Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : Redis vulnerabilities (USN-7321-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7321-1 advisory. It was discovered that Redis incorrectly handled certain memory operations during...

CVE-2024-35106

NEXTU FLETA AX1500 WIFI6 v1.0.3 was discovered to contain a buffer overflow at /boafrm/formIpQoS. This vulnerability allows attackers to cause a Denial of Service DoS or potentially arbitrary code execution via a crafted POST request...

CVE-2019-5151

An exploitable SQL injection vulnerability exist in YouPHPTube 7.7. A specially crafted unauthenticated HTTP request can cause a SQL injection, possibly leading to denial of service, exfiltration of the database and local file inclusion, which could potentially further lead to code execution. An...

CVE-2024-40674

In validateSsid of WifiConfigurationUtil.java, there is a possible way to overflow a system configuration file due to a logic error in the code. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-48856

Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the process using the image codec...

Advisory ROSA-SA-2025-2552

Software: perl 5.16.3 OS: rosa-server79 packageevrstring: perl-5.16.3-299.0.2.res7 CVE-ID: CVE-2015-8853 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in Perl allows an attacker to cause a denial of service via crafted utf-8 data. CVE-STATUS: The vulnerability has been resolved. CVE-RE...

PT-2025-16185

Name of the Vulnerable Software and Affected Versions Perl versions 5.33.1 through 5.41.10 Perl versions 5.34, 5.36, 5.38, and 5.40 Description A heap buffer overflow vulnerability was discovered in Perl. When there are non-ASCII bytes in the left-hand-side of the tr operator, S do trans invmap c...

[SECURITY] [DLA 3893-1] expat security update

Debian LTS Advisory DLA-3893-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin September 19, 2024 https://wiki.debian.org/LTS Package : expat Version : 2.2.10-2+deb11u6 CVE ID : CVE-2023-52425 CVE-2024-45490 CVE-2024-45491 CVE-2024-45492 Debian Bug : 1063238 108014...

[SECURITY] [DSA 5712-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5712-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 15, 2024 https://www.debian.org/security/faq -...

CVE-2023-49221

Precor touchscreen console P62, P80, and P82 could allow a remote attacker within the local network to bypass security restrictions, and access the service menu, because there is a hard-coded service code...

CVE-2023-49221

Precor touchscreen console P62, P80, and P82 could allow a remote attacker within the local network to bypass security restrictions, and access the service menu, because there is a hard-coded service code...

CVE-2023-49221

Precor touchscreen console P62, P80, and P82 could allow a remote attacker within the local network to bypass security restrictions, and access the service menu, because there is a hard-coded service code...

CVE-2023-49221

CVE-2023-49221 affects Precor touchscreen consoles P62, P80, and P82. The root cause is a hard-coded service code that enables a remote attacker on the local network to bypass security restrictions and access the service menu. CVSSv3.1 base score is 7.8 (HIGH) with LOCAL attack vector, LOW access...

CVE-2024-29163

HDF5 through 1.14.3 contains a heap buffer overflow in H5Tbitfind, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

CVE-2024-29162

HDF5 through 1.13.3 and/or 1.14.2 contains a stack buffer overflow in H5HGread, resulting in denial of service or potential code execution...

CVE-2024-29161

HDF5 through 1.14.3 contains a heap buffer overflow in H5Aattrreleasetable, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

CVE-2024-29160

HDF5 through 1.14.3 contains a heap buffer overflow in H5HGcacheheapdeserialize, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

CVE-2024-29158

HDF5 through 1.14.3 contains a stack buffer overflow in H5FLarrmalloc, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

FreeImage FreeImageIO.cpp::_MemoryReadProc function integer overflow vulnerability

FreeImage is a cross-platform open source library for supporting popular graphic image formats. An integer overflow vulnerability exists in FreeImage version 3.18.0, which stems from the failure of the component FreeImageIO.cpp::MemoryReadProc to properly handle operations related to integers. An...

CVE-2023-41727

An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...