CVE-2026-1425 pymumu SmartDNS SVBC Record dns.c _dns_decode_SVCB_HTTPS stack-based overflow

A security flaw has been discovered in pymumu SmartDNS up to 47.1. This vulnerability affects the function dnsdecoderrhead/dnsdecodeSVCBHTTPS of the file src/dns.c of the component SVBC Record Parser. The manipulation results in stack-based buffer overflow. It is possible to launch the attack...

EUVD-2026-4706

A security flaw has been discovered in pymumu SmartDNS up to 47.1. This vulnerability affects the function dnsdecoderrhead/dnsdecodeSVCBHTTPS of the file src/dns.c of the component SVBC Record Parser. The manipulation results in stack-based buffer overflow. It is possible to launch the attack...

SmartDNS security vulnerability

SmartDNS is a local-running DNS server developed by Nick Peng. Versions of SmartDNS prior to 47.1 contained a security vulnerability, which was caused by a stack buffer overflow in the SVBC record resolver...

CVE-2025-50537

Stack overflow vulnerability in eslint before 9.26.0 when serializing objects with circular references in eslint/lib/shared/serialization.js. The exploit is triggered via the RuleTester.run method, which validates test cases and checks for duplicates. During validation, the internal function...

ESLint security vulnerabilities

ESLint is an open-source tool developed by ESLint that identifies and fixes issues in JavaScript code. Versions of ESLint prior to 9.26.0 contained a security vulnerability. This vulnerability stemmed from infinite recursion when serializing objects with circular references, which could lead to a...

EUVD-2025-206359

Stack overflow vulnerability in eslint before 9.26.0 when serializing objects with circular references in eslint/lib/shared/serialization.js. The exploit is triggered via the RuleTester.run method, which validates test cases and checks for duplicates. During validation, the internal function...

CVE-2025-50537

Stack overflow vulnerability in eslint before 9.26.0 when serializing objects with circular references in eslint/lib/shared/serialization.js. The exploit is triggered via the RuleTester.run method, which validates test cases and checks for duplicates. During validation, the internal function...

CVE-2025-50537

Stack overflow vulnerability in eslint before 9.26.0 when serializing objects with circular references in eslint/lib/shared/serialization.js. The exploit is triggered via the RuleTester.run method, which validates test cases and checks for duplicates. During validation, the internal function...

Linux Distros Unpatched Vulnerability : CVE-2026-1425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security flaw has been discovered in pymumu SmartDNS up to 47.1. This vulnerability affects the function dnsdecoderrhead/dnsdecodeSVCBHTTPS of the file...

CVE-2025-50537

CVE-2025-50537 : The vulnerability affects eslint before 9.26.0, where serializing objects with circular references in eslint/lib/shared/serialization.js triggers infinite recursion in isSerializable() during RuleTester.run() validation, causing a stack overflow. Multiple sources (NVD, OSV, and C...

CVE-2025-50537

Removed by vendor...

buffer-overflow

Buffer Overflow Overview This repository contains educatio...

Avahi security vulnerability

Avahi is a set of open-source local service discovery tools for Linux. Versions of Avahi 0.9rc2 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the sending of mDNS responses that included recursive CNAME records, which could lead to segmentation violations and...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libtasn1 (SUSE-SU-2026:0224-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0224-1 advisory. - CVE-2025-13151: stack-based buffer overflow in asn1expendoctetstring bsc1256341. Tenable has extracted...

CVE-2026-1329

A flaw has been found in Tenda AX1803 1.0.0.1. The affected element is the function fromGetWifiGuestBasic of the file /goform/WifiGuestSet. Executing a manipulation of the argument guestWrlPwd/guestEn/guestSsid/hideSsid/guestSecurity can lead to stack-based buffer overflow. The attack may be...

OESA-2026-1232 libtasn1 security update

Libtasn1 is the ASN.1 library used by GnuTLS, p11-kit and some other packages. The goal of this implementation is to be highly portable, and only require an ANSI C99 platform.This library provides Abstract Syntax Notation One ASN.1, as specified by the X.680 ITU-T recommendation parsing and...

OESA-2026-1222 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdfwritecmap in...

OESA-2026-1220 nodejs security update

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

OESA-2026-1219 nodejs security update

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

Security Bulletin: Multiple vulnerabilities in IBM® Db2® affect IBM® Db2® Big SQL

Summary There are multiple vulnerabilities in IBM® Db2® 11.5 & 12.1 used by IBM® Db2® Big SQL 7 & 8 on IBM Cloud Pak for Data 5.1 and earlier. Vulnerability Details CVEID:CVE-2025-30065 DESCRIPTION: Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows ba...