123 matches found
[SECURITY] Fedora 43 Update: kind-0.31.0-4.fc43
Kubernetes IN Docker - local clusters for testing Kubernetes...
[SECURITY] Fedora 44 Update: kind-0.31.0-4.fc44
Kubernetes IN Docker - local clusters for testing Kubernetes...
The vulnerability of the gf_isom_add_track_kind() function in the isomedia/isom_write.c file, implemented by the MP4Box encoder for the GPAC multimedia platform, allows a malicious actor to cause service interruptions using a specially created MP4 file.
The vulnerability of the gfisomaddtrackkind function in the isomedia/isomwrite.c file, belonging to the MP4Box encoder of the GPAC multimedia platform, is related to pointer dereferencing errors. Exploiting this vulnerability could allow an attacker to cause service failures through the use of a...
DEBIAN-CVE-2025-55639
GPAC MP4Box v2.4 was discovered to contain a NULL pointer dereference in the gfisomaddtrackkind function at isomedia/isomwrite.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted MP4 file...
PT-2026-51526
Name of the Vulnerable Software and Affected Versions GPAC MP4Box version 2.4 Description A NULL pointer dereference exists in the gf isom add track kind function within the isomedia/isom write.c file. This issue allows a remote attacker to trigger a Denial of Service DoS by processing a speciall...
GHSA-RCX4-77X4-HJX5 Duplicate Advisory: OpenClaw ACP client has permission auto-approval bypass via untrusted tool metadata
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-7jx5-9fjg-hp4m. This link is maintained to preserve external references. Original Description OpenClaw versions prior to 2026.2.23 contain an authorization bypass vulnerability in the ACP client that auto-approv...
PT-2026-26747
OpenClaw versions prior to 2026.2.23 contain an authorization bypass vulnerability in the ACP client that auto-approves tool calls based on untrusted toolCall.kind metadata and permissive name heuristics. Attackers can bypass interactive approval prompts for read-class operations by spoofing tool...
OSV-2026-311 UNKNOWN READ in strncasecmp
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=487216732 Crash type: UNKNOWN READ Crash state: strncasecmp vcardcomponentstringtokind parsevcard...
CVE-2025-14522
A vulnerability was detected in baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c. The impacted element is an unknown function of the file /Public/Kindeditor/php/uploadjson.php. Performing manipulation of the argument imgFile results in unrestricted upload. It is possible to initiate the...
EUVD-2025-97475
Malicious code in kindmeerkatz3n npm...
EUVD-2025-97476
Malicious code in kindcrayfishz3n npm...
EUVD-2025-90701
Malicious code in kindpelicanz3n npm...
EUVD-2025-76467
Malicious code in kindguineafowl-tool npm...
EUVD-2025-78935
Malicious code in kindrodentz3n npm...
EUVD-2025-78936
Malicious code in kindkrillz3n npm...
EUVD-2025-81433
Malicious code in kindbugdumbs npm...
EUVD-2025-81430
Malicious code in kindwildfowldumbs npm...
EUVD-2025-81435
Malicious code in kindaardvark0xrequest npm...
EUVD-2025-72281
Malicious code in kindyellowsnipe-70-tisubasah npm...
EUVD-2025-63382
Malicious code in kindmammalz3n npm...