CVE-2025-46206

A PDF parsing flaw was found in mupdf. If an attacker convinces a user to open a malformed PDF file locally, they may induce an infinite loop. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprisi...

CVE-2024-13978

A flaw was found in libtiff. The t2preadtiffinit function in the fax2ps component incorrectly handles TIFF files, leading to a null pointer dereference. A local attacker can trigger this condition by providing a specially crafted TIFF file. This can result in an application level denial of servic...

CVE-2022-50237

A flaw was found in ed25519-dalek. The Keypair implementation allows an attacker to compute a private key by observing signatures generated with corresponding public keys. This public key signing function oracle attack does not require authentication. An unauthenticated attacker can extract the...

CVE-2024-58261

A flaw was found in sequoia-openpgp. Processing RawCertParser operations with unsupported primary key types triggers an infinite loop of error messages. This flaw allows a local attacker to provide a specially crafted certificate file, resulting in a denial of service due to resource exhaustion...

CVE-2024-58266

A flaw was found in shlex. The shlex crate improperly handles unquoted and unescaped curly brace and non-breaking space characters, allowing a local attacker to inject arbitrary commands. This injection occurs when processing input that contains these characters without proper quoting or escaping...

CVE-2025-54090

A logic flaw has been discovered in Apache HTTP Server version 2.4.64. This vulnerability causes RewriteCond expr directives to always evaluate as true, regardless of the actual condition. This could lead to unintended routing, access control bypasses, or other security policy violations if an...

CVE-2015-10141

A code injection flaw was found in Xdebug. When a user enables remote debugging, Xdebug does not require authentication and will accept input from any user who can access the debug port. Enabling remote debugging is not recommended for normal use, but if exploited, this flaw would allow a remote...

CVE-2025-7962

A flaw was found in com.sun.mail/jakarta.mail. The jakarta.mail component allows an attacker to inject SMTP messages by exploiting improper handling of carriage return and newline characters encoded in UTF-8. An unauthenticated attacker can leverage this vulnerability to send arbitrary SMTP...

CVE-2025-5992

A denial of service flaw has been discovered in the Qt library. A call to QColorTransferGenericFunction may cause a crash if passed a maliciously crafted ICC profile. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product...

CVE-2024-43394

A Server-Side Request Forgery SSRF flaw was found in Apache HTTP Server on Windows. This issue can allow NTLM hashes to be leaked to a malicious server via modrewrite or apache expressions that pass unvalidated request input. Mitigation Mitigation for this issue is either not available or the...

CVE-2025-48379

A flaw was found in python-pillow. The Pillow library exhibits a heap buffer overflow when writing DDS images larger than 64KB, resulting from a missing bounds check during buffer allocation. This flaw allows a local attacker to trigger the overflow by providing a maliciously crafted DDS image...

CVE-2014-6274

A credential storage flaw was found in git-annex. In specific conditions, AWS credentials were stored in effective plaintext. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use an...

CVE-2025-6375

A flaw was found in Poco. The MultipartInputStream function in Net/src/MultipartReader.cpp contains a NULL pointer dereference triggered by crafted input. This flaw allows a local attacker to cause a denial of service. Manipulation occurs during the processing of multipart data. The vulnerability...

CVE-2025-6274

A denial-of-service vulnerability has been identified in WebAssembly's WebAssembly Binary Toolkit wabt, specifically within the OnDataCount function. This flaw allows an attacker with local access to trigger runaway resource consumption for example, excessive memory or CPU usage by manipulating...

CVE-2025-32797

The Conda-build contains commands and tools to build Conda packages. Prior to version 25.3.1, The writebuildscripts function in conda-build creates the temporary build script condabuild.sh with overly permissive file permissions 0o766, allowing write access to all users. This flaw allows attacker...

CVE-2025-22236

Minion event bus authorization bypass. An attacker with access to a minion key can craft a message which may be able to execute a job on other minions = 3007.0. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security...

CVE-2025-5399

Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop. There is no other way for the application to escape or exit this loop other than killing the thread/process. This might be used to DoS...

CVE-2025-49466

A flaw was found in aerc. The open.go file in the commands/msgview directory improperly concatenates attachment names, leading to a directory traversal vulnerability. This flaw allows a network attacker to specify a crafted attachment name. This issue allows arbitrary file access on the system...

CVE-2025-4123

A flaw was found in Grafana's custom frontend plugin handling. This vulnerability allows an attacker to perform a cross-site scripting XSS attack by exploiting a client path traversal and an open redirect issue, leading to arbitrary JavaScript execution and potential user redirection to malicious...

CVE-2025-31651

A flaw was found in Apache Tomcat's rewrite rule processing component. This vulnerability allows security constraints to be bypassed via specially crafted HTTP requests when specific, uncommon rewrite rule configurations are in use. Mitigation No mitigation is currently available that meets Red H...