9172 matches found
CVE-2026-40336 libgphoto2 has memory leak in ptp_unpack_Sony_DPD() secondary enumeration list in ptp-pack.c
libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have a memory leak in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c lines 884–885. When processing a secondary enumeration list introduced in 2024+ Sony cameras, the function overwrites dpd-FORM.Enum.SupportedVal...
CVE-2026-40336 libgphoto2 has memory leak in ptp_unpack_Sony_DPD() secondary enumeration list in ptp-pack.c
libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have a memory leak in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c lines 884–885. When processing a secondary enumeration list introduced in 2024+ Sony cameras, the function overwrites dpd-FORM.Enum.SupportedVal...
CVE-2026-40335
libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in ptpunpackDPV in camlibs/ptp2/ptp-pack.c lines 622–629. The UINT128 and INT128 cases advance offset += 16 without verifying that 16 bytes remain in the buffer. The entry check at li...
CVE-2026-40333
libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, two functions in camlibs/ptp2/ptp-pack.c accept a data pointer but no length parameter, performing unbounded reads. Their callers in ptpunpackEOSevents have xsize available but never pass it, leaving both...
CVE-2026-40333 libgphoto2 has OOB read in ptp_unpack_EOS_ImageFormat() and ptp_unpack_EOS_CustomFuncEx() due to missing length parameter in ptp-pack.c
libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, two functions in camlibs/ptp2/ptp-pack.c accept a data pointer but no length parameter, performing unbounded reads. Their callers in ptpunpackEOSevents have xsize available but never pass it, leaving both...
CVE-2026-40333 libgphoto2 has OOB read in ptp_unpack_EOS_ImageFormat() and ptp_unpack_EOS_CustomFuncEx() due to missing length parameter in ptp-pack.c
libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, two functions in camlibs/ptp2/ptp-pack.c accept a data pointer but no length parameter, performing unbounded reads. Their callers in ptpunpackEOSevents have xsize available but never pass it, leaving both...
CVE-2026-40333
libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, two functions in camlibs/ptp2/ptp-pack.c accept a data pointer but no length parameter, performing unbounded reads. Their callers in ptpunpackEOSevents have xsize available but never pass it, leaving both...
EUVD-2026-23581
libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, two functions in camlibs/ptp2/ptp-pack.c accept a data pointer but no length parameter, performing unbounded reads. Their callers in ptpunpackEOSevents have xsize available but never pass it, leaving both...
GHSA-XGP8-3HG3-C2MH vulnerabilities
Vulnerabilities for packages: buck2, pixi, rustup, py3-xet-core, sqlx, tealdeer, xh, linkerd2-proxy, wasmtime, lychee, ztunnel, sccache, atuin, zola, parseable, samply, uv, linkerd2, zizmor, shadowsocks-rust, rye, wasm-pack, berg, zellij, ntpd-rs, cargo-audit, linkerd-network-validator,...
GHSA-965H-392X-2MH5 vulnerabilities
Vulnerabilities for packages: buck2, pixi, rustup, py3-xet-core, sqlx, tealdeer, xh, linkerd2-proxy, wasmtime, lychee, ztunnel, sccache, atuin, zola, parseable, samply, uv, linkerd2, zizmor, shadowsocks-rust, rye, wasm-pack, berg, zellij, ntpd-rs, cargo-audit, linkerd-network-validator,...
GHSA-XGP8-3HG3-C2MH vulnerabilities
Vulnerabilities for packages: parseable, tealdeer, wasmtime, qdrant, zellij, wasm-pack, asciinema, linkerd-network-validator, cargo-audit, uv, mise, lychee, sentry-cli, ntpd-rs, xh, linkerd2-proxy, buck2, sccache, garage, rustup, sqlx, pixi, zizmor, samply, shadowsocks-rust, fnm, zola, lakekeeper...
GHSA-965H-392X-2MH5 vulnerabilities
Vulnerabilities for packages: parseable, tealdeer, wasmtime, qdrant, zellij, wasm-pack, asciinema, linkerd-network-validator, cargo-audit, uv, mise, lychee, sentry-cli, ntpd-rs, xh, linkerd2-proxy, buck2, sccache, garage, rustup, sqlx, pixi, zizmor, samply, shadowsocks-rust, fnm, zola, lakekeeper...
PT-2026-33537
Name of the Vulnerable Software and Affected Versions libgphoto2 versions prior to 2.5.34 Description An out-of-bounds read exists in the ptp unpack Sony DPD function within camlibs/ptp2/ptp-pack.c. The issue occurs because the function reads the FormFlag byte using dtoh8odata, poffset without...
SUSE-SU-2026:1411-1 Security update for terraform-provider-local, terraform-provider-random, terraform-provider-tls
This update for terraform-provider-local, terraform-provider-random, terraform-provider-tls fixes the following issue: - CVE-2026-25934: github.com/go-git/go-git/v5: improper verification of data integrity values for .pack and .idx files that can lead to the consumption of corrupted files...
Microsoft HPC Pack < 6.3.8355 Local Privilege Escalation (CVE-2026-32184)
The version of Microsoft HPC Pack installed on the remote host is prior to 6.3.8355. It is, therefore, affected by a vulnerability: - Deserialization of untrusted data in Microsoft High Performance Compute Pack HPC allows an authorized attacker to elevate privileges locally. CVE-2026-32184 Note...
Malicious code in dotenv-pack (npm)
dotenv-pack is a malicious npm package that when imported downloads a C2 dropper from https://api.npoint.io/5b357f718ab4ee355003 and executes it similar to malware in to chai-await-test. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...
MAL-2026-2900 Malicious code in dotenv-pack (npm)
dotenv-pack is a malicious npm package that when imported downloads a C2 dropper from https://api.npoint.io/5b357f718ab4ee355003 and executes it similar to malware in to chai-await-test. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...
EUVD-2026-22899
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in bdthemes Element Pack Elementor Addons bdthemes-element-pack-lite allows Blind SQL Injection.This issue affects Element Pack Elementor Addons: from n/a through = 8.4.2...
CVE-2026-40745
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in bdthemes Element Pack Elementor Addons bdthemes-element-pack-lite allows Blind SQL Injection.This issue affects Element Pack Elementor Addons: from n/a through = 8.4.2...
CVE-2026-40745 WordPress Element Pack Elementor Addons plugin <= 8.4.2 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in bdthemes Element Pack Elementor Addons bdthemes-element-pack-lite allows Blind SQL Injection.This issue affects Element Pack Elementor Addons: from n/a through = 8.4.2...