JLSEC-2026-439 When doing a second SMB request to the same host again, curl would wrongly use a data pointer...

When doing a second SMB request to the same host again, curl would wrongly use a data pointer pointing into already freed memory...

CVE-2026-33416 LIBPNG has use-after-free via pointer aliasing in `png_set_tRNS` and `png_set_PLTE`

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. In versions 1.2.1 through 1.6.55, pngsettRNS and pngsetPLTE each alias a heap-allocated buffer between pngstruct and pnginfo, sharing a single allocation acros...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003048)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003048 advisory. In the flushtmregstothread function in arch/powerpc/kernel/ptrace.c in the Linux kernel before 4.13.5, a guest kernel crash can be triggered from unprivileged...

EUVD-2015-7575

Malware in sbrugna...

EUVD-2019-5297

Malware in sbrugna...

EUVD-2015-6926

Malware in sbrugna...

EUVD-2021-8880

Malicious code in bioql PyPI...

ROS-20250925-05

A vulnerability in the NVIDIA GPU Display Driver is related to incorrect authorization authorization. Exploitation of the vulnerability could allow an attacker to gain elevated privileges on the system A vulnerability in the NVIDIA GPU Display Driver software driver is related to an operation tha...

Advisory ROSA-SA-2025-3002

software: ghostscript 9.56.1 OS: ROSA-CHROME unaffected versions = ghostscript-9.56.1-8 affected versions ghostscript-9.56.1-8 CVE-ID: CVE-2023-46751 BDU-ID: 2024-00187 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the gdevprnopenprinterseekable function of the Ghostscript document processing,...

ROS-20250806-09

A vulnerability in the MongoDB database management system server is related to excessive iteration. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service MongoDB database management system vulnerability is related to the fact that the software stor...

PT-2025-30031 · Gnu +1 · Gpac +1

Уязвимость функции gf odf ac4 cfg clean list утилиты MP4Box мультимедийной платформы GPAC связана с использованием памяти после освобождения. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании или выполнить произвольный код...

ROS-20250710-02

Vulnerability in XkbSizeKeySyms function of the Wayland protocol implementation for X.Org XWayland, an implementation of the XWayland Server X Window System X.Org Server is related to a buffer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service or...

PT-2025-29844 · Gnu +1 · Gpac +1

Уязвимость функции gf filter in parent chain утилиты MP4Box мультимедийной платформы GPAC связана с использованием памяти после освобождения. Эксплуатация уязвимости может позволить нарушителю вызвать отказ в обслуживании...

CVE-2019-14040

Using memory after being freed in qsee due to wrong implementation can lead to unexpected behavior such as execution of unknown code in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

DEBIAN-CVE-2025-37989

In the Linux kernel, the following vulnerability has been resolved: net: phy: leds: fix memory leak A network restart test on a router led to an out-of-memory condition, which was traced to a memory leak in the PHY LED trigger code. The root cause is misuse of the devm API. The registration...

ROS-20250417-04

A vulnerability in the numbers.ct file of the libxslt library is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker to execute arbitrary code Vulnerability in libxslt library's xsltGetInheritedNsList function is related to memory usage after...

Linux Distros Unpatched Vulnerability : CVE-2022-49260

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec - fix the aead software fallback for engine Due to the subreq pointer...

SUSE CVE-2022-49260

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec - fix the aead software fallback for engine Due to the subreq pointer misuse the private context memory. The aead soft crypto occasionally casues the OS panic as setting the 64K page. Here is fix it...

DEBIAN-CVE-2022-49260

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec - fix the aead software fallback for engine Due to the subreq pointer misuse the private context memory. The aead soft crypto occasionally casues the OS panic as setting the 64K page. Here is fix it...

CVE-2022-49260

Technical details for CVE-2022-49260 are not publicly available in the provided documents. Monitor for updates from the OSV/SUSE advisories and related feeds.