CVE-2026-3257

UnQLite versions through 0.06 for Perl uses a potentially insecure version of the UnQLite library. UnQLite for Perl embeds the UnQLite library. Version 0.06 and earlier of the Perl module uses a version of the library from 2014 that may be vulnerable to a heap-based overflow...

EUVD-2026-9519

UnQLite versions through 0.06 for Perl uses a potentially insecure version of the UnQLite library. UnQLite for Perl embeds the UnQLite library. Version 0.06 and earlier of the Perl module uses a version of the library from 2014 that may be vulnerable to a heap-based overflow...

GHSA-PGCR-7WM4-MCV6 Sensitive Data Exposure in pem

Versions of pem before 1.13.2 expose sensitive data when the readPkcs12 is used. The readPkcs12 function reads the certificate and key data from a pkcs12 file using the encryption password. As part of this process it creates a globally readable file with a filename of 20 random 0-f characters in...

cloudwu PBC Null Pointer Dereference Vulnerability

cloudwu PBC is a C-based Google protocol buffer library . A null pointer dereference vulnerability exists in the 'pbcwmessagestring' function in the wmessage.c file of the libpbc.a static link library in cloudwu PBC 2017-03-02 and earlier versions, which can be exploited by an attacker to cause a...

(tiff2pdf): Heap-based buffer overflow due to improper initialization of T2P context struct pointer

The t2preadtiffinit function in tiff2pdf tools/tiff2pdf.c in LibTIFF 4.0.2 and earlier does not properly initialize the T2P context struct pointer in certain error conditions, which allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a...