ALSA-2025:0917 Moderate: keepalived security update

The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server IPVS kernel module providing layer-4 transport layer load balancing. Keepalived implements a set of checke...

Moderate: Red Hat Security Advisory: keepalived security update

An update for keepalived is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

Moderate: keepalived security update

The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server IPVS kernel module providing layer-4 transport layer load balancing. Keepalived implements a set of checke...

RHEL 8 : keepalived (RHSA-2025:0743)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:0743 advisory. The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the...

ALSA-2025:0743 Moderate: keepalived security update

The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server IPVS kernel module providing layer-4 transport layer load balancing. Keepalived implements a set of checke...

Huawei EulerOS: Security Advisory for libgsf (EulerOS-SA-2025-1125)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dla-4023 : libebml-dev - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4023 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4023-1 [email protected] https://www.debian.org/lts/security/...

CVE-2024-55656

CVE-2024-55656 (RedisBloom Integer Overflow) affects RedisBloom module used with Redis. The vulnerability occurs in CMS.INITBYDIM when allocating memory for a Count-Min Sketch using user-supplied width/depth, allowing heap memory under-allocation, leading to out-of-bounds read (OOB read) and writ...

PT-2025-25422

Name of the Vulnerable Software and Affected Versions GIMP affected versions not specified Description A flaw was found in GIMP, specifically an integer overflow vulnerability in the "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height,...

CVE-2024-53145

CVE-2024-53145 – Linux kernel integer overflow in physmem setup : The vulnerability occurs when the real map size is greater than LONG_MAX, which can be triggered on UML/i386, leading to an overflow during physical memory (physmem) setup. The connected Astra Linux security bulletin mirrors the Li...

CVE-2024-53146 NFSD: Prevent a potential integer overflow

In the Linux kernel, the following vulnerability has been resolved: NFSD: Prevent a potential integer overflow If the tag length is = U32MAX - 3 then the "length + 4" addition can result in an integer overflow. Address this by splitting the decoding into several steps so that decodecbcompound4res...

ALSA-2024:11185 Moderate: edk2:20220126gitbb1bba3d77 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: edk2: Integer overflows in PeCoffLoaderRelocateImage CVE-2024-38796 For more details about the security issues, including th...

[SECURITY] [DSA 5832-1] gstreamer1.0 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5832-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 16, 2024 https://www.debian.org/security/faq -...

CVE-2024-47606

A flaw was found in the MP4/MOV demuxer and memory allocator in the GStreamer library. Processing a specially crafted input file can cause an integer overflow in the qtdemuxparsetheoraextension function. This issue leads to a small amount of memory being allocated to store a large input size,...

CVE-2024-47537

A flaw was found in the GStreamer library. An integer overflow in the MP4/MOV demuxer's sample table parser can lead to out-of-bounds writes and NULL-pointer dereferences for certain input files. This vulnerability allows a malicious third party to trigger an application crash and, in the case of...

CVE-2024-52983

Animate versions 23.0.8, 24.0.5 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-52983

Adobe Animate is affected by an Integer Overflow or Wraparound vulnerability (CVE-2024-52983) in versions 23.0.8, 24.0.5 and earlier, enabling arbitrary code execution in the context of the current user when a malicious file is opened. The issue requires user interaction and is documented alongsi...

USN-7088-5: Linux kernel vulnerabilities

Ziming Zhang discovered that the VMware Virtual GPU DRM driver in the Linux kernel contained an integer overflow vulnerability. A local attacker could use this to cause a denial of service system crash. CVE-2022-36402 Several security issues were discovered in the Linux kernel. An attacker could...

Integer Overflow In /v2/repository/models/<model_name>/load

This report is not public...

Google Pixel ffu.c file integer overflow vulnerability

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from an integer overflow vulnerability that stems from an integer overflow in ffu.c's ffuflashpack, which can be exploited by an attacker to cause an out-of-bounds read...