EulerOS Virtualization 2.13.1 : autogen (EulerOS-SA-2026-2119)

According to the versions of the autogen package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function strstrsse2. The...

EulerOS Virtualization 2.12.1 : autogen (EulerOS-SA-2026-2069)

According to the versions of the autogen package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function strstrsse2. The...

OESA-2026-1317 autogen security update

AutoGen is a tool designed to simplify the creation and maintenance of programs that contain large amounts of repetitious text. It is especially valuable in programs that have several blocks of text that must be kept synchronised. Security Fixes: A vulnerability, which was classified as...

OESA-2026-1318 autogen security update

AutoGen is a tool designed to simplify the creation and maintenance of programs that contain large amounts of repetitious text. It is especially valuable in programs that have several blocks of text that must be kept synchronised. Security Fixes: A vulnerability, which was classified as...

OESA-2026-1254 autogen security update

AutoGen is a tool designed to simplify the creation and maintenance of programs that contain large amounts of repetitious text. It is especially valuable in programs that have several blocks of text that must be kept synchronised. Security Fixes: A vulnerability, which was classified as...

SUSE CVE-2025-8746

A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function strstrsse2. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. This issue w...

CVE-2025-8746

A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function strstrsse2. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. This issue w...

UBUNTU-CVE-2025-8746

A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function strstrsse2. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. This issue w...

CVE-2025-8746 GNU libopts __strstr_sse2 memory corruption

A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function strstrsse2. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. This issue w...

CVE-2025-8746 GNU libopts __strstr_sse2 memory corruption

A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function strstrsse2. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. This issue w...

CVE-2025-8746

A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function strstrsse2. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. This issue w...

PT-2025-32430

Name of the Vulnerable Software and Affected Versions GNU libopts versions up to 27.6 Description A memory corruption issue exists in the strstr sse2 function within GNU libopts. This flaw can be exploited by a local attacker. The vulnerability affects products that are no longer supported by the...

AVTECH IP camera、AVTECH DVR和AVTECH NVR 安全漏洞

AVTECH IP camera and others are products of AVTECH Corporation, USA.AVTECH IP camera is a series of network security cameras.AVTECH DVR is a digital video recording host.AVTECH NVR is a network video recorder. A security vulnerability exists in AVTECH IP camera, AVTECH DVR and AVTECH NVR that...

The vulnerability of the strstr() function in microprogrammed routing software such as Netcomm NF20, NF20MESH, and NL1902 allows a hacker to execute arbitrary code.

The vulnerability of the strstr function in microprogrammed routing software such as Netcomm NF20, NF20MESH, and NL1902 is related to the bypassing of authentication processes. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

glibc security, bug fix, and enhancement update

2.28-127.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...

Qualcomm QCMAP Web Code Issue Vulnerability

Qualcomm QCMAP is a data access point for Linux-based cell phones from Qualcomm Incorporated. Qualcomm QCMAP Web October 2020 Release A security vulnerability exists in the client-side binary code that does not validate the return value of the strstr or strchr call in the Tokenizer function, whic...

OSV-2020-772 Heap-buffer-overflow in __libcpp_strstr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23601 Crash type: Heap-buffer-overflow READ 4 Crash state: libcppstrstr strstr pcpp::SipRequestFirstLine::parseVersion...

OSV-2020-218 Heap-buffer-overflow in __libcpp_strstr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23145 Crash type: Heap-buffer-overflow READ 13 Crash state: libcppstrstr strstr pcpp::SipRequestFirstLine::parseVersion...

CVE-2019-20215

D-Link DIR-859 1.05 and 1.06B01 Beta01 devices allow remote attackers to execute arbitrary OS commands via a urn: to the M-SEARCH method in ssdpcgi in /htdocs/cgibin, because HTTPST is mishandled. The value of the urn: service/device is checked with the strstr function, which allows an attacker t...

CVE-2019-20215

D-Link DIR-859 1.05 and 1.06B01 Beta01 devices allow remote attackers to execute arbitrary OS commands via a urn: to the M-SEARCH method in ssdpcgi in /htdocs/cgibin, because HTTPST is mishandled. The value of the urn: service/device is checked with the strstr function, which allows an attacker t...