Lucene search
K

65 matches found

EUVD
EUVD
added 2026/06/13 12:34 a.m.6 views

EUVD-2025-210124

Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus ...

7.8CVSS5.7AI score0.00146EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.9 views

FreeBSD : h2o -- heap overrun parsing zero-length SNI (fba766f4-ccda-4e1b-8875-ab857c6a6532)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the fba766f4-ccda-4e1b-8875-ab857c6a6532 advisory. h2o project reports: When h2o receives a TLS or QUIC ClientHello containing a zero-length SNI extension...

5.5AI score0.00052EPSS
Exploits0References3
NVD
NVD
added 2026/06/10 11:16 p.m.15 views

CVE-2026-48994

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-24, a missing check of a return value could lead to a heap buffer over-write in the MAT decoder on 32-bit systems. This issue has been patched in versions 6.9.13-48...

5.9CVSS0.00227EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.15 views

Amazon Linux 2023 : gnutls, gnutls-c++, gnutls-dane (ALAS2023-2026-1777)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1777 advisory. A remotely triggerable underflow in the DTLS reassembly code led to a heap overrun. The issue was reported in the issue tracker as 1811 by Joshua Rogers of AISLE Research Team. CVE-2026-33845 Tenable h...

9.1CVSS5.6AI score0.00805EPSS
Exploits0References4
Amazon
Amazon
added 2026/06/08 12:0 a.m.9 views

Important: gnutls

Issue Overview: A remotely triggerable underflow in the DTLS reassembly code led to a heap overrun. The issue was reported in the issue tracker as 1811 by Joshua Rogers of AISLE Research Team. CVE-2026-33845 Affected Packages: gnutls Issue Correction: Run dnf update gnutls --releasever...

9.1CVSS5.5AI score0.00805EPSS
Exploits0
EUVD
EUVD
added 2026/05/29 1:38 p.m.12 views

EUVD-2026-33320

OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun vulnerability in the dokeyvalue function in src/pkcs15init/profile.c that allows attackers to corrupt memory by supplying a crafted profile configuration file. During pkcs15-init invocation, a key value entry...

3.8CVSS5.9AI score0.00146EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2026/05/29 12:0 a.m.5 views

h2o -- heap overrun parsing zero-length SNI

h2o project reports: When h2o receives a TLS or QUIC ClientHello containing a zero-length SNI extension, it can overrun the zero-length hostname while copying it. This can trigger a segmentation fault and cause a denial of service...

5.5AI score0.00052EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:55 p.m.3 views

CVE-2026-45991

In the Linux kernel, the following vulnerability has been resolved: udf: fix partition descriptor append bookkeeping Mounting a crafted UDF image with repeated partition descriptors can trigger a heap out-of-bounds write in partdescsloc. handlepartitiondescriptor deduplicates entries by partition...

7.8CVSS5.7AI score0.00164EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/05/21 12:49 p.m.6 views

CLSA-2026-1779367740 Fix CVE(s): CVE-2026-42945

SECURITY UPDATE: fix heap buffer overrun in ngxhttprewritemodule when rewrite is followed by set/if/rewrite with unnamed PCRE captures - debian/patches/CVE-2026-42945.patch: fix heap buffer overrun in ngxhttprewritemodule when rewrite is followed by set/if/rewrite with unnamed PCRE captures -...

9.2CVSS6.1AI score0.61469EPSS
Exploits40References1
OSV
OSV
added 2026/05/19 3:10 p.m.7 views

CLSA-2026-1779203444 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix integer underflow and remote heap overrun in DTLS handshake reassembly by tracking startoffset and fraglength instead of an inclusive startoffset, endoffset range...

9.1CVSS5.8AI score0.00805EPSS
Exploits0References1
OSV
OSV
added 2026/05/18 5:54 p.m.7 views

CLSA-2026-1779126860 nginx: Fix of CVE-2026-42945

CVE-2026-42945: fix heap buffer overrun in ngxhttprewritemodule when rewrite is followed by set/if/rewrite with unnamed PCRE captures...

9.2CVSS5.9AI score0.61469EPSS
Exploits40References1
OSV
OSV
added 2026/05/18 5:44 p.m.5 views

CLSA-2026-1779126256 Fix CVE(s): CVE-2026-42945

SECURITY UPDATE: fix heap buffer overrun in ngxhttprewritemodule when rewrite is followed by set/if/rewrite with unnamed PCRE captures - debian/patches/CVE-2026-42945.patch: fix heap buffer overrun in ngxhttprewritemodule when rewrite is followed by set/if/rewrite with unnamed PCRE captures -...

9.2CVSS5.9AI score0.61469EPSS
Exploits40References1
OSV
OSV
added 2026/05/14 3:13 p.m.5 views

CLSA-2026-1778762233 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix integer underflow in DTLS handshake reassembly that allowed a remote heap overrun via crafted zero-length fragments...

9.1CVSS5.8AI score0.00805EPSS
Exploits0References1
OSV
OSV
added 2026/05/08 11:18 a.m.7 views

CLSA-2026-1778238907 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix DTLS handshake fragment reassembly integer underflow and heap overrun by tracking fraglength instead of endoffset...

9.1CVSS5.8AI score0.00805EPSS
Exploits0References1
OSV
OSV
added 2026/05/07 4:45 p.m.7 views

CLSA-2026-1778172299 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix DTLS handshake fragment reassembly integer underflow and heap overrun by tracking fraglength instead of endoffset...

9.1CVSS5.8AI score0.00805EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/01 8:47 a.m.6 views

CVE-2026-42512

As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of string pointers. The code which expands the array incorrectly calculates its new size when requesting memory, resulting in a heap buffer overrun. A specially crafted packet can cause dhclient to...

8.1CVSS6.2AI score0.01423EPSS
Exploits0References1
NVD
NVD
added 2026/04/30 9:16 a.m.6 views

CVE-2026-42512

As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of string pointers. The code which expands the array incorrectly calculates its new size when requesting memory, resulting in a heap buffer overrun. A specially crafted packet can cause dhclient to...

8.1CVSS0.01423EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.2 views

FreeBSD : FreeBSD -- Remotely triggerable out-of-bounds heap write in dhclient (58acf4c5-4435-11f1-bb07-bc241121aa0a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 58acf4c5-4435-11f1-bb07-bc241121aa0a advisory. As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of...

8.1CVSS6AI score0.01423EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/04/29 12:0 a.m.6 views

FreeBSD Security Advisory - FreeBSD-SA-26:15.dhclient

FreeBSD Security Advisory - As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of string pointers. The code which expands the array incorrectly calculates its new size when requesting memory, resulting in a heap buffer overrun...

7.3CVSS5.5AI score0.01423EPSS
Exploits0
FreeBSD Advisory
FreeBSD Advisory
added 2026/04/29 12:0 a.m.5 views

FreeBSD-SA-26:15.dhclient

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-26:15.dhclient Security Advisory The FreeBSD Project Topic: Remotely triggerable out-of-bounds heap write in dhclient Category: core Module: dhclient Announced:...

8.1CVSS6.2AI score0.01423EPSS
Exploits0
Rows per page
Query Builder