CVE-2026-4892 CVE-2026-4892

A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...

RHEL 10 : gpsd (RHSA-2026:1621)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1621 advisory. gpsd is a service daemon that mediates access to a GPS sensor connected to the host computer by serial or USB interface, making its data on the...

Mageia: Security Advisory (MGASA-2026-0028)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-68160

Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typically results in a crash, leading ...

RHEL 9 : gpsd-minimal (RHSA-2026:0771)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0771 advisory. gpsd is a service daemon that mediates access to a GPS sensor connected to the host computer by serial or USB interface, making its data on...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000790)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000790 advisory. drivers/hid/hid-zpff.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDZEROPLUS is enabled, allows physically proximate...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001811)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001811 advisory. drivers/hid/hid-steelseries.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDSTEELSERIES is enabled, allows physically...

PT-2025-44314

Name of the Vulnerable Software and Affected Versions Wazuh versions prior to 4.10.2 Description Wazuh, a free and open source platform for threat prevention, detection, and response, contains a heap-based out-of-bounds write issue in the decode win permissions function. This flaw allows a...

EUVD-2013-2831

Malware in sbrugna...

EUVD-2013-2833

Malware in sbrugna...

EUVD-2024-22317

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-2601

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow was found in grubfontconstructglyph. A malicious crafted pf2 font can lead to an overflow when calculating the maxglyphsize value, allocating ...

CVE-2020-13880

IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+1cbf heap-based out-of-bounds write...

CLSA-2025-1744724536 grub2: Fix of 5 CVEs

CVE-2025-0624: net: Out-of-bounds write in grubnetsearchconfigfile - CVE-2025-0690: read: Integer overflow may lead to out-of-bounds write - CVE-2025-1118: commands/dump: The dump command is not in lockdown when secure boot is enabled - CVE-2025-0678: squash4: Integer overflow may lead to heap...

CVE-2024-45782 Grub2: fs/hfs: strcpy() using the volume name (fs/hfs.c:382)

A flaw was found in the HFS filesystem. When reading an HFS volume's name at grubfsmount, the HFS filesystem driver performs a strcpy using the user-provided volume name as input without properly validating the volume name's length. This issue may read to a heap-based out-of-bounds writer,...

CVE-2025-1125

When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled parameters from the filesystem metadata to calculate the internal buffers size, however it misses to properly check for integer overflows. A maliciouly crafted filesystem may lead some of those buffer size...

PT-2025-7465 · Romfs +3 · Romfs +3

Name of the Vulnerable Software and Affected Versions: romfs affected versions not specified Description: The issue is related to an integer overflow when handling symlinks, which may lead to a heap-based out-of-bounds write when reading data. Recommendations: At the moment, there is no informati...

PT-2024-26081 · Samsung · Samsung Notes

Name of the Vulnerable Software and Affected Versions: Samsung Notes versions prior to 4.4.21.62 Description: The issue is a heap-based out-of-bounds write that allows local attackers to execute arbitrary code. This can be exploited by attackers to gain unauthorized access and control over the...

PT-2025-7464 · Jfs +3 · Jfs +3

Name of the Vulnerable Software and Affected Versions: jfs affected versions not specified Description: The issue is related to an integer overflow when handling symlinks, which may lead to a heap-based out-of-bounds write when reading data. Recommendations: At the moment, there is no information...

CVE-2020-13879

IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+214f heap-based out-of-bounds write...