafted image file. Remediation A fix was pushed into the...

7.6CVSS7.1AI score0.00503EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.5 views

PT-2025-40347

Name of the Vulnerable Software and Affected Versions Chromium affected versions not specified Description An off-by-one error exists in V8. This issue was identified by Google and addressed in Chromium. Microsoft Edge, being Chromium-based, also ingests fixes for this issue. Recommendations At t...

8.8CVSS6.3AI score0.00356EPSS
Exploits0References43
Rows per page
Query Builder