305 matches found
CVE-2025-67125
A signed integer overflow in docopt.cpp v0.6.2 LeafPattern::match in docoptprivate.h when merging occurrence counters e.g., default LONGMAX + first user "-v/--verbose" can cause counter wrap negative/unbounded semantics and lead to logic/policy bypass in applications that rely on occurrence-based...
EUVD-2022-55833
In the Linux kernel, the following vulnerability has been resolved: tcp: fix a signed-integer-overflow bug in tcpaddbacklog The type of skrcvbuf and sksndbuf in struct sock is int, and in tcpaddbacklog, the variable limit is caculated by adding skrcvbuf, sksndbuf and 64 1024, it may exceed the ma...
CVE-2022-50865
In the Linux kernel, the following vulnerability has been resolved: tcp: fix a signed-integer-overflow bug in tcpaddbacklog The type of skrcvbuf and sksndbuf in struct sock is int, and in tcpaddbacklog, the variable limit is caculated by adding skrcvbuf, sksndbuf and 64 1024, it may exceed the ma...
CVE-2022-50865 tcp: fix a signed-integer-overflow bug in tcp_add_backlog()
In the Linux kernel, the following vulnerability has been resolved: tcp: fix a signed-integer-overflow bug in tcpaddbacklog The type of skrcvbuf and sksndbuf in struct sock is int, and in tcpaddbacklog, the variable limit is caculated by adding skrcvbuf, sksndbuf and 64 1024, it may exceed the ma...
CVE-2022-50865
CVE-2022-50865 is a Linux kernel issue: tcp_add_backlog() could overflow an int when computing limit as the sum of sk_rcvbuf, sk_sndbuf, and 64KiB. The fix halves the sndbuf to reduce the limit budget (ACKs smaller than payload). Concrete references appear in multiple OS advisories (e.g., RHSA/EL...
CVE-2022-50865
In the Linux kernel, the following vulnerability has been resolved: tcp: fix a signed-integer-overflow bug in tcpaddbacklog The type of skrcvbuf and sksndbuf in struct sock is int, and in tcpaddbacklog, the variable limit is caculated by adding skrcvbuf, sksndbuf and 64 1024, it may exceed the ma...
JLSEC-2025-50 Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations...
Expat aka libexpat before 2.4.4 has a signed integer overflow in XMLGetBuffer, for configurations with a nonzero XMLCONTEXTBYTES...
EUVD-2017-16608
Malware in sbrugna...
EUVD-2019-8509
Malware in sbrugna...
EUVD-2018-6259
Malware in sbrugna...
RockyLinux 9 : iputils (RLSA-2025:9432)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:9432 advisory. iputils: Signed Integer Overflow in Timestamp Multiplication in iputils ping CVE-2025-47268 Tenable has extracted the preceding description block directly from th...
EUVD-2025-5212
Malicious code in bioql PyPI...
EUVD-2022-54508
Malicious code in bioql PyPI...
EUVD-2025-3078
Malicious code in bioql PyPI...
EUVD-2022-28778
Malicious code in bioql PyPI...
EUVD-2022-54507
Malicious code in bioql PyPI...
jq security update
An update is available for jq. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list jq is a lightweight and flexible command-line JSON processor. jq is like sed for...
RLSA-2025:12882 Moderate: jq security update
jq is a lightweight and flexible command-line JSON processor. jq is like sed for JSON data. You can use it to slice, filter, map, or transform structured data with the same ease that sed, awk, grep, or similar applications allow you to manipulate text. Security Fixes: jq: jq has signed integer...
Huawei EulerOS: Security Advisory for iputils (EulerOS-SA-2025-1908)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2025:20591-1 Security update for jq
This update for jq fixes the following issues: - CVE-2025-48060: Fixed stack-buffer-overflow in jqfuzzexecute jvstringvfmt bsc1244116 - CVE-2024-23337: Fixed signed integer overflow in jv.c:jvparraywrite bsc1243450 - CVE-2024-53427: Fixed stack-buffer-overflow in the decNumberCopy function in...