CVE-2026-47741

Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, CreateOrderFromCartAction::execute previously created the Order row before checking and incrementing the discount's totaluse counter. Under concurrent checkout pressure Black Friday, flash sale, viral coupon, the global usagelimit was...

CVE-2026-22801

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.26 to 1.6.53, there is an integer truncation in the libpng simplified write API functions pngwriteimage16bit and pngwriteimage8bit causes heap buffer...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from cakeenqueue not returning NETXMITCN correctly when bufferlimit is exceeded, which could lead to an error...

sqlite: Integer Truncation in SQLite

A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior...

CLSA-2025-1754338597 Fix CVE(s): CVE-2025-6965

SECURITY UPDATE: excessive aggregate terms potentially leading to memory corruption - debian/patches/CVE-2025-6965.patch: fix a potential memory corruption if the number of aggregate terms in a query exceeds the maximum number of columns - CVE-2025-6965...

AZL-34864 CVE-2023-52429 affecting package kernel for versions less than 6.6.22.1-2

dmtablecreate in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to in alloctargets allocate more than INTMAX bytes, and crash, because of a missing check for struct dmioctl.targetcount...

Users may be unable to claim their rewards and add/remove liquidity due exceeding gas limit

Lines of code Vulnerability details Impact If a user provides liquidity on ticks which are entered and exited a large number of times, the gas required to call the accrueConcentratedPositionTimeWeightedLiquidity can exceed the block gas limit. Proof of Concept The...

named's configured cache size limit can be significantly exceeded

...

exchangeRateDeltaLimit can be exceeded with overrideExchangeRate() and remain unpaused

Lines of code Vulnerability details Impact The CashManger has a safety feature that limits the maximum change in the exchange rate between epochs. in setMintExchangeRate it is checked that this limit is not exceeded but there is no check in overrideExchangeRate. Proof of Concept An epoch could ha...

CVE-2020-1662

On Juniper Networks Junos OS and Junos OS Evolved devices, BGP session flapping can lead to a routing process daemon RPD crash and restart, limiting the attack surface to configured BGP peers. This issue only affects devices with BGP damping in combination with accepted-prefix-limit configuration...

CVE-2018-11948

CVE-2018-11948 affects Qualcomm Snapdragon platforms listed (MSM8996AU, QCS605, SD 410/12, SD 425/427/430/435/439/SD 429, SD 450, SD 625/632/636/675, SD 712/710/670/820/820A/835/845/SD 850, SD 8CX, SDA660, SDM439/630/660, Snapdragon_High_Med_2016, SXR1130) where the issue is that usage-entry limi...

kernel: kvm: Reachable BUG() on out-of-bounds guest IRQ

A reachable assertion failure flaw was found in the Linux kernel built with KVM virtualisationCONFIGKVM support with Virtual Function I/O feature CONFIGVFIO enabled. This failure could occur if a malicious guest device sent a virtual interrupt guest IRQ with a larger 1024 index value...

Code injection

Cisco Adaptive Security Appliances ASA 5500 series devices with software 8.0 through 8.4 allow remote attackers to cause a denial of service connection limit exceeded by triggering a large number of stale connections that result in an incorrect value for an MPF connection count, aka Bug ID...