PT-2026-5399

Name of the Vulnerable Software and Affected Versions Free5GC SMF versions prior to 4.1.1 Description A flaw exists in Free5GC SMF, specifically within the PFCP UDP Endpoint component. The issue resides in the HandlePfcpAssociationReleaseRequest function located in the file...

CVE-2025-33237

NVIDIA HD Audio Driver for Windows contains a vulnerability where an attacker could exploit a NULL pointer dereference issue. A successful exploit of this vulnerability might lead to a denial of service...

CVE-2025-63655

A NULL pointer dereference in the mkhttprangeparse function mkserver/mkhttp.c of monkey commit f37e984 allows attackers to cause a Denial of Service DoS via sending a crafted HTTP request to the server...

AZL-76380 CVE-2025-63655 affecting package fluent-bit 3.0.6-6

A NULL pointer dereference in the mkhttprangeparse function mkserver/mkhttp.c of monkey commit f37e984 allows attackers to cause a Denial of Service DoS via sending a crafted HTTP request to the server...

SUSE-SU-2026:0343-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. - CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. - CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex functi...

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex function...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the marknondifferentiable function. An attacker can cause the process to crash by providing specially crafted input. Remediation There is no fixed version for oneflow. References - GitHub Issue Credit:...

Monkey Server security vulnerabilities

Monkey Server is an open-source HTTP server developed by Monkey I/O. There is a security vulnerability in Monkey Server, which stems from a null pointer dereferencing in the mkhttprangeparse function. This vulnerability may lead to denial-of-service attacks...

CVE-2025-63655

CVE-2025-63655 describes a NULL pointer dereference in the mk_http_range_parse function (mk_server/mk_http.c) in the Monkey project, fixed in commit f37e984. The issue allows an attacker to cause a Denial of Service by sending a crafted HTTP request to the targeted server. Affected component is t...

EUVD-2025-206525

A NULL pointer dereference in the mkhttprangeparse function mkserver/mkhttp.c of monkey commit f37e984 allows attackers to cause a Denial of Service DoS via sending a crafted HTTP request to the server...

CVE-2025-33237

NVIDIA HD Audio Driver for Windows contains a vulnerability where an attacker could exploit a NULL pointer dereference issue. A successful exploit of this vulnerability might lead to a denial of service...

CVE-2025-33237

NVIDIA HD Audio Driver for Windows contains a vulnerability where an attacker could exploit a NULL pointer dereference issue. A successful exploit of this vulnerability might lead to a denial of service...

EUVD-2025-206468

NVIDIA HD Audio Driver for Windows contains a vulnerability where an attacker could exploit a NULL pointer dereference issue. A successful exploit of this vulnerability might lead to a denial of service...

CVE-2025-33237

NVIDIA HD Audio Driver for Windows contains a vulnerability where an attacker could exploit a NULL pointer dereference issue. A successful exploit of this vulnerability might lead to a denial of service...

CVE-2025-33237

CVE-2025-33237 refers to a vulnerability in the NVIDIA HD Audio Driver for Windows involving a NULL pointer dereference that can cause a denial of service. Connected sources confirm the affected component as the NVIDIA HD Audio software (Windows, R590 branch) and indicate the update to mitigate t...

openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

A flaw was found in OpenSSL. This vulnerability allows a remote attacker to trigger a Denial of Service DoS by providing a specially crafted, malformed PKCS12 file to an application that processes it. The flaw occurs due to a NULL pointer dereference in the PKCS12itemdecryptd2iex function when...

openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

A flaw was found in OpenSSL. This type confusion vulnerability allows a remote attacker to cause a Denial of Service DoS by tricking a user or application into processing a maliciously crafted PKCS12 Personal Information Exchange Syntax Standard file. The vulnerability leads to an invalid or NULL...

CVE-2026-24813

NULL Pointer Dereference vulnerability in abcz316 SKRoot-linuxKernelRoot testRoot/jni/utils modules. This vulnerability is associated with program files cJSON.Cpp. This issue affects SKRoot-linuxKernelRoot...

CVE-2026-24826

Out-of-bounds Write, Divide By Zero, NULL Pointer Dereference, Use of Uninitialized Resource, Out-of-bounds Read, Reachable Assertion vulnerability in cadaver turso3d.This issue affects...

php:8.2 security update

An update is available for module.php, module.php-pecl-apcu, php-pecl-rrd, php-pecl-zip, php, module.php-pecl-zip, module.php-pecl-rrd, php-pecl-apcu, php-pecl-xdebug3, module.php-pecl-xdebug3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a...