org.apache.cocoon:cocoon-apples-sample (=2.3.0), org.apache.cocoon:cocoon-dist-samples (=2.3.0) +8 more potentially affected by CVE-2025-24783 via org.apache.cocoon:cocoon-forms-impl (=2.3.0)

org.apache.cocoon:cocoon-forms-impl MAVEN version =2.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.cocoon:cocoon-forms-impl and may be impacted: - org.apache.cocoon:cocoon-apples-sample =2.3.0 - org.apache.cocoon:cocoon-dist-samples...

UBUNTU-CVE-2024-50664

gpac 2.4 contains a heap-buffer-overflow at isomedia/sampledescs.c:1799 in gfisomnewmphadescription in gpac/MP4Box...

[SECURITY] Fedora 41 Update: SDL2_sound-2.0.4-1.fc41

SDLsound is a library that handles the decoding of several popular sound file formats, such as .WAV and .OGG. It is meant to make the programmer's sound playback tasks simpler. The programmer gives SDLsound a filename, or feeds it data directly from one of many sources, and then reads the decoded...

GPAC 安全漏洞

GPAC is an open source multimedia framework from GPAC Open Source. A security vulnerability exists in GPAC version 2.4, which stems from a heap buffer overflow vulnerability on isomedia/sampledescs.c:1799 in gfisomnewmphadescription in MP4Box...

CVE-2024-50664

gpac 2.4 contains a heap-buffer-overflow at isomedia/sampledescs.c:1799 in gfisomnewmphadescription in gpac/MP4Box...

CVE-2024-50665

gpac 2.4 contains a SEGV at src/isomedia/drmsample.c:1562:96 in isomcencgetsaibysaizsaio in MP4Box...

MAL-2025-159 Malicious code in api-demo-sample-lib2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9bf23a2c3e41d22ea84314170a6f9e3359768c7cedbf3bb3235f4f1146b218fc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in api-demo-sample-lib2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9bf23a2c3e41d22ea84314170a6f9e3359768c7cedbf3bb3235f4f1146b218fc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SUSE CVE-2024-57912

In the Linux kernel, the following vulnerability has been resolved: iio: pressure: zpa2326: fix information leak in triggered buffer The 'sample' local struct is used to push data to user space from a triggered buffer, but it has a hole between the temperature and the timestamp u32 pressure, u16...

CVE-2024-57912 iio: pressure: zpa2326: fix information leak in triggered buffer

In the Linux kernel, the following vulnerability has been resolved: iio: pressure: zpa2326: fix information leak in triggered buffer The 'sample' local struct is used to push data to user space from a triggered buffer, but it has a hole between the temperature and the timestamp u32 pressure, u16...

DEBIAN-CVE-2024-57636

An issue in the itcsamplerowcheck component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

Virtuoso Open-Source Edition SQL注入漏洞

Virtuoso Open-Source Edition is a high-performance and scalable multi-model RDBMS, data integration middleware, linked data deployment, and HTTP application server platform from OpenLink Software open source. An SQL injection vulnerability exists in Virtuoso Open-Source Edition version v7.2.11,...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the possibility that Sample Data Buffers SDBs may be released prematurely during CPU hot-plug removal...

Malicious code in api-demo-sample-lib4 (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...

PT-2026-3080

Name of the Vulnerable Software and Affected Versions GPAC version 2.4.0 Description A stack overflow exists in the dump ttxt sample function. This flaw allows attackers to cause a Denial of Service DoS by sending a specially crafted packet. Recommendations Update to a newer version of GPAC that...

PT-2025-34646 · Libbiosig +1 · Libbiosig +1

Name of the Vulnerable Software and Affected Versions: libbiosig versions 3.9.0 libbiosig Master Branch 35a819fa Description: A stack-based buffer overflow vulnerability exists in the MFER parsing functionality. A specially crafted MFER file can lead to arbitrary code execution. The vulnerability...

CVE-2024-56706

In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Fix and protect memory allocation of SDBs with mutex Reservation of the PMU hardware is done at first event creation and is protected by a pair of mutexlock and mutexunlock. After reservation of the PMU hardware the...

SUSE CVE-2024-56706

In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Fix and protect memory allocation of SDBs with mutex Reservation of the PMU hardware is done at first event creation and is protected by a pair of mutexlock and mutexunlock. After reservation of the PMU hardware the...

CVE-2024-56706

In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Fix and protect memory allocation of SDBs with mutex Reservation of the PMU hardware is done at first event creation and is protected by a pair of mutexlock and mutexunlock. After reservation of the PMU hardware the...

UBUNTU-CVE-2024-56706

In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Fix and protect memory allocation of SDBs with mutex Reservation of the PMU hardware is done at first event creation and is protected by a pair of mutexlock and mutexunlock. After reservation of the PMU hardware the...