Lucene search
K

46 matches found

RedHat Linux
RedHat Linux
added 2026/07/01 12:19 p.m.6 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References7
OSV
OSV
added 2026/07/01 6:0 a.m.4 views

RLSA-2026:33126 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

5CVSS5.8AI score0.00451EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/06/29 7:50 p.m.5 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/06/29 4:27 p.m.13 views

Moderate: Red Hat Security Advisory: glibc security update

An update for glibc is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS5.8AI score0.00451EPSS
Exploits1References2
OSV
OSV
added 2026/06/29 12:0 a.m.5 views

ALSA-2026:33226 Moderate: glibc security, bug fix, and enhancement update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References4
OSV
OSV
added 2026/06/29 12:0 a.m.6 views

ALSA-2026:33092 Moderate: glibc security, bug fix, and enhancement update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

9.8CVSS5.8AI score0.00451EPSS
Exploits1References4
OSV
OSV
added 2026/06/29 12:0 a.m.4 views

ALSA-2026:33126 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

9.8CVSS5.8AI score0.00451EPSS
Exploits1References4
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.8 views

Astra Linux – Vulnerability in openexr

OpenEXR provides the specification and reference implementation of the EXR file format, a image storage format for the motion picture industry. From version 3.2.0 up to versions 3.2.7, 3.3.9, and 3.4.9, the DWA lossy decoder used signed 32-bit arithmetic to construct temporary per-component block...

8.8CVSS5.7AI score0.00419EPSS
Exploits1References2
NVD
NVD
added 2025/12/16 8:15 p.m.6 views

CVE-2025-65834

Meltytech Shotcut 25.10.31 is vulnerable to Buffer Overflow. A memory access violation occurs when processing MLT project files with manipulated width and height parameters. By setting these values to extremely large numbers, the application attempts to allocate excessive memory during image...

9.8CVSS0.0034EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/16 12:0 a.m.31 views

CVE-2025-65834

Meltytech Shotcut 25.10.31 is vulnerable to Buffer Overflow. A memory access violation occurs when processing MLT project files with manipulated width and height parameters. By setting these values to extremely large numbers, the application attempts to allocate excessive memory during image...

0.0034EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.9 views

PT-2025-51783

Name of the Vulnerable Software and Affected Versions Shotcut version 25.10.31 Description Shotcut 25.10.31 is subject to a buffer overflow issue. This occurs when processing MLT project files containing manipulated width and height parameters. Specifically, providing extremely large values for...

9.8CVSS6.9AI score0.0034EPSS
Exploits0References8
Snyk
Snyk
added 2025/12/10 3:47 p.m.2 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the ReadTIMImage function. An attacker can access sensitive memory contents by supplying a specially crafted TIM image file with large width and height values, causing an integer overflow and subsequent out-of-boun...

8.7CVSS6.9AI score0.00456EPSS
Exploits0References2
NVD
NVD
added 2025/10/20 2:15 p.m.7 views

CVE-2025-11680

Out-of-bounds Write in unfilterscanline in warmcat libwebsockets allows, when the LWSWITHUPNG flag is enabled during compilation and the HTML display stack is used, to write past a heap allocated buffer possibly causing a crash, when the user visits an attacker controlled website that contains a...

5.9CVSS0.00356EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-0981

Malware in sbrugna...

8.8CVSS7.9AI score0.04308EPSS
Exploits2References12
OSV
OSV
added 2024/06/05 8:15 p.m.4 views

ALPINE-CVE-2024-5171

Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: Calling aomimgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and so...

9.8CVSS8.5AI score0.01254EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/08/05 2:1 a.m.4 views

SUSE CVE-2023-29407

A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size width height appearing to be zero...

6.5CVSS9.1AI score0.00805EPSS
Exploits0References3
OSV
OSV
added 2023/08/02 9:30 p.m.19 views

GHSA-J3P8-6MRQ-6G7H Golang TIFF decoder vulnerable to excessive CPU consumption

A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size width height appearing to be zero...

6.5CVSS6.4AI score0.00805EPSS
Exploits0References8
OSV
OSV
added 2023/08/02 8:15 p.m.2 views

DEBIAN-CVE-2023-29407

A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size width height appearing to be zero...

6.5CVSS6.8AI score0.00805EPSS
Exploits0References1
OSV
OSV
added 2023/08/02 8:15 p.m.5 views

UBUNTU-CVE-2023-29407

A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size width height appearing to be zero...

6.5CVSS5.8AI score0.00805EPSS
Exploits0References5
OSV
OSV
added 2023/08/02 7:52 p.m.25 views

CVE-2023-29407 Excessive CPU consumption when decoding 0-height images in golang.org/x/image/tiff

A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size width height appearing to be zero...

6.5CVSS6.7AI score0.00805EPSS
Exploits0References10
Rows per page
Query Builder