54435 matches found
PT-2026-21469
Name of the Vulnerable Software and Affected Versions Crypt::NaCl::Sodium versions through 2.001 Description The software contains an integer overflow flaw on 32-bit systems. Specifically, the Sodium.xs component casts a STRLEN size t to an unsigned long long when passing a length pointer to...
Chromium: CVE-2026-2649 Integer overflow in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Security update for chromium (important)
openSUSE security update: security update for chromium ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20258-1 Rating: important References: bsc1258438 Cross-References: CVE-2026-2648 CVE-2026-2649 CVE-2026-2650 Affected Products: openSUSE Leap 16.0...
OPENSUSE-SU-2026:20266-1 Security update for postgresql15
This update for postgresql15 fixes the following issues: Update to version 15.16. Security issues fixed: - CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. - CVE-2026-2004: intarray missing validation of type of input to selectivit...
CLSA-2026-1771580716 glib2: Fix of CVE-2025-14087
CVE-2025-14087: Fix integer overflow in GVariant parser leading to heap corruption via buffer underflow when processing malicious input strings...
glib2: Fix of CVE-2025-14087
CVE-2025-14087: Fix integer overflow in GVariant parser leading to heap corruption via buffer underflow when processing malicious input strings...
ROS-20260220-73-0027
A vulnerability in the i40eclearhw function of the Linux operating system kernel is related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Microsoft Edge (Chromium) < 145.0.3800.70 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 145.0.3800.70. It is, therefore, affected by multiple vulnerabilities as referenced in the February 20, 2026 advisory. - Heap buffer overflow in Media in Google Chrome prior to 145.0.7632.109 allowed a remote attacker ...
Security Bulletin: IBM Watson Machine Learning Accelerator for IBM Cloud Pak for Data is affected by multiple vulnerabilities.
Summary Multiple vulnerabilities were addressed in IBM Watson Machine Learning Accelerator for IBM Cloud Pak for Data. Follow the instructions in this document to address them. Vulnerability Details CVEID:CVE-2021-38291 DESCRIPTION: FFmpeg version git commit de8e6e67e7523e48bb27ac224a0b446df05e16...
CLSA-2026-1771512005 glib2: Fix of 2 CVEs
CVE-2025-14087: fix heap corruption in GLib GVariant parser by preventing integer overflows and unsafe buffer size calculations - CVE-2025-14512: fix integer overflow in escapebytestring for byte strings with many invalid characters...
Amazon Linux 2023 : vsftpd (ALAS2023-2026-1432)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1432 advisory. A flaw was found in vsftpd. This vulnerability allows a denial of service DoS via an integer overflow in the ls command parameter parsing, triggered by a remote, authenticated attacker sending a crafte...
Amazon Linux 2 : firefox, --advisory ALAS2FIREFOX-2026-050 (ALASFIREFOX-2026-050)
The version of firefox installed on the remote host is prior to 140.7.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2026-050 advisory. Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox 146. CVE-2025-14327 Mitigation...
CVE-2026-2649
Integer overflow in V8 in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
DEBIAN-CVE-2026-2649
Integer overflow in V8 in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2026-2649
Integer overflow in V8 in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2026-2649
Integer overflow in V8 in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2026-2649
Integer overflow in V8 in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CLSA-2026-1771412927 glib2: Fix of CVE-2025-14087
CVE-2025-14087: fix integer overflow when parsing bytestrings...
CLSA-2026-1771412328 glib2: Fix of CVE-2025-14087
CVE-2025-14087: fix integer overflow when parsing bytestrings...
CLSA-2026-1771409779 Fix CVE(s): CVE-2025-68618, CVE-2025-69204
SECURITY UPDATE: Malicious SVG file resulted in a DoS attack - debian/patches/CVE-2025-68618.patch: fix DOS when processing a specially crafted malicious SVG file - CVE-2025-68618 SECURITY UPDATE: WriteSVGImage function, using an int variable to store numberattributes caused an integer overflow a...