CVE-2026-49756

CVE-2026-49756 describes a CRLF injection in Req.Utils.encode_form_part/2 of the Elixir Req library. User-controlled name, filename, or content_type are interpolated into Content-Disposition and Content-Type without escaping, allowing CRLFs to terminate header lines and add smuggled parts. This e...

aws-c-event-stream 安全漏洞

aws-c-event-stream is a C language implementation library for the event stream protocol, open-sourced by Amazon Web Services - Labs. Versions of aws-c-event-stream prior to 0.6.0 contain security vulnerabilities. These vulnerabilities stem from out-of-bounds writing in the stream decoder componen...

Asylo Buffer Overflow Vulnerability

Asylo is Google's open source next-generation classified computing framework, designed to provide a Trusted Execution Environments Trusted Execution Environments, TEEs in the execution of the application's development framework and SDK to ensure the security of the application and information. A...

DEBIAN-CVE-2017-6317

Memory leak in the addshaderprogram function in vrendrenderer.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service host memory consumption via vectors involving the sprog variable...