6960 matches found
librtsp security vulnerabilities
Librtsp is a RTSP protocol library developed by CIJLIU as an individual project. Librtsp has a security vulnerability, which stems from a buffer overflow in the rtspparsemethod function, potentially allowing local attacks...
SUSE CVE-2026-22775
Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.1.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...
CVE-2026-22775
A flaw was found in devalue, a JavaScript library used for serializing values. A remote attacker could exploit this vulnerability by providing specially crafted input to the devalue.parse function. This improper input validation, specifically during the ArrayBuffer hydration process, can cause th...
CVE-2025-70298
GPAC v2.4.0 was discovered to contain an out-of-bounds read in the oggdmxparsetags function...
CVE-2025-70303
A heap overflow in the uncvparseconfig function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted MP4 file...
Linux Distros Unpatched Vulnerability : CVE-2025-70299
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap overflow in the aviparseinputfile function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted AVI file. CVE-2025-70299 Note...
MiracleLinux 4 : ruby-1.8.7.352-13.AXS4 (AXSA:2014-036:01)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-036:01 advisory. Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004142)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004142 advisory. An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aalabelparse fails in aaauditruleinit in security/apparmor/audit.c. Tenable...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003740)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003740 advisory. An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aalabelparse fails in aaauditruleinit in security/apparmor/audit.c. Tenable...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003913)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003913 advisory. A memory leak in the predicateparse function in kernel/trace/traceeventsfilter.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003775)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003775 advisory. An issue was discovered in dlparparseccproperty in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003581)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003581 advisory. A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiexuapparsetailies function in drivers/net/wireless/marvell/mwifiex/ie.c might lead to memo...
devalue vulnerable to denial of service due to memory/CPU exhaustion in devalue.parse
Summary Certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse input from untrusted sources. This affects applications using devalue.parse on externally-supplied data. The root cause is the ArrayBuffer...
GHSA-G2PG-6438-JWPF devalue vulnerable to denial of service due to memory/CPU exhaustion in devalue.parse
Summary Certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse input from untrusted sources. This affects applications using devalue.parse on externally-supplied data. The root cause is the ArrayBuffer...
CVE-2026-22774
A flaw was found in devalue, a JavaScript library used for serializing values. A remote attacker can exploit this vulnerability by providing specially crafted input to the devalue.parse function. This can cause the application to consume excessive CPU time and memory, leading to a denial of servi...
CVE-2026-22775
Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.1.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...
CVE-2026-22774
Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.3.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...
CVE-2025-70303
A heap overflow in the uncvparseconfig function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted MP4 file...
UBUNTU-CVE-2025-70303
A heap overflow in the uncvparseconfig function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted MP4 file...
CVE-2026-22775 devalue vulnerable to denial of service due to memory/CPU exhaustion in devalue.parse
Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.1.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...