Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: libcap: captree-2.78-1.1.hum1 aarch64, x8664 libcap-2.78-1.1.hum1 aarch64, x8664 libcap-devel-2.78-1.1.hum1 aarch64, x8664 libcap-static-2.78-1.1.hum1 aarch64, x8664 libcap-2.78-1.1.hum1.src src...

SUSE SLES15 / openSUSE 15 Security Update : capstone (SUSE-SU-2026:0060-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0060-1 advisory. Security issues fixed: - CVE-2025-67873: missing bounds check on user-provided skipdata callback can lead to a heap...

Security update for capstone

This update for capstone fixes the following issues: Security issues fixed: CVE-2025-67873: missing bounds check on user-provided skipdata callback can lead to a heap buffer overflow bsc1255309. CVE-2025-68114: unchecked vsnprintf return value can lead to a stack buffer overflow bsc1255310. Other...

SUSE-SU-2026:0060-1 Security update for capstone

This update for capstone fixes the following issues: Security issues fixed: - CVE-2025-67873: missing bounds check on user-provided skipdata callback can lead to a heap buffer overflow bsc1255309. - CVE-2025-68114: unchecked vsnprintf return value can lead to a stack buffer overflow bsc1255310...

GHSA-4HH3-VJ32-GR6J Mobile Security Framework (MobSF) has a Zip Slip Vulnerability in .a Static Library Files

Summary Upon reviewing the MobSF source code, I identified a flaw in the Static Libraries analysis section. Specifically, during the extraction of .a extension files, the measure intended to prevent Zip Slip attacks is improperly implemented. Since the implemented measure can be bypassed, the...

CVE-2024-43399 Mobile Security Framework (MobSF) has a Zip Slip Vulnerability in .a Static Library Files

Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. Before 4.0.7, there is a flaw in the Static Libraries analysis section. Specifically, during the extraction of .a extension files, the measure...

CVE-2023-26126

All versions of the package m.static are vulnerable to Directory Traversal due to improper input sanitization of the path being requested via the requestFile function...

Icingaweb Directory Traversal in Static Library File Requests

Icingaweb versions from 2.9.0 to 2.9.5 inclusive, and 2.8.0 to 2.8.5 inclusive suffer from an unauthenticated directory traversal vulnerability. The vulnerability is triggered through the icinga-php-thirdparty library, which allows unauthenticated users to retrieve arbitrary files from the target...

SUSE-FU-2022:0484-1 Feature update for tcl and tk

This feature update for tcl and tk fix the following issues: Update tcl and tk to version 8.6.12 jscSLE-21015, jscSLE-23283: - Move tcl.macros to /usr/lib/rpm/macros.d bsc1185662 - Use FAT LTO objects in order to provide proper static library bsc1138797 - Fix tcl build issues on s390 architecture...

Update of openssl-static, openssl-devel, openssl-perl, openssl, openssl, openssl-devel

...

iOS Malicious Bit Hunter - A Malicious Plug-In Detection Eng ine For iOS Applications

iOS Malicious Bit Hunter is a malicious plug-in detection engine for iOS applications. It can analyze the head of the macho file of the injected dylib dynamic library based on runtime, and can perform behavior analysis through interface input characteristics to determine the behavior of the dynam...

java-11-openjdk security update

1:11.0.11.0.9-0 - Update to jdk-11.0.11.0+9 - Update release notes to 11.0.11.0+9 - Require tzdata 2020f to match upstream change JDK-8259048 - Require tzdata 2021a to match upstream change JDK-8260356 - Remove RH1868754 patch as this is now resolved upstream by JDK-8258833 - Remove RH1868740 &...

java-11-openjdk security and bug fix update

1:11.0.11.0.9-1.0.1 - link atomic for ix86 build 1:11.0.11.0.9-1 - Add backport of JDK-8187450 from 11.0.12 to fix RH1937736 - Resolves: rhbz1937736 1:11.0.11.0.9-0 - Update to jdk-11.0.11.0+9 - Update release notes to 11.0.11.0+9 - Switch to GA mode for final release. - This tarball is embargoed...

SUSE-SU-2020:1423-1 Security update for mariadb-connector-c

This update for mariadb-connector-c fixes the following issues: Security issue fixed: - CVE-2020-13249: Fixed an improper validation of OK packets received from clients bsc1171550. Non-security issues fixed: - Update to release 3.1.8 bsc1171550 CONC-304: Rename the static library to libmariadb.a...

SUSE-SU-2020:0722-1 Security update for nghttp2

This update for nghttp2 fixes the following issues: nghttp2 was update to version 1.40.0 bsc1166481 - lib: Add nghttp2checkauthority as public API - lib: Fix the bug that stream is closed with wrong error code - lib: Faster huffman encoding and decoding - build: Avoid filename collision of static...

DEBIAN-CVE-2018-20761

GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gfsmloadinit function in scenemanager.c in libgpacstatic.a...

[SECURITY] [DLA 1656-1] agg security update

Package : agg Version : 2.5+dfsg1-9+deb8u1 CVE ID : CVE-2019-6245 Debian Bug : 919322 A stack overflow vulnerability was discovered in AGG, the AntiGrain Geometry graphical toolkit, that may lead to code execution if a malformed file is processed. Since AGG only provides a static library, the...

WavPack Denial of Service Vulnerability (CNVD-2019-06791)

WavPack is an open source, free audio lossless compression software. A security vulnerability exists in the 'WavpackPackInit' function in the packutils.c file of the libwavpack.a static link library in WavPack 5.1.0 and earlier versions. An attacker can exploit this vulnerability to cause a denia...

cloudwu PBC Reuse After Release Vulnerability

cloudwu PBC is a C-based Google protocol buffer library . A post-release reuse vulnerability in the 'pbcMspquery' function in the map.c file of the libpbc.a static link library in cloudwu PBC 2017-03-02 and earlier versions can be exploited by an attacker to cause a denial of service crash...

PBC denial of service vulnerability

PBC is a Google protocol buffer library written in C. A denial of service vulnerability exists in the 'pbcBregisterfields' function in the bootstrap.c file of the libpbc.a static link library in PBC 2017-03-02 and earlier versions. An attacker can exploit this vulnerability to cause a denial of...