479 matches found
Apache Arrow 安全漏洞
Apache Arrow is a cross-language development platform for memory data processing, developed by the Apache Foundation in the United States. This platform supports programming languages such as C, C++, C, Go, and Java, and provides features like inter-process communication. Versions of Apache Arrow...
OPENSUSE-SU-2026:20123-1 Security update for xkbcomp
This update for xkbcomp fixes the following issues: - CVE-2018-15863, CVE-2018-15861, CVE-2018-15859, CVE-2018-15853: Fixed multiple memory handling and correctness issues bsc1105832...
MiracleLinux 9 : thunderbird-115.12.1-1.el9_4.ML.1 (AXSA:2024-8452:13)
The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8452:13 advisory. thunderbird: Use-after-free in networking CVE-2024-5702 thunderbird: Use-after-free in JavaScript object transplant CVE-2024-5688 thunderbird:...
MiracleLinux 9 : opensc-0.23.0-3.el9_3 (AXSA:2024-7337:01)
The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7337:01 advisory. OpenSC: Potential PIN bypass when card tracks its own login state CVE-2023-40660 OpenSC: multiple memory issues with pkcs15-init enrollment tool...
MiracleLinux 9 : grafana-9.2.10-7.el9.ML.1 (AXSA:2023-6884:10)
The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6884:10 advisory. grafana: persistent xss in grafana core plugins CVE-2022-23552 grafana: plugin signature bypass CVE-2022-31123 grafana: data source and plugin proxy...
MiracleLinux 8 : opensc-0.20.0-7.el8_9 (AXSA:2024-7353:02)
The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7353:02 advisory. OpenSC: Potential PIN bypass when card tracks its own login state CVE-2023-40660 OpenSC: multiple memory issues with pkcs15-init enrollment tool...
MiracleLinux 4 : kernel-2.6.32-358.6.1.el6 (AXSA:2013-454:03)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-454:03 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...
MiracleLinux 4 : systemtap-1.4-6.3.0.1.AXS4 (AXSA:2011-640:01)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2011-640:01 advisory. SystemTap is an instrumentation system for systems running Linux 2.6. Developers can write instrumentation to collect data on the operation of the...
USN-7953-1 php7.2, php7.4, php8.1, php8.3, php8.4 vulnerabilities
It was discovered that PHP incorrectly handled memory while reading images in multi-chunk mode. An attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 24.04 LTS, Ubuntu 25.04 and Ubuntu 25.10. CVE-2025-14177 It was discovered that PHP incorrectl...
Apple macOS Tahoe Memory Mishandling Vulnerability
Apple macOS Tahoe is a desktop operating system released by Apple on June 10, 2025, using the LiquidGlass design language and integrating several AI and cross-device features. Apple macOS Tahoe suffers from a memory mishandling vulnerability that stems from a flaw in the system's memory handling...
USN-7923-1 qtbase-opensource-src vulnerability
It was discovered that Qt did not correctly handle certain memory operations. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service or execute arbitrary code...
TencentOS Server 3: grub2 (TSSA-2022:0064)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0064 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
TencentOS Server 2: glibc (TSSA-2024:0154)
The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0154 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...
SUSE SLES15: WebKitGTK-4.0-lang / WebKitGTK-4.1-lang / WebKitGTK-6.0-lang / etc (SUSE-SU-2025:3700-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3700-1 advisory. - CVE-2025-43343: improved memory handling in web content processing to prevent process crash bsc1251975 - CVE-2025-43272: improved...
SUSE-SU-2025:3701-1 Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: - CVE-2025-43343: improved memory handling in web content processing to prevent process crash bsc1251975 - CVE-2025-43272: improved memory handling to prevent unexpected process crash bsc1250439 - CVE-2025-43342: correctness issue was...
Vulnerabilities fixed in Mozilla Firefox and Thunderbird
Mozilla has fixed vulnerabilities in Firefox and Thunderbird Specifically for versions under 144. The vulnerabilities include several problems, including a use-after-free issue, memory security flaws and the ability for a malicious person to access sensitive data or execute arbitrary code. These...
Mozilla Firefox < 144.0
The version of Firefox installed on the remote macOS or Mac OS X host is prior to 144.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-81 advisory. - Memory safety bug present in Firefox 143 and Thunderbird 143. This bug showed evidence of memory corruption...
EUVD-2014-3817
Malware in sbrugna...
EUVD-2019-18172
Malware in sbrugna...
EUVD-2019-2430
Malware in sbrugna...