54321 matches found
CVE-2026-4739 Integer overflow vulnerabilities in InsightSoftwareConsortium/ITK
Integer Overflow or Wraparound vulnerability in InsightSoftwareConsortium ITK Modules/ThirdParty/Expat/src/expat modules.This issue affects ITK: before 2.7.1...
CVE-2026-4739
InsightSoftwareConsortium ITK’s Expat modules contain an Integer Overflow or Wraparound vulnerability affecting ITK: before 2.7.1. The issue can be triggered remotely and, per Red Hat, could lead to arbitrary code execution or a DoS without authentication. Affected: ITK
CVE-2026-4739
Integer Overflow or Wraparound vulnerability in InsightSoftwareConsortium ITK Modules/ThirdParty/Expat/src/expat modules.This issue affects ITK: before 2.7.1...
CVE-2026-4739 Integer overflow vulnerabilities in InsightSoftwareConsortium/ITK
Integer Overflow or Wraparound vulnerability in InsightSoftwareConsortium ITK Modules/ThirdParty/Expat/src/expat modules.This issue affects ITK: before 2.7.1...
CVE-2026-4731
Integer Overflow or Wraparound vulnerability in artraweditor ART rtengine modules. This vulnerability is associated with program files dcraw.C. This issue affects ART: before 1.25.12...
CVE-2026-4731 An Integer Overflow Vulnerability in artraweditor/ART
Integer Overflow or Wraparound vulnerability in artraweditor ART rtengine modules. This vulnerability is associated with program files dcraw.C. This issue affects ART: before 1.25.12...
CVE-2026-4731 An Integer Overflow Vulnerability in artraweditor/ART
Integer Overflow or Wraparound vulnerability in artraweditor ART rtengine modules. This vulnerability is associated with program files dcraw.C. This issue affects ART: before 1.25.12...
CVE-2026-4731
The CVE-2026-4731 issue is an Integer Overflow or Wraparound vulnerability in ART’s artraweditor (rtengine) modules, tied to the dcraw.C file. Affected software is ART versions before 1.25.12. Documented impact indicates potential instability, with high-severity metrics (CRITICAL) and local attac...
DEBIAN-CVE-2026-4679
Integer overflow in Fonts in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...
CVE-2026-4679
Integer overflow in Fonts in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...
CVE-2026-33298
llama.cpp is an inference of several LLM models in C/C++. Prior to b7824, an integer overflow vulnerability in the ggmlnbytes function allows an attacker to bypass memory validation by crafting a GGUF file with specific tensor dimensions. This causes ggmlnbytes to return a significantly smaller...
CVE-2026-4679
Integer overflow in Fonts in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...
CVE-2026-4679
CVE-2026-4679 describes an integer overflow in Chrome’s Fonts code, allowing a remote attacker to trigger an out-of-bounds memory write via a crafted HTML page. Affected software: Google Chrome (Chromium-based) prior to version 146.0.7680.165. Root cause: integer overflow in the Fonts component. ...
CVE-2026-4679
Integer overflow in Fonts in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...
CVE-2026-33306 bcrypt-ruby has an Integer Overflow that Causes Zero Key-Strengthening Iterations at Cost=31 on JRuby
bcrypt-ruby is a Ruby binding for the OpenBSD bcrypt password hashing algorithm. Prior to version 3.1.22, an integer overflow in the Java BCrypt implementation for JRuby can cause zero iterations in the strengthening loop. Impacted applications must be setting the cost to 31 to see this happen. T...
CVE-2026-33306
bcrypt-ruby is a Ruby binding for the OpenBSD bcrypt password hashing algorithm. Prior to version 3.1.22, an integer overflow in the Java BCrypt implementation for JRuby can cause zero iterations in the strengthening loop. Impacted applications must be setting the cost to 31 to see this happen. T...
CVE-2026-33306
CVE-2026-33306 affects bcrypt-ruby (JRuby Java BCrypt implementation) where a signed 32-bit integer overflow at cost=31 causes the key-strengthening loop to run zero iterations, collapsing bcrypt from 2^31 rounds to effectively constant time. This leads to weaker hashes that may be exploitable. T...
CVE-2026-33306 bcrypt-ruby has an Integer Overflow that Causes Zero Key-Strengthening Iterations at Cost=31 on JRuby
bcrypt-ruby is a Ruby binding for the OpenBSD bcrypt password hashing algorithm. Prior to version 3.1.22, an integer overflow in the Java BCrypt implementation for JRuby can cause zero iterations in the strengthening loop. Impacted applications must be setting the cost to 31 to see this happen. T...
CVE-2026-33306 bcrypt-ruby has an Integer Overflow that Causes Zero Key-Strengthening Iterations at Cost=31 on JRuby
bcrypt-ruby is a Ruby binding for the OpenBSD bcrypt password hashing algorithm. Prior to version 3.1.22, an integer overflow in the Java BCrypt implementation for JRuby can cause zero iterations in the strengthening loop. Impacted applications must be setting the cost to 31 to see this happen. T...
EUVD-2026-14668
llama.cpp is an inference of several LLM models in C/C++. Prior to b7824, an integer overflow vulnerability in the ggmlnbytes function allows an attacker to bypass memory validation by crafting a GGUF file with specific tensor dimensions. This causes ggmlnbytes to return a significantly smaller...