openCryptoki: openCryptoki: Information disclosure and Denial of Service via malformed BER-encoded cryptographic objects

A flaw was found in openCryptoki, a PKCS11 Cryptographic Token Interface Standard library. The BER/DER Basic Encoding Rules/Distinguished Encoding Rules decoding functions in the shared common library do not properly validate attacker-controlled length fields against actual buffer boundaries. Thi...

CVE-2026-40253

A flaw was found in openCryptoki, a PKCS11 Cryptographic Token Interface Standard library. The BER/DER Basic Encoding Rules/Distinguished Encoding Rules decoding functions in the shared common library do not properly validate attacker-controlled length fields against actual buffer boundaries. Thi...

libsoup 数字错误漏洞

Libsoup is a GNOME project’s HTTP client/server library. Libsoup has a numerical error vulnerability, which stems from integer underflow when handling zero-length resources, leading to excessive buffer reading...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000824)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000824 advisory. Multiple buffer underflows in the XFS implementation in the Linux kernel through 3.12.1 allow local users to cause a denial of service memory corruption or possibly...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002378)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002378 advisory. Multiple buffer underflows in the XFS implementation in the Linux kernel through 3.12.1 allow local users to cause a denial of service memory corruption or possibly...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001845)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001845 advisory. Multiple buffer underflows in the XFS implementation in the Linux kernel through 3.12.1 allow local users to cause a denial of service memory corruption or possibly...

MiracleLinux 3 : krb5-1.6.1-36AXS3.1 (AXSA:2010-49:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2010-49:01 advisory. Kerberos is a network authentication system. The krb5-devel package contains the header files and libraries needed for compiling Kerberos 5 programs. If you wa...

CVE-2026-21673

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have overflows and underflows in CIccXmlArrayType::ParseTextCountNum. This vulnerability affects users of the iccDEV library who process ICC color profiles. This issue is fixed in...

EUVD-2015-0863

Malware in sbrugna...

EUVD-2012-3773

Malware in sbrugna...

EUVD-2010-4140

Malware in sbrugna...

EUVD-2008-3813

Malware in sbrugna...

EUVD-2005-2628

Malware in sbrugna...

EUVD-2015-6756

Malware in sbrugna...

EUVD-2009-4599

Malware in sbrugna...

EUVD-2013-6207

Malware in sbrugna...

EUVD-2022-55018

Malicious code in bioql PyPI...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly validating packet boundaries, which could lead to out-of-bounds reads and integer underflows...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the lack of the IPSETHASHWITHNET0 macro in ipsethashnetportnet, which could lead to integer underflows and...

CVE-2025-23335

NVIDIA Triton Inference Server for Windows and Linux and the Tensor RT backend contain a vulnerability where an attacker could cause an underflow by a specific model configuration and a specific input. A successful exploit of this vulnerability might lead to denial of service...