Ruby 竞争条件问题漏洞

Ruby is a cross-platform, object-oriented dynamic type programming language developed by Yukihiro Matsumoto. Prior to Ruby 4.0.5, there was a race condition vulnerability. This vulnerability stemmed from a race condition in the getaddrinfo handling process based on pthread, where reusing resource...

EUVD-2025-28252

Malicious code in bioql PyPI...

CVE-2025-48752

In the process-sync crate 0.2.2 for Rust, the drop function lacks a check for whether the pthreadmutex is unlocked...

Process Sync has a Potential Unsound Issue in SharedMutex

In the process-sync crate 0.2.2 for Rust, the drop function lacks a check for whether the pthreadmutex is unlocked...

CVE-2025-48752

In the process-sync crate 0.2.2 for Rust, the drop function lacks a check for whether the pthreadmutex is unlocked...

CVE-2025-48752

In the process-sync crate 0.2.2 for Rust, the drop function lacks a check for whether the pthreadmutex is unlocked...

PT-2025-22829 · Unknown · Process-Sync

Name of the Vulnerable Software and Affected Versions: process-sync crate version 0.2.2 Description: The issue is related to the drop function in the process-sync crate for Rust, which lacks a check to ensure the pthread mutex is unlocked. Recommendations: For process-sync crate version 0.2.2,...

glibc security update

2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni Oracle history: March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 36625686 Add MTE support on string functions Reviewed-by: Jose E. Marchesi March-17-2025 Cupertino Miranda - 2.28-251.0.2.14 - Forward port of...

glibc security update

2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni Oracle history: March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 36625686 Add MTE support on string functions Reviewed-by: Jose E. Marchesi March-17-2025 Cupertino Miranda - 2.28-251.0.2.14 - Forward port of...

Security update for ffmpeg-4

This update for ffmpeg-4 fixes the following issues: CVE-2022-48434: Fixed use after free in libavcodec/pthreadframe.c bsc1209934 CVE-2020-22021: Fixed Buffer Overflow vulnerability in filteredges function in libavfilter/vfyadif.c bsc1186586 Patch Instructions: To install this SUSE update use the...

OSV-2025-4 Heap-buffer-overflow in ___interceptor_pthread_create

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=386713390 Crash type: Heap-buffer-overflow READ 8 Crash state: interceptorpthreadcreate...

FreeBSD-SA-24:14.umtx

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-24:14.umtx Security Advisory The FreeBSD Project Topic: umtx Kernel panic or Use-After-Free Category: core Module: kern Announced: 2024-09-04 Credits: Synacktiv...

CVE-2024-30258

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed RTPS packet, the subscriber crashes when creating pthread. This can remotely crash any Fast-DD...

CVE-2024-30258

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed RTPS packet, the subscriber crashes when creating pthread. This can remotely crash any Fast-DD...

CVE-2024-30258

Affected product: Fast-DDS (eProsima Fast DDS), a C++ implementation of the DDS standard. The issue occurs when a publisher sends a malformed RTPS packet, causing the subscriber to crash during pthread creation. This can remotely crash any Fast-DDS process, potentially enabling a denial-of-servic...

CVE-2024-30258 FastDDS crash when publisher send malformed packet

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed RTPS packet, the subscriber crashes when creating pthread. This can remotely crash any Fast-DD...

PT-2024-23302 · Fastdds +1 · Fastdds +1

Name of the Vulnerable Software and Affected Versions: FastDDS versions prior to 2.14.1 FastDDS versions prior to 2.13.5 FastDDS versions prior to 2.10.4 FastDDS versions prior to 2.6.8 Description: FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object...

libcap: Memory Leak on pthread_create() Error

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory...

libcap: Memory Leak on pthread_create() Error

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory...

OESA-2023-1345 libcap security update

This is a library for getting and setting POSIX.1e formerly POSIX 6 draft 15 capabilities. Security Fixes: A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process...