146 matches found
EUVD-2026-9969
TinyWeb is a web server HTTP, HTTPS written in Delphi for Win32. Prior to version 2.03, an integer overflow vulnerability in the string-to-integer conversion routine Val allows an unauthenticated remote attacker to bypass Content-Length restrictions and perform HTTP Request Smuggling. This can le...
glib2 security update
2.56.1-9.0.3 - Fixes CVE-2025-13601 gescapeuristring overflow Orabug: 38909821 2.56.1-9.0.1 - Fix overflow of GDBusConnection serial Orabug: 38666376...
MiracleLinux 8 : unbound-1.7.3-15.el8 (AXSA:2021-2060:02)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2060:02 advisory. unbound: integer overflow in the regional allocator via regionalalloc CVE-2019-25032 unbound: integer overflow in sldnsstr2wirednamebuforigin can le...
MiracleLinux 8 : sqlite-3.26.0-13.el8 (AXSA:2021-1806:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1806:01 advisory. sqlite: integer overflow in sqlite3strvappendf function in printf.c CVE-2020-13434 sqlite: heap-based buffer overflow in multiSelectOrderBy due to...
MiracleLinux 3 : pango-1.14.9-5AXS3 (AXSA:2009-50:01)
The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2009-50:01 advisory. Pango is a system for layout and rendering of internationalized text. Fixed bugs: CVE-2009-1194 Integer overflow in the pangoglyphstringsetsize function in...
CVE-2025-65805
OpenAirInterface CN5G AMF=v2.1.9 has a buffer overflow vulnerability in processing NAS messages. Unauthorized remote attackers can launch a denial-of-service attack and potentially execute malicious code by accessing port N1 and sending an imsi string longer than 1000 to AMF...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990461)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990461 advisory. In the Linux kernel, the following vulnerability has been resolved: thermal: core: prevent potential string overflow The dev-id value comes from idaalloc so it's a...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989590)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989590 advisory. In the Linux kernel, the following vulnerability has been resolved: thermal: core: prevent potential string overflow The dev-id value comes from idaalloc so it's a...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990031)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990031 advisory. In the Linux kernel, the following vulnerability has been resolved: thermal: core: prevent potential string overflow The dev-id value comes from idaalloc so it's a...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989787)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989787 advisory. In the Linux kernel, the following vulnerability has been resolved: firmware: armscpi: Fix string overflow in SCPI genpd driver Without the bound checks for...
CLSA-2025-1761139764 kernel: Fix of 39 CVEs
nfs: fix UAF in direct writes CVE-2024-26958 - NFSD: Fix the behavior of READ near OFFSETMAX CVE-2022-48827 - thermal: core: prevent potential string overflow CVE-2023-52868 - ath5k: fix OOB in ath5keepromreadpcalinfo5111 CVE-2021-47633 - RDMA/cma: Ensure rdmaaddrcancel happens before issuing...
kernel: Fix of 39 CVEs
nfs: fix UAF in direct writes CVE-2024-26958 - NFSD: Fix the behavior of READ near OFFSETMAX CVE-2022-48827 - thermal: core: prevent potential string overflow CVE-2023-52868 - ath5k: fix OOB in ath5keepromreadpcalinfo5111 CVE-2021-47633 - RDMA/cma: Ensure rdmaaddrcancel happens before issuing...
CLSA-2025-1759866837 kernel: Fix of 44 CVEs
mm: zswap: fix missing folio cleanup in writeback race path CVE-2024-26832 - mm: fix zswap writeback race condition CVE-2023-53178 - dm array: fix releasing a faulty array block twice in dmarraycursorend CVE-2024-57929 - drm/dpmst: Fix MST sideband message body length check CVE-2024-56616 - gpio:...
EUVD-2007-4765
Malware in sbrugna...
EUVD-2018-6505
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986671)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986671 advisory. In the Linux kernel, the following vulnerability has been resolved: firmware: armscpi: Fix string overflow in SCPI genpd driver Without the bound checks for...
UBUNTU-CVE-2025-39952
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: avoid buffer overflow in WID string configuration Fix the following copy overflow warning identified by Smatch checker. drivers/net/wireless/microchip/wilc1000/wlancfg.c:184 wilcwlanparseresponseframe error:...
CVE-2025-59398
The OCPP implementation in libocpp before 0.26.2 allows a denial of service EVerest crash via JSON input larger than 255 characters, because a CiString object is created with StringTooLarge set to Throw...
Linux Distros Unpatched Vulnerability : CVE-2025-39751
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALSA: hda/ca0132: Fix buffer overflow in addtuningcontrol The 'sprintf' call in 'addtuningcontrol' may exceed the 44-byte buffer if either string argument is to...
DEBIAN-CVE-2025-6052
A flaw was found in how GLib’s GString manages memory when adding data to strings. If a string is already very large, combining it with more input can cause a hidden overflow in the size calculation. This makes the system think it has enough memory when it doesn’t. As a result, data may be writte...