JLSEC-2026-330

A vulnerability was found in HDF5 up to 1.14.6. It has been rated as critical. Affected by this issue is the function H5FLblkgclist of the file src/H5FL.c. The manipulation of the argument H5FLblkheadt leads to use after free. An attack has to be approached locally. The exploit has been disclosed...

CVE-2026-5235 Axiomatic Bento4 MP4 File Ap4Dac4Atom.cpp ReadCache heap-based overflow

A vulnerability was determined in Axiomatic Bento4 up to 1.6.0-641. This impacts the function AP4BitReader::ReadCache of the file Ap4Dac4Atom.cpp of the component MP4 File Parser. This manipulation causes heap-based buffer overflow. The attack needs to be launched locally. The exploit has been...

CVE-2026-3664 xlnt-community xlnt Encrypted XLSX File compound_document.cpp read_directory out-of-bounds

A vulnerability was determined in xlnt-community xlnt up to 1.6.1. Impacted is the function xlnt::detail::compounddocument::readdirectory of the file source/detail/cryptography/compounddocument.cpp of the component Encrypted XLSX File Parser. Executing a manipulation can lead to out-of-bounds rea...

CVE-2026-2659

The vulnerability CVE-2026-2659 affects Squirrel up to version 3.2. It resides in SQFuncState::PopTarget within src/squirrel/squirrel/sqfuncstate.cpp, where manipulating the _target_stack can cause an out-of-bounds read during local execution. Publicly disclosed exploits exist per the sources, an...

PT-2026-6921

Name of the Vulnerable Software and Affected Versions Mapnik versions prior to 4.2.1 Description A flaw exists in Mapnik that relates to a divide by zero error within the mapnik::detail::mod::operator function located in the src/value.cpp file. This issue can be triggered locally. The details of...

EUVD-2025-19481

Malicious code in bioql PyPI...

EUVD-2025-28875

Malicious code in bioql PyPI...

EUVD-2025-31445

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-6856

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FLreggclist of the file src/H5FL.c. The manipulation...

Linux Distros Unpatched Vulnerability : CVE-2025-6274

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in WebAssembly wabt up to 1.0.37. It has been classified as problematic. Affected is the function OnDataCount of the file...

CVE-2025-8845

A vulnerability was identified in NASM Netwide Assember 2.17rc0. This issue affects the function assemblefile of the file nasm.c. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...

CVE-2025-8846

CVE-2025-8846 affects NASM Netwide Assembler 2.17rc0, specifically the parse_line function in parser.c. It enables a stack-based buffer overflow via a local exploit. The vulnerability impact is described as high in CVSS metrics (local access, high confidentiality/integrity/availability impact). A...

CVE-2025-8735 GNU cflow Lexer c.c yylex null pointer dereference

A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c of the component Lexer. The manipulation leads to null pointer dereference. An attack has to be approached locally. The exploit has been disclosed to th...

SUSE CVE-2025-5244

A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed...

SUSE CVE-2025-5200

A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDLImporter::InternReadFileQuake1 of the file assimp/code/AssetLib/MDL/MDLLoader.cpp. The manipulation leads to out-of-bounds read. It is possible to launch the attac...

UBUNTU-CVE-2025-5201

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the function LWOImporter::CountVertsAndFacesLWO2 of the file assimp/code/AssetLib/LWO/LWOLoader.cpp. The manipulation leads to out-of-bounds read. The attack needs to be...

DEBIAN-CVE-2025-2926

A vulnerability was found in HDF5 up to 1.14.6 and classified as problematic. This issue affects the function H5Ocachechkserialize of the file src/H5Ocache.c. The manipulation leads to null pointer dereference. An attack has to be approached locally. The exploit has been disclosed to the public a...

Linux Distros Unpatched Vulnerability : CVE-2024-6062

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in GPAC 2.5-DEV-rev228-g11067ea92-master and classified as problematic. Affected by this issue is the function swfsvgaddisosample of t...

PT-2023-32841 · Kylinsoft · Hedron-Domain-Hook

Name of the Vulnerable Software and Affected Versions: KylinSoft hedron-domain-hook versions up to 3.8.0.12-0k0.5 Description: A critical issue affects the init kcm function of the DBus Handler component, leading to improper access controls. The manipulation requires local attacking. The exploit...

CVE-2023-1010 vox2png vox2png.c heap-based overflow

A vulnerability classified as critical was found in vox2png 1.0. Affected by this vulnerability is an unknown functionality of the file vox2png.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...