CVE-2026-1109 cijliu librtsp rtsp_parse_request buffer overflow

A vulnerability was detected in cijliu librtsp up to 2ec1a81ad65280568a0c7c16420d7c10fde13b04. The impacted element is the function rtspparserequest. The manipulation results in buffer overflow. Attacking locally is a requirement. This product takes the approach of rolling releases to provide...

CVE-2026-1109 cijliu librtsp rtsp_parse_request buffer overflow

A vulnerability was detected in cijliu librtsp up to 2ec1a81ad65280568a0c7c16420d7c10fde13b04. The impacted element is the function rtspparserequest. The manipulation results in buffer overflow. Attacking locally is a requirement. This product takes the approach of rolling releases to provide...

CVE-2026-1109

The CVE-2026-1109 entry concerns the cijliu librtsp project, affecting the rtsp_parse_request function in the code path ending at commit 2ec1a81ad65280568a0c7c16420d7c10fde13b04. The vulnerability is described as a buffer overflow that can be triggered by a local attacker; exploitation details or...

CVE-2026-1109

A vulnerability was detected in cijliu librtsp up to 2ec1a81ad65280568a0c7c16420d7c10fde13b04. The impacted element is the function rtspparserequest. The manipulation results in buffer overflow. Attacking locally is a requirement. This product takes the approach of rolling releases to provide...

librtsp security vulnerabilities

Librtsp is a RTSP protocol library developed by CIJLiu as an individual project. Librtsp has a security vulnerability, which stems from a buffer overflow in the rtspparserequest function, potentially allowing local attacks...

PT-2026-3377

A vulnerability was detected in cijliu librtsp up to 2ec1a81ad65280568a0c7c16420d7c10fde13b04. The impacted element is the function rtsp parse request. The manipulation results in buffer overflow. Attacking locally is a requirement. This product takes the approach of rolling releases to provide...

librtsp security vulnerabilities

Librtsp is a RTSP protocol library developed by CIJLIU as an individual project. Librtsp has a security vulnerability, which stems from a buffer overflow in the rtspparsemethod function, potentially allowing local attacks...

SUSE CVE-2026-22775

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.1.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...

CVE-2026-22775

A flaw was found in devalue, a JavaScript library used for serializing values. A remote attacker could exploit this vulnerability by providing specially crafted input to the devalue.parse function. This improper input validation, specifically during the ArrayBuffer hydration process, can cause th...

CVE-2025-70298

GPAC v2.4.0 was discovered to contain an out-of-bounds read in the oggdmxparsetags function...

CVE-2025-70303

A heap overflow in the uncvparseconfig function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted MP4 file...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004142)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004142 advisory. An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aalabelparse fails in aaauditruleinit in security/apparmor/audit.c. Tenable...

Linux Distros Unpatched Vulnerability : CVE-2025-70299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap overflow in the aviparseinputfile function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted AVI file. CVE-2025-70299 Note...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003775)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003775 advisory. An issue was discovered in dlparparseccproperty in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of...

MiracleLinux 4 : ruby-1.8.7.352-13.AXS4 (AXSA:2014-036:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-036:01 advisory. Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003581)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003581 advisory. A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiexuapparsetailies function in drivers/net/wireless/marvell/mwifiex/ie.c might lead to memo...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003740)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003740 advisory. An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aalabelparse fails in aaauditruleinit in security/apparmor/audit.c. Tenable...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003913)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003913 advisory. A memory leak in the predicateparse function in kernel/trace/traceeventsfilter.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service...

devalue vulnerable to denial of service due to memory/CPU exhaustion in devalue.parse

Summary Certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse input from untrusted sources. This affects applications using devalue.parse on externally-supplied data. The root cause is the ArrayBuffer...

GHSA-G2PG-6438-JWPF devalue vulnerable to denial of service due to memory/CPU exhaustion in devalue.parse

Summary Certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse input from untrusted sources. This affects applications using devalue.parse on externally-supplied data. The root cause is the ArrayBuffer...