4 matches found
UBUNTU-CVE-2025-59692
PureVPN client applications on Linux through September 2025 mishandle firewalling. They flush the system's existing iptables rules and apply default ACCEPT policies when connecting to a VPN server. This removes firewall rules that may have been configured manually or by other software e.g., UFW,...
CVE-2025-59692
The CVE-2025-59692 issue affects PureVPN CLI 2.0.1 and GUI 2.10.0 on Linux. The root cause is that the VPN client mishandles firewalling by flushing existing iptables rules and applying default ACCEPT policies when connecting to a VPN server, thereby removing manually configured rules and rules f...
libxslt: Use-After-Free in libxslt numbers.c
A flaw was found in libxslt numbers.c. This vulnerability allows a use-after-free, potentially leading to memory corruption or code execution via nested XPath evaluations where an XPath context node can be modified but not restored...
DEBIAN-CVE-2025-24855
numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal...