[SECURITY] Fedora 42 Update: retroarch-1.22.0-1.fc42

libretro is an API that exposes generic audio/video/input callbacks. A fronte nd for libretro such as RetroArch handles video output, audio output, input and application lifecycle. A libretro core written in portable C or C++ can run seamlessly on many platforms with very little to no porting...

[SECURITY] Fedora 43 Update: retroarch-1.22.0-1.fc43

libretro is an API that exposes generic audio/video/input callbacks. A fronte nd for libretro such as RetroArch handles video output, audio output, input and application lifecycle. A libretro core written in portable C or C++ can run seamlessly on many platforms with very little to no porting...

EUVD-2025-1687

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-9809

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds write in cdfsopencuetrack in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue...

CVE-2025-9809

Out-of-bounds write in cdfsopencuetrack in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATHMAXLENGTH that is copied using memcpy into a fixed-size buffer...

CVE-2025-9809

Out-of-bounds write in cdfsopencuetrack in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATHMAXLENGTH that is copied using memcpy into a fixed-size buffer...

DEBIAN-CVE-2025-9809

Out-of-bounds write in cdfsopencuetrack in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATHMAXLENGTH that is copied using memcpy into a fixed-size buffer...

UBUNTU-CVE-2025-9809

Out-of-bounds write in cdfsopencuetrack in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATHMAXLENGTH that is copied using memcpy into a fixed-size buffer...

CVE-2025-9809

Out-of-bounds write in cdfsopencuetrack in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATHMAXLENGTH that is copied using memcpy into a fixed-size buffer...

CVE-2025-9809

CVE-2025-9809 affects libretro-common’s cdfs_open_cue_track: an out-of-bounds write allows a crafted .cue file with a PATH_MAX_LENGTH-exceeding path to be copied via memcpy into a fixed-size buffer, enabling arbitrary code execution. Reported across multiple feeds (NVD, Debian/Ubuntu advisories, ...

libretro-common 安全漏洞

libretro-common is a front-end development code block open-sourced by Libretro. A security vulnerability exists in libretro-common that stems from an incorrect manipulation of the path to a .cue file resulting in an out-of-bounds write that could execute arbitrary code...

PT-2025-35505

Name of the Vulnerable Software and Affected Versions libretro libretro-common affected versions not specified Description An out-of-bounds write issue exists in the cdfs open cue track function. This allows remote attackers to execute arbitrary code via a crafted .cue file. The issue occurs when...

Linux Distros Unpatched Vulnerability : CVE-2025-9136

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in libretro RetroArch 1.18.0/1.19.0/1.20.0. This affects the function filestreamvscanf of the file libretro-common/streams/filestream.c...

SUSE CVE-2025-9136

A flaw has been found in libretro RetroArch 1.18.0/1.19.0/1.20.0. This affects the function filestreamvscanf of the file libretro-common/streams/filestream.c. This manipulation causes out-of-bounds read. The attack needs to be launched locally. Upgrading to version 1.21.0 mitigates this issue. It...

CVE-2025-9136

A flaw has been found in libretro RetroArch 1.18.0/1.19.0/1.20.0. This affects the function filestreamvscanf of the file libretro-common/streams/filestream.c. This manipulation causes out-of-bounds read. The attack needs to be launched locally. Upgrading to version 1.21.0 mitigates this issue. It...

UBUNTU-CVE-2025-9136

A flaw has been found in libretro RetroArch 1.18.0/1.19.0/1.20.0. This affects the function filestreamvscanf of the file libretro-common/streams/filestream.c. This manipulation causes out-of-bounds read. The attack needs to be launched locally. Upgrading to version 1.21.0 mitigates this issue. It...

CVE-2025-9136

CVE-2025-9136 affects libretro RetroArch 1.18.0/1.19.0/1.20.0. The flaw is in filestream_vscanf of libretro-common/streams/file_stream.c, causing an out-of-bounds read. The CVE describes a local attacker exploit and recommends upgrading to 1.21.0. Fedora advisories linked here show updates to 1.2...

PT-2025-33721 · Libretro +1 · Retroarch +1

Name of the Vulnerable Software and Affected Versions: libretro RetroArch versions 1.18.0 through 1.20.0 Description: A flaw has been found in the filestream vscanf function of the libretro-common/streams/file stream.c file. This manipulation causes an out-of-bounds read. The attack needs to be...

CVE-2025-0459

A vulnerability, which was classified as problematic, has been found in libretro RetroArch up to 1.19.1 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll of the component Startup. The manipulation leads to untrusted search path. An attack has to be...

CVE-2025-0459

A vulnerability, which was classified as problematic, has been found in libretro RetroArch up to 1.19.1 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll of the component Startup. The manipulation leads to untrusted search path. An attack has to be...