CVE-2025-21804

CVE-2025-21804 affects the Linux kernel in the PCI subsystem for rcar-ep. The root cause is an incorrect variable used when calling devm_request_mem_region(), where a stack-allocated string temporarily stored a dynamic resource name and was passed as a macro argument, causing undefined behavior. ...

SUSE-SU-2023:2344-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2023-34151: Fixed an undefined behavior issue due to floating point truncation bsc1211791. - CVE-2023-34153: Fixed a command injection issue when encoding or decoding VIDEO files bsc1211792...

[SECURITY] [DLA 909-1] libcroco security update

Package : libcroco Version : 0.6.6-2+deb7u1 CVE ID : CVE-2017-7960 CVE-2017-7961 Debian Bug : 860961 CVE-2017-7960 A heap-based buffer over-read vulnerability could be triggered remotely via a crafted CSS file to cause a denial of service. CVE-2017-7961 An "outside the range of representable valu...

CVE-2017-7599

CVE-2017-7599 affects LibTIFF up to version 4.0.7, where a crafted TIFF file can trigger undefined behavior (via putagreytile/related paths) and cause a denial of service (application crash). Public advisories and vendor posts indicate this class of issues covered multiple CVEs in LibTIFF and wer...

CVE-2017-7596

LibTIFF 4.0.7 contains an undefined behavior issue triggered by crafted TIFF images (described as “outside the range of representable values of type float”). This can lead to remote denial of service (application crash) and possibly other impacts. Several advisories reference CVE-2017-7596, notin...