libvpx: Double-free in libvpx encoder

A flaw was found in libvpx. A double-free issue can occur in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This can cause memory corruption and an exploitable crash...

libvpx: Double-free in libvpx encoder

A flaw was found in libvpx. A double-free issue can occur in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This can cause memory corruption and an exploitable crash...

libvpx: Double-free in libvpx encoder

A flaw was found in libvpx. A double-free issue can occur in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This can cause memory corruption and an exploitable crash...

libvpx: Double-free in libvpx encoder

A flaw was found in libvpx. A double-free issue can occur in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This can cause memory corruption and an exploitable crash...

SUSE CVE-2025-5262

A double-free could have occurred in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This could have caused memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 139 and Thunderbird 128.11...

CVE-2025-5262

CVE-2025-5262: A double-free in vpx_codec_enc_init_multi after a failed allocation during WebRTC encoder initialization can cause memory corruption and a potentially exploitable crash. Affected: Thunderbird < 139 and Thunderbird

CVE-2024-44731

Mirotalk before commit 9de226 was discovered to contain a DOM-based cross-site scripting XSS vulnerability which allows attackers to execute arbitrary code via sending crafted payloads in messages to other users over RTC connections...

CVE-2023-0871

XXE injection in /rtc/post/ endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to XML external entity XXE injection, which can be used for instance to force Horizon to make arbitrary HTTP requests to internal and external services. The solution...

CVE-2015-7856

OpenNMS has a default password of rtc for the rtc account, which makes it easier for remote attackers to obtain access by leveraging knowledge of the credentials...

USN-7516-3 linux-azure, linux-kvm vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - Block layer subsystem; - Drivers core; - Network block device driver;...

CLSA-2025-1747725447 kernel: Fix of 35 CVEs

ext4: fix OOB read when checking dotdot dir CVE-2025-37785 - wifi: iwlwifi: limit printed string from FW file CVE-2025-21905 - drm/amdgpu: Fix potential out-of-bounds access in 'amdgpudiscoveryregbaseinit' CVE-2024-27042 - dm-crypt: don't modify the data when using authenticated encryption...

USN-7510-1 linux, linux-gkeop, linux-ibm, linux-ibm-5.15, linux-intel-iotg, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

mesido (>=0.0.2.dev0 <=0.1.8.4), rtc-tools-channel-flow (>=1.0.0 <=1.1.1rc1) +2 more potentially affected by unknown CVE via rtc-tools (>=2.2.5 <=2.6.0a3)

rtc-tools PYPI version =2.2.5, =0.0.2.dev0, =1.0.0, =0.2.1, =2.0.0a9, =2.0.0a14 Source cves: unknown CVE Source advisory: SNYK:PYTHON-RTCTOOLS-12150661...

XML External Entity (XXE) Injection

Overview rtc-tools is a Toolbox for control and optimization of water systems. Affected versions of this package are vulnerable to XML External Entity XXE Injection due to unsafe parsing of pathxml. An attacker could potentially exploit this by providing malicious XML input, leading to unauthoris...

mesido (>=0.0.2.dev0 <=0.1.8.4), rtc-tools-channel-flow (>=1.0.0 <=1.1.1rc1) +2 more potentially affected by unknown CVE via rtc-tools (>=2.2.5 <=2.6.0a3)

rtc-tools PYPI version =2.2.5, =0.0.2.dev0, =1.0.0, =0.2.1, =2.0.0a9, =2.0.0a14 Source cves: unknown CVE Source advisory: SNYK:PYTHON-RTCTOOLS-12150654...

Deserialization of Untrusted Data

Overview rtc-tools is a Toolbox for control and optimization of water systems. Affected versions of this package are vulnerable to Deserialization of Untrusted Data rough cashing in pickle module in csvlookuptablemixin.py. An attacker could potentially execute arbitrary code by exploiting the...

The vulnerability of the rtc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the rtc component in the Linux operating system’s kernel is related to improper blocking of resources in the rtctimerdowork function. Exploiting this vulnerability can allow an attacker to cause a service failure...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-56739)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56739 advisory. - In the Linux kernel, the following vulnerability has been resolved: rtc: check if rtcreadtime was successful...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56739)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56739 advisory. - In the Linux kernel, the following vulnerability has been resolved: rtc: check if rtcreadtime was successful...

SUSE CVE-2024-58069

In the Linux kernel, the following vulnerability has been resolved: rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read The nvmem interface supports variable buffer sizes, while the regmap interface operates with fixed-size storage. If an nvmem client uses a buffer size less than 4 byte...