Astra Linux - уязвимость в zlib, libz-mingw-w64

Zlib versions up to 1.2.12 have a heap-based buffer over-read or buffer overflow issue in the inflate function within inflate.c, due to a large gzip header extra field. NOTE: Only applications that call inflateGetHeader are affected. Some common applications bundle the affected Zlib source code,...

EUVD-2026-12958

SAMtools is a program for reading, manipulating and writing bioinformatics file formats. Starting in version 1.17, in the cram-size command, used to write information about how well CRAM files are compressed, a check to see if the cramdecodecompressionheader was missing. If the function returned ...

CVE-2026-31973 NULL pointer dereference in samtools cram-size

SAMtools is a program for reading, manipulating and writing bioinformatics file formats. Starting in version 1.17, in the cram-size command, used to write information about how well CRAM files are compressed, a check to see if the cramdecodecompressionheader was missing. If the function returned ...

CVE-2026-22988 arp: do not assume dev_hard_header() does not change skb->head

In the Linux kernel, the following vulnerability has been resolved: arp: do not assume devhardheader does not change skb-head arpcreate is the only devhardheader caller making assumption about skb-head being unchanged. A recent commit broke this assumption. Initialize @arp pointer after...

CVE-2025-54331

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Untrusted Pointer Dereference of srchdr in the copyncpheader function...

JLSEC-2025-152 ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamf_read_header in /libavformat/ia...

ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamfreadheader in /libavformat/iamfdec.c...

EUVD-2015-8791

Malware in sbrugna...

EUVD-2013-0884

Malware in sbrugna...

GNU Binutils elf_swap_shdr function buffer overflow vulnerability

GNU Binutils is a set of binary tools developed by the GNU Project to handle the management, analysis and debugging of executables, target files and other binary files. A heap buffer overflow vulnerability exists in GNU Binutils, which stems from the elfswapshdr function in the bfd/elfcode.h...

Linux Distros Unpatched Vulnerability : CVE-2024-55069

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamfreadheader in /libavformat/iamfdec.c. CVE-2024-55069 Note that Nessus relies on the presenc...

CLSA-2025-1755885569 zziplib: Fix of CVE-2020-18770

CVE-2020-18770: fix denial-of-service issue in zzipdiskentrytofileheader function in mmapped.c...

Linux Distros Unpatched Vulnerability : CVE-2025-38167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: handle hdrfirstde return value The hdrfirstde function returns a pointer to a stru...

CVE-2025-53007

arduino-esp32 provides an Arduino core for the ESP32. Versions prior to 3.3.0-RC1 and 3.2.1 contain a HTTP Response Splitting vulnerability. The sendHeader function takes arbitrary input for the HTTP header name and value, concatenates them into an HTTP header line, and appends this to the outgoi...

CVE-2024-37676

An issue in htop-dev htop v.2.20 allows a local attacker to cause an out-of-bounds access in the HeaderpopulateFromSettings function...

PT-2025-18924 · FFmpeg +1 · Ffmpeg +1

Name of the Vulnerable Software and Affected Versions: ffmpeg version 7.1 Description: The issue is related to a Null Pointer Dereference in the iamf read header function located in /libavformat/iamfdec.c. This is a general information about the problem, but specific details about the number of...

Linux Distros Unpatched Vulnerability : CVE-2012-0815

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary co...

AZL-62354 CVE-2024-47602 affecting package gstreamer1 1.20.0-2

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been discovered in the gstmatroskademuxaddwvpkheader function within matroska-demux.c. This function does not properly check the validity of the stream-codecpriv pointer in th...

PT-2024-40638 · Git +1 · Unrar

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of Use-of-uninitialized-value. The crash state includes functions such as Archive::UnexpEndArcMsg,...

GNU Savane 安全漏洞

GNU Savane is a collaborative software development management system developed by the GNU community for project management, code hosting and community collaboration. GNU Savane suffers from an elevation of privilege vulnerability, which originates in the formid in the formheader function and can ...

AZL-44868 CVE-2020-18770 affecting package zziplib for versions less than 0.13.74-1

An issue was discovered in function zzipdiskentrytofileheader in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service...