63 matches found
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: glib2 (UTSA-2026-016804)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016804 advisory. A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spawn a program using long command lines. Tenable has...
CVE-2016-20038
A flaw was found in yTree. This vulnerability, a stack-based buffer overflow, allows a local attacker to execute arbitrary code. By supplying an excessively long command-line argument, an attacker can overwrite the program's memory stack, leading to the execution of malicious code within the...
CVE-2016-20038
yTree 1.94-1.1 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an excessively long argument to the application. Attackers can craft a malicious command-line argument containing shellcode and a return address to overwrite the...
JLSEC-2025-168 A flaw was found in GLib
A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spawn a program using long command lines...
EUVD-2006-3925
Malware in sbrugna...
EUVD-2006-6323
Malware in sbrugna...
EUVD-2025-22903
Malicious code in bioql PyPI...
Glib: glib crash after long command line
...
CVE-2025-4056
A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spawn a program using long command lines...
CVE-2025-4056
A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spawn a program using long command lines...
CVE-2025-4056
A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spawn a program using long command lines...
CVE-2025-4056 Glib: glib crash after long command line
A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spawn a program using long command lines...
CVE-2025-4056
A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spawn a program using long command lines...
Arbitrary Code Injection
Overview Affected versions of this package are vulnerable to Arbitrary Code Injection due to improper handling of long command line inputs. An attacker can cause the application to crash by supplying an excessively long command line input. This is only exploitable if the application is running on...
CLSA-2023-1677231280 git: Fix of 4 CVEs
CVE-2022-41903: fix out-of-bounds write caused by integer overflow - CVE-2021-40330: forbid newlines in host and path - CVE-2022-39260: reject too long command line strings - CVE-2023-23946: prevent git-apply from writing behind newly created symbolic links...
CLSA-2023-1677096181 git: Fix of 4 CVEs
CVE-2022-41903: fix out-of-bounds write caused by integer overflow - CVE-2021-40330: forbid newlines in host and path - CVE-2022-39260: reject too long command line strings - CVE-2023-23946: prevent git-apply from writing behind newly created symbolic links...
CLSA-2023-1677095411 git: Fix of 6 CVEs
CVE-2022-41903: fix out-of-bounds write caused by integer overflow - CVE-2021-40330: forbid newlines in host and path - CVE-2022-39260: reject too long command line strings - CVE-2021-23521: implement size checks for .gitattributes - CVE-2023-22490: prevent arbitrary path exfiltration when using...
SUSE CVE-2008-1628
Stack-based buffer overflow in the auditlogusercommand function in lib/auditlogging.c in Linux Audit before 1.7 might allow remote attackers to execute arbitrary code via a long command argument. NOTE: some of these details are obtained from third party information...
SUSE CVE-2008-4575
Buffer overflow in the DoCommand function in jhead before 2.84 might allow context-dependent attackers to cause a denial of service crash via 1 a long -cmd argument and 2 unspecified vectors related to "a bunch of potential string overflows."...
SUSE CVE-2010-2799
Stack-based buffer overflow in the nestlex function in nestlex.c in Socat 1.5.0.0 through 1.7.1.2 and 2.0.0-b1 through 2.0.0-b3, when bidirectional data relay is enabled, allows context-dependent attackers to execute arbitrary code via long command-line arguments...