GHSA-RGXP-2HWP-JWGG Apache Arrow: Potential use-after-free when reading IPC file with pre-buffering

Use After Free vulnerability in Apache Arrow C++. This issue affects Apache Arrow C++ from 15.0.0 through 23.0.0. It can be triggered when reading an Arrow IPC file but not an IPC stream with pre-buffering enabled, if the IPC file contains data with variadic buffers such as Binary View and String...

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the RecordBatchFileReader::PreBufferMetadata API call . An attacker can cause memory corruption or application crashes by providing a specially crafted IPC file with variadic buffers and exploiting multi-threaded IO...

PYSEC-2026-113

Use After Free vulnerability in Apache Arrow C++. This issue affects Apache Arrow C++ from 15.0.0 through 23.0.0. It can be triggered when reading an Arrow IPC file but not an IPC stream with pre-buffering enabled, if the IPC file contains data with variadic buffers such as Binary View and String...

Mozilla Firefox 资源管理错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation. Mozilla Firefox suffers from a Resource Management Error vulnerability that stems from the fact that when creating callbacks via IPC to display a file chooser window, multiple identical callbacks may be created at the same...

The vulnerability of the Xymon network monitoring software allows a intruder to input arbitrary messages.

The vulnerability in the lib/xymondipc.c file of the network monitoring software Xymon is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor, operating locally, to insert arbitrary messages into the queue...