18887 matches found
CVE-2025-58298
Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...
SUSE SLES15 Security Update : squid (SUSE-SU-2025:03521-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03521-1 advisory. - CVE-2025-59362: fixed buffer overflow bsc1250627 - CVE-2024-37894: fixed denial of service in ESI processing bsc1227086 -...
PT-2025-41659
Name of the Vulnerable Software and Affected Versions versions prior to 2025-58298 Description A data processing error exists within a package management module. Exploitation of this issue can impact system availability. The issue can be exploited locally without requiring user interaction or...
Allocation of Resources Without Limits or Throttling
Overview authlib is a library in building OAuth and OpenID Connect servers. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the extractsegment and extractheader processes. An unauthenticated attacker can exhaust system resources and...
CVE-2025-27040
Information disclosure may occur while processing the hypervisor log...
Exploit for CRLF Injection in Oracle Concurrent_Processing
Oracle E-Business Suite — CVE-2025-61882 This repository contai...
CVE-2025-11617
A missing validation check in FreeRTOS-Plus-TCP's IPv6 packet processing code can lead to an out-of-bounds read when receiving a IPv6 packet with incorrect payload lengths in the packet header. This issue only affects applications using IPv6. We recommend users upgrade to the latest version and...
CVE-2025-11618
A missing validation check in FreeRTOS-Plus-TCP's UDP/IPv6 packet processing code can lead to an invalid pointer dereference when receiving a UDP/IPv6 packet with an incorrect IP version field in the packet header. This issue only affects applications using IPv6. We recommend upgrading to the...
Security update for squid
This update for squid fixes the following issues: CVE-2025-59362: fixed buffer overflow bsc1250627 CVE-2024-37894: fixed denial of service in ESI processing bsc1227086 CVE-2024-33427: fixed possible buffer overread leading to denial of service bsc1225417 Patch Instructions: To install this SUSE...
CVE-2025-21052
Out-of-bounds write under specific condition in the pre-processing of JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to cause memory corruption...
CVE-2025-21052
Out-of-bounds write under specific condition in the pre-processing of JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to cause memory corruption...
EUVD-2025-33681
Out-of-bounds write in the pre-processing of JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to write out-of-bounds memory...
CVE-2025-21051
Out-of-bounds write in the pre-processing of JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to write out-of-bounds memory...
CVE-2025-21051
Vulnerability: CVE-2025-21051. Affected component: libpadm.so (JPEG decoding pre-processing) in Samsung mobile software prior to SMR Oct-2025 Release 1. Root cause / description: Out-of-bounds write during JPEG decoding pre-processing, enabling a local attacker to write outside allocated memory. ...
RLSA-2025:17162 Moderate: perl-JSON-XS security update
This module converts Perl data structures to JSON and vice versa. Its primary goal is to be correct and its secondary goal is to be fast. To reach the latter goal it was written in C. Security Fixes: JSON-XS: integer buffer overflow causing a segfault when parsing crafted JSON CVE-2025-40928 For...
perl-JSON-XS security update
An update is available for perl-JSON-XS. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list This module converts Perl data structures to JSON and vice versa. Its...
Denial Of Service (DoS)
xgrammar is vulnerable to Denial Of Service DoS. The vulnerability is due to a regression in the Earley parser, which causes excessive processing time for valid grammar inputs, allowing an attacker to exploit this inefficiency to trigger denial of service through resource exhaustion...
CVE-2025-27041
Transient DOS while processing video packets received from video firmware...
CVE-2025-27045
Information disclosure while processing batch command execution in Video driver...
CVE-2025-11515
A security flaw has been discovered in code-projects Online Complaint Site 1.0. This issue affects some unknown processing of the file /cms/users/register-complaint.php. Performing manipulation of the argument cid results in sql injection. It is possible to initiate the attack remotely. The explo...