Lucene search
K

300 matches found

Github Security Blog
Github Security Blog
added 2026/04/03 9:47 p.m.8 views

OpenEXR: integer overflow to OOB write in uncompress_b44_impl()

Summary The B44/B44A decoder in OpenEXR reconstructs row pointers into a scratch buffer using int. When the channel width nx is large enough, the product y nx overflows int, causing the row pointer to wrap before the start of the scratch buffer. Subsequent memcpy calls then write decoded pixel...

8.4CVSS6AI score0.00244EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/04/03 10:14 a.m.6 views

CLSA-2026-1775211239 openexr: Fix of 4 CVEs

CVE-2025-12495 CVE-2025-12839 CVE-2025-12840: fix heap buffer overflows in the C core decoding pipeline missing nread validation in exrreadchunk, missing packed/unpacked size check for uncompressed tiles, missing storagemode guard in chunk offset computation - CVE-2025-64181: fix use of...

7.8CVSS5.9AI score0.00339EPSS
Exploits1References1
OSV
OSV
added 2026/03/26 10:12 a.m.6 views

CLSA-2026-1774519941 webkit2gtk3: Fix of CVE-2025-43441

CVE-2025-43441: fix macro scratch register spilling in OMG tail calls to prevent memory corruption via crafted web content...

8.8CVSS5.8AI score0.00909EPSS
Exploits0References1
Fedora
Fedora
added 2026/01/23 1:16 a.m.7 views

[SECURITY] Fedora 42 Update: vsftpd-3.0.5-14.fc42

vsftpd is a Very Secure FTP daemon. It was written completely from scratch...

6.5CVSS5.8AI score0.00737EPSS
Exploits0
Fedora
Fedora
added 2026/01/23 12:56 a.m.8 views

[SECURITY] Fedora 43 Update: vsftpd-3.0.5-14.fc43

vsftpd is a Very Secure FTP daemon. It was written completely from scratch...

6.5CVSS5.8AI score0.00737EPSS
Exploits0
EUVD
EUVD
added 2025/12/30 3:30 p.m.4 views

EUVD-2022-55867

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.3AI score
Exploits0References2
Cvelist
Cvelist
added 2025/12/30 12:10 p.m.23 views

CVE-2022-50831

...

Exploits0
CVE
CVE
added 2025/12/30 12:10 p.m.6 views

CVE-2022-50831

Affected software: Linux kernel mac80211 component. Issue: use-after-free in parsing multi-BSSID elements where element pointers could reference memory that was freed prematurely. Root cause: lifetime management of parsed elements leads to dangling pointers when returned structures are accessed. ...

8.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/12/24 12:0 a.m.2 views

AutoBaxBuilder: Bootstrapping Code Security Benchmarking

As LLMs see wide adoption in software engineering, the reliable assessment of the correctness and security of LLM-generated code is crucial. Notably, prior work has demonstrated that security is often overlooked, exposing that LLMs are prone to generating code with security vulnerabilities. These...

7.2AI score
Exploits0
Snyk
Snyk
added 2025/12/16 10:32 p.m.5 views

Malicious Package

Overview realtime-from-scratch is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-7238

Malware in sbrugna...

10CVSS8.7AI score0.01174EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-18845

Malware in sbrugna...

7.6CVSS5.6AI score0.01016EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-0570

Malware in sbrugna...

9.8CVSS9.4AI score0.0283EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-2868

Malware in sbrugna...

3.3CVSS7AI score0.00654EPSS
Exploits0References32
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-1459

Malware in sbrugna...

9.6CVSS9.2AI score0.06074EPSS
Exploits3References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0612

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00647EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-33174

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00311EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-50946

Malicious code in bioql PyPI...

5.4CVSS8.7AI score0.00198EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-34220

Malicious code in bioql PyPI...

6.4CVSS8.7AI score0.00288EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-29603

Malicious code in bioql PyPI...

6.3AI score0.00145EPSS
Exploits0References4
Rows per page
Query Builder