135 matches found
Out-of-bounds Read
Overview Affected versions of this package are vulnerable to Out-of-bounds Read through the MeshGeometry process in FBXMeshGeometry.cpp. An attacker can cause the application to crash or become unresponsive by providing specially crafted input files. Remediation There is no fixed version for...
Out-of-bounds Read
Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the readdirectory function. An attacker can cause a denial of service by providing specially crafted input files that trigger an out-of-bounds read during the parsing process. Remediation A fix was pushed into the...
Use After Free
Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Use After Free
Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the vipsforeignloadmatrixheader function. An attacker can cause a denial of service by triggering a null pointer dereference during local processing of crafted input files. Remediation A fix was pushed into t...
CVE-2026-26329 OpenClaw has a path traversal in browser upload allows local file read
OpenClaw is a personal AI assistant. Prior to version 2026.2.14, authenticated attackers can read arbitrary files from the Gateway host by supplying absolute paths or path traversal sequences to the browser tool's upload action. The server passed these paths to Playwright's setInputFiles APIs...
poppler: Out-of-Bounds Read in Poppler
A flaw was found in Poppler. This vulnerability allows out-of-bounds reads via crafted input files that trigger the JBIG2Bitmap::combine function due to a misplaced isOk check...
USN-7868-1: Raptor vulnerabilities
Hanno Böck discovered that Raptor incorrectly handled memory operations when processing certain input files. An attacker could use this issue to cause Raptor to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2017-18926 Hanno Böck discovered that Raptor incorrectl...
EUVD-2019-2692
Malware in sbrugna...
EUVD-2018-13011
Malware in sbrugna...
EUVD-2020-7790
Malware in sbrugna...
EUVD-2019-2698
Malware in sbrugna...
EUVD-2017-16003
Malware in sbrugna...
EUVD-2017-6388
Malware in sbrugna...
EUVD-2019-17098
Malware in sbrugna...
EUVD-2019-0464
Malware in sbrugna...
EUVD-2010-3439
Malware in sbrugna...
EUVD-2022-3710
Malicious code in bioql PyPI...
EUVD-2025-9921
Malicious code in bioql PyPI...
Free of Memory not on the Heap
Overview Affected versions of this package are vulnerable to Free of Memory not on the Heap in the TIFFCROP utility. An attacker can cause denial of service by triggering memory corruption through crafted input files. Remediation Upgrade libtiff to version 4.7.1 or higher. References - GitLab Iss...