Lucene search
+L

8 matches found

OSV
OSV
added 2026/07/06 6:28 a.m.4 views

OESA-2026-2849 alsa-lib security update

The alsa-lib is a library to interface with ALSA in the Linux kernel and virtual devices using a plugin system. More detail: https://alsa.opensrc.org/Alsa-lib Security Fixes: The Advanced Linux Sound Architecture ALSA library before 1.2.16.1 contains a double-free vulnerability in parsedef in...

7CVSS6AI score0.00138EPSS
Exploits0References2
OSV
OSV
added 2026/07/06 6:27 a.m.6 views

OESA-2026-2848 alsa-lib security update

The alsa-lib is a library to interface with ALSA in the Linux kernel and virtual devices using a plugin system. More detail: https://alsa.opensrc.org/Alsa-lib Security Fixes: The Advanced Linux Sound Architecture ALSA library before 1.2.16.1 contains a double-free vulnerability in parsedef in...

7CVSS6AI score0.00138EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/22 6:20 p.m.3 views

Double Free

Overview Affected versions of this package are vulnerable to Double Free in the parsedef function in conf.c when parsing nested compound or array configuration blocks. An attacker can corrupt memory or cause a denial of service by supplying maliciously crafted ALSA configuration text that trigger...

7CVSS5.8AI score0.00138EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/22 3:58 p.m.5 views

CVE-2026-56109

The Advanced Linux Sound Architecture ALSA library before 1.2.16.1 contains a double-free vulnerability in parsedef in src/conf.c that allows attackers to corrupt memory by supplying maliciously crafted ALSA configuration text. When parsing nested compound or array configuration blocks, parsedef...

7CVSS5.9AI score0.00138EPSS
Exploits0References5
OSV
OSV
added 2026/06/22 3:58 p.m.1 views

CVE-2026-56109 ALSA Library < 1.2.16.1 Double-Free via parse_def() in conf.c

The Advanced Linux Sound Architecture ALSA library before 1.2.16.1 contains a double-free vulnerability in parsedef in src/conf.c that allows attackers to corrupt memory by supplying maliciously crafted ALSA configuration text. When parsing nested compound or array configuration blocks, parsedef...

7CVSS6AI score0.00138EPSS
Exploits0References7
Snyk
Snyk
added 2026/05/20 3:35 p.m.31 views

Uncontrolled Recursion

Overview Affected versions of this package are vulnerable to Uncontrolled Recursion via Unbounded Recursion in Nested Blocks, Sequences, and Mappings. Symfony\Component\Yaml\Parser is the entry point for parsing YAML strings into PHP values via Yaml::parse. When the parser is exposed to...

8.7CVSS5.8AI score0.00691EPSS
Exploits0References2
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.9 views

CVE-2026-45133: YAML Parser Stack Exhaustion via Unbounded Recursion in Nested Blocks, Sequences, and Mappings

More info at https://symfony.com/cve-2026-45133...

8.2CVSS5.8AI score0.00691EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.10 views

CVE-2026-45133: YAML Parser Stack Exhaustion via Unbounded Recursion in Nested Blocks, Sequences, and Mappings

More info at https://symfony.com/cve-2026-45133...

8.2CVSS5.8AI score0.00691EPSS
Exploits0Affected Software1
Rows per page
Query Builder