CVE-2026-43903 OpenImageIO: SGI RLE decoder heap buffer overflow OIIO_DASSERT bounds checks are no-ops in release builds

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, sgiinput.cpp:265,274 use OIIODASSERT for bounds checking in the RLE decode loop. In release builds, OIIODASSERT compiles to voidsizeofx...

SUSE-SU-2025:4387-1 Security update for postgresql16

This update for postgresql16 fixes the following issues: Upgraded to 16.11: - CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS bsc1253332 - CVE-2025-12818: Fixed integer overflow in allocation-size calculations within libpq bsc1253333 Other fixes: - Use...

Samsung Mobile Processor Security Vulnerability

SAMSUNG Mobile Processor is a family of mobile processors from the South Korean company Samsung SAMSUNG. A security vulnerability exists in Samsung Mobile Processor that stems from a lack of proper memory release checking, which could lead to a post-release reuse vulnerability...

Valve: GetGlobalAchievementPercentagesForApp is missing the same release checks as GetSchemaForGame

GetGlobalAchievementPercentagesForApp API method can be used to reveal achievement names/percentages for games that have not been released yet. This is not a problem with GetSchemaForGame method, which leads me to believe the other method is missing all the relevant checks...