Incus has Nil Dereferences on Restore via Malformed YAML

Summary Details It was found that backup.GetInfo trusts the inline backup/index.yaml config when present and only falls back to parsing the legacy backup/container/backup.yaml file if result.Config == nil. As a result, an archive can carry a valid inline config that passes the initial import...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the CreateBucketFromBackup process when handling backup metadata during storage bucket import. An attacker can cause the daemon to crash and disrupt service availability by supplying a crafted archive with a...

openSUSE 16 Security Update : autogen (openSUSE-SU-2026:20270-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20270-1 advisory. - CVE-2025-8746: Fixed improper input validation and memory bounds checking when processing certain malformed configuration files bsc1247921 Tenable has...

iccDEV 缓冲区错误漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.2 contained a buffer error vulnerability. This vulnerability stemmed from the icFixXml function, which, when processing malformed ICC configuration files,...

MiracleLinux 9 : dbus-broker-28-5.1.el9 (AXSA:2022-4072:01)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4072:01 advisory. dbus-broker: a stack buffer over-read if a malicious Exec line is supplied CVE-2022-31212 dbus-broker: null pointer reference when supplying a...

EUVD-2000-0211

Malware in sbrugna...

EUVD-2000-0598

Malware in sbrugna...

CVE-2011-10014

GTA San Andreas Multiplayer SA-MP server version 0.3.1.1 is vulnerable to a stack-based buffer overflow triggered by parsing a malformed server.cfg configuration file. The vulnerability allows local attackers to execute arbitrary code when the server binary samp-server.exe processes a crafted ech...

NewStart CGSL MAIN 7.02 : libeconf Multiple Vulnerabilities (NS-SA-2025-0131)

The remote NewStart CGSL host, running version MAIN 7.02, has libeconf packages installed that are affected by multiple vulnerabilities: - A Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in openSUSE libeconf allows for DoS via malformed configuration files Thi...

Nozomi Networks Guardian Security Breach

Nozomi Networks Guardian is an IoT device and software inspection system from Nozomi Networks, USA. Nozomi Networks Guardian suffers from a security vulnerability that originates from an authenticated administrator being able to upload an incorrectly formatted SAML configuration file without the...

DEBIAN-CVE-2023-32181

A Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in openSUSE libeconf allows for DoS via malformed configuration files This issue affects libeconf: before 0.5.2...

CVE-2023-32181

A Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in openSUSE libeconf allows for DoS via malformed configuration files This issue affects libeconf: before 0.5.2...

UBUNTU-CVE-2023-22652

A Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in openSUSE libeconf leads to DoS via malformed config files. This issue affects libeconf: before 0.5.2...

UBUNTU-CVE-2023-32181

A Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in openSUSE libeconf allows for DoS via malformed configuration files This issue affects libeconf: before 0.5.2...

CVE-2023-32181 Stack buffer overflow in "econf_writeFile" function

A Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in openSUSE libeconf allows for DoS via malformed configuration files This issue affects libeconf: before 0.5.2...

SUSE CVE-2023-32181

A Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in openSUSE libeconf allows for DoS via malformed configuration files This issue affects libeconf: before 0.5.2...

dbus-broker: null pointer reference when supplying a malformed XML config file

A flaw was found in the dbus-broker package. This issue occurs when supplying a malformed XML config file and leads to a NULL pointer dereference...

CVE-2022-31213

An issue was discovered in dbus-broker before 31. Multiple NULL pointer dereferences can be found when supplying a malformed XML config file...

UBUNTU-CVE-2022-31213

An issue was discovered in dbus-broker before 31. Multiple NULL pointer dereferences can be found when supplying a malformed XML config file...

PT-2022-20612 · Unknown +3 · Dbus-Broker +3

Name of the Vulnerable Software and Affected Versions: dbus-broker versions prior to 31 Description: An issue was discovered in dbus-broker where multiple NULL pointer dereferences can occur when a malformed XML config file is supplied. Recommendations: For versions prior to 31, update to version...