CVE-2026-46384

An integer overflow flaw was found in Go Avro in decoding logic. Multiple decoder paths performs unsafe integer conversions and overflow-prone arithmetic operations on attacker-controlled values from Avro payloads. A remote attacker during Avro decoder operations could exploit this issue using...

RHEL 8 : freerdp (RHSA-2026:10734)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:10734 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to...

CVE-2022-42899

Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds read and stack overflow issues when opening crafted SKP files. Exploiting these issues could lead to information disclosure and code execution. The fixed versions are 10.17.01.58 for MicroStation and...

EUVD-2019-4975

Malware in sbrugna...

EUVD-2015-8832

Malware in sbrugna...

EUVD-2019-1908

Malware in sbrugna...

EUVD-2017-9293

Malware in sbrugna...

EUVD-2020-24559

Malware in sbrugna...

EUVD-2014-4634

Malware in sbrugna...

EUVD-2021-9807

Malicious code in bioql PyPI...

EUVD-2023-25535

Malicious code in bioql PyPI...

AIX : Multiple Vulnerabilities (IJ55268)

The version of AIX installed on the remote host is prior to APAR IJ55268. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ55268 advisory. - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory...

Moderate: glib2 security update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib2: Signal subscription...

Amazon Linux 2023 : xorg-x11-server-common, xorg-x11-server-devel, xorg-x11-server-source (ALAS2023-2025-1061)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1061 advisory. A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and...

[SECURITY] [DLA 4227-1] dcmtk security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4227-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès June 24, 2025 https://wiki.debian.org/LTS -...

ALSA-2025:9306 Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

TencentOS Server 4: libvpx (TSSA-2024:0525)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0525 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

TencentOS Server 3: expat (TSSA-2022:0021)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0021 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

SUSE-SU-2025:01835-1 Security update for transfig

This update for transfig fixes the following issues: Update to fig2dev version 3.2.9a - CVE-2025-31162: Fixed a floating point exception in fig2dev in getslope function bsc1240380. - CVE-2025-31163: Fixed a segmentation fault in fig2dev in putpatternarc function bsc1240381. - CVE-2025-31164: Fixe...

CVE-2021-29534

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a denial of service via a CHECK-fail in tf.rawops.SparseConcat. This is because the...