CLSA-2026-1776178825 Fix of 8 CVEs

SECURITY UPDATE: fix vulnerability in stream handling - debian/patches/CVE-2025-53019.patch: fix vulnerability in stream handling - CVE-2025-53019 SECURITY UPDATE: fix integer overflow in resize - debian/patches/CVE-2025-55212.patch: fix integer overflow in resize - CVE-2025-55212 SECURITY UPDATE...

Windows Storage Spaces Controller Elevation of Privilege Vulnerability

Integer underflow wrap or wraparound in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally...

Windows Advanced Rasterization Platform Elevation of Privilege Vulnerability

Integer size truncation in Windows Advanced Rasterization Platform WARP allows an unauthorized attacker to elevate privileges locally...

CLSA-2026-1776171616 ImageMagick: Fix of CVE-2025-57803

CVE-2025-57803: fix integer overflow in BMP reader stride computation...

CLSA-2026-1776171379 ImageMagick: Fix of CVE-2025-57803

CVE-2025-57803: fix integer overflow in BMP reader stride computation...

CLSA-2026-1776170814 ImageMagick: Fix of CVE-2025-57803

CVE-2025-57803: fix integer overflow in BMP reader stride computation...

SUSE-SU-2026:1322-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: - Update to 149.0.2 and 140.9.1esr bsc1261663. - CVE-2026-5731: Memory safety bugs fixed in Firefox ESR 115.34.1, Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2. - CVE-2026-5732: Incorrect boundary...

firefox: thunderbird: Incorrect boundary conditions, integer overflow in the Graphics: Text component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions, integer overflow in the Graphics: Text component...

CVE-2026-6192

A flaw was found in uclouvain openjpeg. A local attacker can exploit an integer overflow vulnerability within the opjpiinitialiseencode function. This manipulation can lead to a Denial of Service DoS, making the affected system or application unavailable...

libsixel 输入验证错误漏洞

Libsixel is a software package developed by Hayaki Saito, which provides encoding/decoding implementations for DEC SIXEL graphics and other conversion programs. Versions of Libsixel 1.8.7 and earlier contained a vulnerability related to input validation errors. This vulnerability stemmed from...

ROS-20260414-73-0040

Vulnerability in kernel-lt related to integer overflow. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

ALSA-2026:8052 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: libpng: libpng: Arbitrary code execution due to use-after-free vulnerability CVE-2026-33416 libpng: libpng: Information disclosure and denial of service via out-of-bound...

PT-2026-32769

Name of the Vulnerable Software and Affected Versions Windows Storage Spaces Controller affected versions not specified Description An integer underflow wrap or wraparound occurs in the Windows Storage Spaces Controller, which allows an authorized attacker to elevate privileges locally...

PT-2026-32690

Name of the Vulnerable Software and Affected Versions FortiWeb versions 8.0.0 through 8.0.3 FortiWeb versions 7.6.0 through 7.6.6 FortiWeb versions 7.4 affected versions not specified FortiWeb versions 7.2 affected versions not specified FortiWeb versions 7.0 affected versions not specified...

libsixel 输入验证错误漏洞

Libsixel is a software package developed by Hayaki Saito, which provides encoding/decoding implementations for DEC SIXEL graphics and other conversion programs. Versions of Libsixel 1.8.7 and earlier contained a vulnerability related to input validation errors. This vulnerability stemmed from an...

ROS-20260414-73-0059

Vulnerability in kernel-lt related to integer overflow. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

PT-2026-32945

Name of the Vulnerable Software and Affected Versions Adobe Framemaker versions prior to 2022.9 Description An Integer Underflow Wrap or Wraparound issue exists where an arithmetic operation results in a value smaller than the minimum representable value, causing it to wrap around to a very large...

ROS-20260414-73-0019

Vulnerability in kernel-lt related to integer overflow. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

PT-2026-32946

Name of the Vulnerable Software and Affected Versions Adobe Framemaker versions prior to 2022.9 Description An Integer Underflow Wrap or Wraparound issue exists where an arithmetic operation results in a value smaller than the minimum representable value, causing it to wrap around to a very large...

PT-2026-32755

CVE-2026-26178 Integer size truncation in Windows Advanced Rasterization Platform WARP allows an unauthorized attacker to elevate privileges locally. https://t.co/6dbFxYiIih...