Linux Distros Unpatched Vulnerability : CVE-2018-1125

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This vulnerability is mitigated by FORTIFY, as it involves strncat to a...

Linux Distros Unpatched Vulnerability : CVE-2020-21533

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fig2dev 3.2.7b contains a stack buffer overflow in the readtextobject function in read.c. CVE-2020-21533 Note that Nessus relies on the presence of the package ...

Linux Distros Unpatched Vulnerability : CVE-2017-9227

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds read occurs ...

Linux Distros Unpatched Vulnerability : CVE-2021-20294

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffe...

Linux Distros Unpatched Vulnerability : CVE-2020-27749

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents...

Linux Distros Unpatched Vulnerability : CVE-2017-15046

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LAME 3.99.5, 3.99.4, 3.98.4, 3.98.2, 3.98 and 3.97 have a stack-based buffer overflow in unpackreadsamples in frontend/getaudio.c, a different vulnerability tha...

openSUSE Security Advisory (SUSE-SU-2025:0754-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15: libwireshark17 / libwiretap14 / libwsutil15 / wireshark / etc (SUSE-SU-2025:0754-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0754-1 advisory. Update to version 4.2.11: - CVE-2025-1492: uncontrolled recursion leading to a stack buffer overflow can...

CVE-2024-53427

A flaw was discovered in the jq package. In affected versions, specially-crafted input may trigger an unsafe memory operation leading to a stack buffer overflow. This can cause an application crash or other unintended behavior...

SUSE CVE-2022-49611

In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. While at it, add a bunch of comments to attempt to document the current state of tribal knowledge about RSB attacks and what exactly i...

OSV-2025-169 Stack-buffer-overflow in utf8_in2

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=399228595 Crash type: Stack-buffer-overflow READ 1 Crash state: utf8in2 MatchRule TranslateRules...

DrayTek Vigor 165 安全漏洞

The DrayTek Vigor 165 is a VDSL2 35b super vector modem/router from DrayTek China. A security vulnerability exists in the DrayTek Vigor 165 that originates from a stack buffer overflow in the URL parsing function, which allows remote attackers to execute arbitrary code...

CBL Mariner 2.0 Security Update: libxml2 (CVE-2025-24928)

The version of libxml2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-24928 advisory. - libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in...

CVE-2024-53427

decNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric, which has a resultant stack-based buffer overflow and out-of-bounds write, as demonstrated by use of --slurp with subtraction, such as a filter of .-. when the input has a certain form ...

AZL-68717 CVE-2022-49610 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Prevent RSB underflow before vmenter On VMX, there are some balanced returns between the time the guest's SPECCTRL value is written, and the vmenter. Balanced returns matched by a preceding call are usually ok, but it's...

UBUNTU-CVE-2022-49611

In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB. While at it, add a bunch of comments to attempt to document the current state of tribal knowledge about RSB attacks and what exactly i...

CVE-2024-53427

decNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric, which has a resultant stack-based buffer overflow and out-of-bounds write, as demonstrated by use of --slurp with subtraction, such as a filter of .-. when the input has a certain form ...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not populating the RSB during vmexit to prevent IBRS attacks...

The vulnerability of the delFacebookPic() function in the Tenda W18E router software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the delFacebookPic function in the Tenda W18E router software is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause a service failure...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from VMX before vmenter that could lead to an RSB underflow...