211 matches found
CVE-2025-48172
CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chmlib.c chmdecompressblock integer overflow. There is a resultant heap-based buffer overflow in chmfetchbytes...
CVE-2025-48172
CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chmlib.c chmdecompressblock integer overflow. There is a resultant heap-based buffer overflow in chmfetchbytes...
AlmaLinux 9 : gstreamer1, gstreamer1-plugins-bad-free, gstreamer1-plugins-ugly-free, and gstreamer1-rtsp-server (ALSA-2025:7178)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7178 advisory. gstreamer: EXIF Metadata Parsing Integer Overflow CVE-2024-4453 gstreamer: AV1 Video Parsing Stack-based Buffer Overflow CVE-2024-0444 Tenable has extract...
SUSE-SU-2025:02167-1 Security update for glib2
This update for glib2 fixes the following issues: - CVE-2025-6052: Fixed integer overflow in gstringmaybeexpand leads to potential buffer overflow in GString bsc1244596. - CVE-2025-4373: Fixed buffer underflow through glib/gstring.c via function gstringinsertunichar bsc1242844...
EulerOS 2.0 SP13 : xorg-x11-server (EulerOS-SA-2025-1712)
According to the versions of the xorg-x11-server package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect may fail if it cannot allocate...
CVE-2025-6750 HDF5 H5Omtime.c H5O__mtime_new_encode heap-based overflow
A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. Affected by this issue is the function H5Omtimenewencode of the file src/H5Omtime.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the...
SQLite 3.44.0 < 3.49.1 Multiple Vulnerabilities
The version of SQLite installed on the remote host is 3.44.0 through 3.49.0 before 3.49.1. It is, therefore, affected by multiple vulnerabilities: - In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer...
PT-2025-26227
Name of the Vulnerable Software and Affected Versions HDF5 versions up to 1.14.6 Description A critical issue has been found, affecting the H5FS sect find node function of the file H5FSsection.c, leading to a heap-based buffer overflow. The attack can be launched on the local host. Recommendation...
CVE-2025-6141
A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocesstermcap of the file tinfo/parseentry.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. Upgrading to...
CVE-2025-48990
NeKernal is a free and open-source operating system stack. Version 0.0.2 has a 1-byte heap overflow in rtcopymemory, which unconditionally wrote a null terminator at dstlen. When len equals the size of the destination buffer 256 bytes, that extra '\0' write overruns the buffer by one byte. To avo...
CVE-2025-48990 NeKernel has Heap Overflow in `rt_copy_memory`
NeKernal is a free and open-source operating system stack. Version 0.0.2 has a 1-byte heap overflow in rtcopymemory, which unconditionally wrote a null terminator at dstlen. When len equals the size of the destination buffer 256 bytes, that extra '\0' write overruns the buffer by one byte. To avo...
CVE-2020-36846 IO::Compress::Brotli versions prior to 0.007 for Perl have an integer overflow in the bundled Brotli C library
A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of the brotli library prior to version 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a scrip...
CVE-2025-27151
CVE-2025-27151 affects Redis releases from 7.0.0 up to before 8.0.2. Root cause: a stack-based buffer overflow in redis-check-aof caused by copying a user-supplied filepath into a fixed-size stack buffer using memcpy with strlen(filepath). Potential for code execution as described in the sources....
CVE-2024-25003
KiTTY versions 0.76.1.13 and before is vulnerable to a stack-based buffer overflow via the hostname, occurs due to insufficient bounds checking and input sanitization. This allows an attacker to overwrite adjacent memory, which leads to arbitrary code execution...
CVE-2023-30371
In Tenda AC15 V15.03.05.19, the function "subED14" contains a stack-based buffer overflow vulnerability...
CVE-2022-48333
Widevine Trusted Application TA 5.0.0 through 5.1.1 has a drmverifykeys prefixlen+featurenamelen integer overflow and resultant buffer overflow...
CVE-2018-13030
An issue was discovered in jpeg-compressor 0.1. The buildhuffman function in stbimage.c allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact...
CVE-2019-14541
GnuCOBOL 2.2 has a stack-based buffer overflow in cbencodeprogramid in cobc/typeck.c via crafted COBOL source code...
CVE-2019-19795
samurai 0.7 has a heap-based buffer overflow in canonpath in util.c via a crafted build file...
CVE-2019-20162
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function gfisomboxparseex in isomedia/boxfuncs.c...