libsoup: Out of bounds reads in soup_headers_parse_request()

A flaw was found in libsoup, where the soupheadersparserequest function may be vulnerable to an out-of-bound read. This flaw allows a malicious user to use a specially crafted HTTP request to crash the HTTP server...

libsoup: Out of bounds reads in soup_headers_parse_request()

A flaw was found in libsoup, where the soupheadersparserequest function may be vulnerable to an out-of-bound read. This flaw allows a malicious user to use a specially crafted HTTP request to crash the HTTP server...

libsoup: Out of bounds reads in soup_headers_parse_request()

A flaw was found in libsoup, where the soupheadersparserequest function may be vulnerable to an out-of-bound read. This flaw allows a malicious user to use a specially crafted HTTP request to crash the HTTP server...

CGI: Denial of Service in CGI::Cookie.parse

A flaw was found in Ruby's CGI gem. Processing specially crafted large cookies with the CGI::Cookie.parse method can cause excessive resource consumption due to a missing limit on the length of the raw cookie value, resulting in a denial of service...

libsoup: Out of bounds reads in soup_headers_parse_request()

A flaw was found in libsoup, where the soupheadersparserequest function may be vulnerable to an out-of-bound read. This flaw allows a malicious user to use a specially crafted HTTP request to crash the HTTP server...

The vulnerability of the _parse/load_user-profile.php file in the Job Recruitment system allows a hacker to gain unauthorized access to protected information and execute arbitrary code.

The vulnerability of the parse/loaduser-profile.php file in the Job Recruitment system is related to the lack of measures to neutralize special elements. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information and execute arbitra...

The vulnerability of the HTTP Header Handler component in the http_request_parse function of the D-Link DAP-1562 wireless access point software allows a attacker to compromise the confidentiality, accessibility, and integrity of the protected information.

The vulnerability of the HTTP Header Handler component in the httprequestparse function of the D-Link DAP-1562 wireless access point’s microprogramming system is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

Important: docker

Issue Overview: The net/http package accepted data in the chunked transfer encoding containing an invalid chunk-size line terminated by a bare LF. When used in conjunction with a server or proxy which incorrectly interprets a bare LF in a chunk extension as part of the extension, this could permi...

Security update for ruby2.5

This update for ruby2.5 fixes the following issues: CVE-2025-27219: Fixed denial of service in CGI::Cookie.parse bsc1237804 CVE-2025-27220: Fixed ReDoS in CGI::UtilescapeElement bsc1237806 Other fixes: - Improved fix for CVE-2024-47220 bsc1230930, bsc1235773 Patch Instructions: To install this...

DEBIAN-CVE-2025-46420

A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with all zeroes...

AZL-61567 CVE-2025-46420 affecting package libsoup for versions less than 3.0.4-6

A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with all zeroes...

UBUNTU-CVE-2025-46420

A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with all zeroes...

SUSE CVE-2025-22117

In the Linux kernel, the following vulnerability has been resolved: ice: fix using untrusted value of pktlen in icevcfdirparseraw Fix using the untrusted value of proto-raw.pktlen in function icevcfdirparseraw by verifying if it does not exceed the VIRTCHNLMAXSIZERAWPACKET value...

libsoup 安全漏洞

libsoup is a GNOME HTTP client/server library from the GNOME Project. A security vulnerability exists in libsoup, which stems from a memory leak in the soupheaderparsequalitylist function when parsing an all-zero quality list...

Out of bounds read in parse_module function in bfd/vms-alpha.c

...

An issue was discovered in Binutils addr2line before 2.39.3, function parse_module contains multiple out of bound reads which may cause a denial of service or other unspecified impacts.

...

The vulnerability of the parse_paragraph function in the ps-pdf.cxx component of the HTMLDOC document conversion tool allows a attacker to cause a service failure.

The vulnerability of the parseparagraph function in the ps-pdf.cxx component of the HTMLDOC document conversion tool is related to writing beyond buffer boundaries. Exploiting this vulnerability allows an attacker to trigger a service failure remotely...

Vulnerability of the parse_monitor_flags() function (net/wireless/nl80211.c) in the Linux kernel, allowing a hacker to trigger a service failure

The vulnerability of the parsemonitorflags function net/wireless/nl80211.c in the Linux kernel is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

Libsoup: out of bounds reads in soup_headers_parse_request()

...

Off-by-one Error

Overview Affected versions of this package are vulnerable to Off-by-one Error in the ParseRTR function in rtr.go. An attacker can cause a crash by sending an RTR message of unexpected length. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to...