PT-2025-18521 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel. The issue is related to the use of a global register for current stack pointer on the s390 architecture. This uncovered an old bu...

Updated gstreamer1.0 packages fix security vulnerabilities

GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files SA-2021-0002. GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files SA-2021-0003. GStreamer before 1.18.4 might do an...

Security update for lame (important)

This update for lame fixes the following issues: Lame was updated to version 3.100: Improved detection of MPEG audio data in RIFF WAVE files. sf3545112 Invalid sampling detection New switch --gain decibel, range -20.0 to +12.0, a more convenient way to apply Gain adjustment in decibels, than the...

What is a "good" memory corruption vulnerability?

Posted by Chris Evans, register whisperer. Part 1 of 4. There are a lot of memory corruption vulnerabilities in software, but not all are created equal. To a certain degree, the “usefulness” of a given memory corruption vulnerability is determined by how reliably it might be exploited. In some...

GLSA-200703-21 : PHP: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200703-21 PHP: Multiple vulnerabilities Several vulnerabilities were found in PHP by the Hardened-PHP Project and other researchers. These vulnerabilities include a heap-based buffer overflow in htmlentities and htmlspecialchars i...