DEBIAN-CVE-2024-57256

An integer overflow in ext4fsreadsymlink in Das U-Boot before 2025.01-rc1 occurs for zalloc adding one to an le32 variable via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite...

[SECURITY] Fedora 39 Update: libuev-2.4.1-1.fc39

libuEv is a small event loop that wraps the Linux epoll family of APIs. It is similar to the more established libevent, libev and the venerable Xt3 event loop. The =EF=BF=BD=EF=BF=BD in the name refers to both its limited feature set and the size impact of the library...

GHSA-9CP3-FH5X-XFCJ Regular Expression Denial of Service in charset

Affected versions of charset are susceptible to a regular expression denial of service. The amplification on this vulnerability is relatively low - it takes around 2 seconds for the engine to execute on a malicious input which is 50,000 characters in length. If node was compiled using the...