7 matches found
[SECURITY] [DSA 6209-1] xdg-dbus-proxy security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6209-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 13, 2026 https://www.debian.org/security/faq -...
CVE-2026-24110
An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Attackers may send overly long addDhcpRules data. When these rules enter the addDhcpRule function and are processed by ret = sscanfpRule, " %d\t%^\t\t%^\n\r\t", &dhcpsIndex, dhcpsIP, dhcpsMac;, the lack of size validation for the rules could...
CVE-2026-24110
CVE-2026-24110 affects Tenda W20E V4.0br_V15.11.0.6. The issue arises in the addDhcpRule path where overly long addDhcpRules data is processed by sscanf without proper size validation, potentially causing buffer overflows in dhcpsIndex, dhcpsIP, and dhcpsMac. Public descriptions consistently cite...
CVE-2026-24110
An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Attackers may send overly long addDhcpRules data. When these rules enter the addDhcpRule function and are processed by ret = sscanfpRule, " %d\t%^\t\t%^\n\r\t", &dhcpsIndex, dhcpsIP, dhcpsMac;, the lack of size validation for the rules could...
EUVD-2004-2330
Malware in sbrugna...
GHSA-7WFC-X4F7-GG2X Code injection in Apache Dubbo
Apache Dubbo prior to 2.7.9 support Tag routing which will enable a customer to route the request to the right server. These rules are used by the customers when making a request in order to find the right endpoint. When parsing these YAML rules, Dubbo customers may enable calling arbitrary...
DEBIAN-CVE-2018-12034
In YARA 3.7.1 and prior, parsing a specially crafted compiled rule file can cause an out of bounds read vulnerability in yrexecutecode in libyara/exec.c...