Lucene search
K

151 matches found

SUSE Linux
SUSE Linux
added 2026/04/22 4:24 p.m.2 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2026-5342: out-of-bounds read via LibRaw::nikonloadpaddedpackedraw bsc1261499. CVE-2026-20884: integer overflow and heap buffer overflow via deflatedngloadraw bsc1261671. CVE-2026-20889: heap-based buffer overflow in x3fthumbloaderbsc1261672...

9.2CVSS6AI score0.00078EPSS
Exploits6References24
CNNVD
CNNVD
added 2026/04/20 12:0 a.m.9 views

GNU C Library 安全漏洞

The GNU C Library is an open-source, free C-language compiler program published by the GNU community under the LGPL license. Versions of the GNU C Library from 2.7 to 2.43 contained security vulnerabilities. These vulnerabilities stemmed from the use of %mc and format specifiers with a width...

9.8CVSS5.9AI score0.00073EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2026/04/08 5:18 a.m.5 views

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS6.6AI score0.00251EPSS
Exploits5References14
Cvelist
Cvelist
added 2026/03/02 6:42 p.m.17 views

CVE-2026-0006

In multiple locations, there is a possible out of bounds read and write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00049EPSS
Exploits0References1
Amazon
Amazon
added 2026/02/19 12:0 a.m.5 views

Medium: freerdp

Issue Overview: FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client when processing Audio Input AUDIN format lists. audinprocessformats reuses callback-formatscount across multiple...

9.8CVSS5.9AI score0.00251EPSS
Exploits6
FreeBSD
FreeBSD
added 2025/10/29 12:0 a.m.4 views

OpenEXR < 3.4.3 -- multiple vulnerabilities

Cary Phillips reports: Patch release that addresses several bugs, primarily involving properly rejecting corrupt input data. He goes on to report various relevant items including heap buffer overflows, use-after-free, use of uninitialized memory and other bugs, several of them found by OSS-fuzz,...

5.8AI score
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-3332

Malware in sbrugna...

7.8CVSS7.7AI score0.00128EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2019-7632

Malware in sbrugna...

10CVSS9.2AI score0.01791EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-21031

Malware in sbrugna...

7.9CVSS6.1AI score0.00073EPSS
Exploits0References2
OSV
OSV
added 2025/10/04 12:11 a.m.5 views

RLSA-2025:9162 Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: Multiple...

7.8CVSS7.7AI score0.01642EPSS
Exploits0References4
OSV
OSV
added 2025/09/11 11:6 a.m.3 views

SUSE-SU-2025:03164-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-55004: Fixed heap buffer over-read in in ReadOneMNGIMage when processing images with separate alpha channels bsc1248076. - CVE-2025-55005: Fixed heap buffer overflow when transforming from Log to sRGB colorspaces bsc1248077. -...

8.8CVSS7.4AI score0.01005EPSS
Exploits7References16
CNNVD
CNNVD
added 2023/12/09 12:0 a.m.1 views

IBM Informix Dynamic Server Buffer Error Vulnerability

IBM Informix Dynamic Server IDS is a scalable object-relational database server from International Business Machines IBM that provides clustered data centers with features such as continuous data availability and disaster recovery. A security vulnerability exists in IBM Informix Dynamic Server...

6.2CVSS6.4AI score0.00024EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/10/14 12:0 a.m.1 views

zlib Input Validation Error Vulnerability

zlib is a general-purpose data compression library by Mark Adler, an individual developer in the United States. An input validation error vulnerability exists in zlib 1.3 and earlier versions, which stems from the presence of integer overflows and heap-based buffer overflows...

9.8CVSS7AI score0.01396EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.16 views

Debian: Security Advisory (DLA-1201-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.03681EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:20 a.m.2 views

SUSE CVE-2004-0817

Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file...

7.5CVSS8.1AI score0.03598EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:14 a.m.2 views

SUSE CVE-2006-4482

Multiple heap-based buffer overflows in the 1 strrepeat and 2 wordwrap functions in ext/standard/string.c in PHP before 5.1.5, when used on a 64-bit system, have unspecified impact and attack vectors, a different vulnerability than CVE-2006-1990...

9.3CVSS7.6AI score0.04104EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.35 views

Ubuntu: Security Advisory (USN-4901-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.00335EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-4889-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.00335EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.24 views

Slackware: Security Advisory (SSA:2016-259-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02257EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2018-0027)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.3AI score0.00603EPSS
Exploits7References12
Rows per page
Query Builder