openexr: OpenEXR: Arbitrary code execution via integer overflow in EXR file processing

A flaw was found in OpenEXR, an image storage format library for the motion picture industry. An attacker can craft a malicious EXR file that, when processed, causes an integer overflow in the CompositeDeepScanLine::readPixels function. This overflow leads to an undersized buffer allocation, whic...

CVE-2026-21382

Memory Corruption when handling power management requests with improperly sized input/output buffers...

postgresql: libpq: libpq undersizes allocations, via integer wraparound

A vulnerability has been identified in PostgreSQL’s libpq client library, where integer wraparound in several allocation-size calculations allows a peer or input provider to cause an undersized buffer and then write out-of-bounds by hundreds of megabytes. This can lead to a client application...

postgresql: libpq: libpq undersizes allocations, via integer wraparound

A vulnerability has been identified in PostgreSQL’s libpq client library, where integer wraparound in several allocation-size calculations allows a peer or input provider to cause an undersized buffer and then write out-of-bounds by hundreds of megabytes. This can lead to a client application...

postgresql: libpq: libpq undersizes allocations, via integer wraparound

A vulnerability has been identified in PostgreSQL’s libpq client library, where integer wraparound in several allocation-size calculations allows a peer or input provider to cause an undersized buffer and then write out-of-bounds by hundreds of megabytes. This can lead to a client application...

postgresql: libpq: libpq undersizes allocations, via integer wraparound

A vulnerability has been identified in PostgreSQL’s libpq client library, where integer wraparound in several allocation-size calculations allows a peer or input provider to cause an undersized buffer and then write out-of-bounds by hundreds of megabytes. This can lead to a client application...

postgresql: libpq: libpq undersizes allocations, via integer wraparound

A vulnerability has been identified in PostgreSQL’s libpq client library, where integer wraparound in several allocation-size calculations allows a peer or input provider to cause an undersized buffer and then write out-of-bounds by hundreds of megabytes. This can lead to a client application...

EulerOS 2.0 SP3 : zsh (EulerOS-SA-2020-1441)

According to the version of the zsh package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATHMAX characters.CVE-2016-10714 Note that Tenable...

Huawei EulerOS: Security Advisory for zsh (EulerOS-SA-2019-2705)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP5 : zsh (EulerOS-SA-2019-2705)

According to the version of the zsh package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATHMAX characters.CVE-2016-10714 Note that Tenable...

Code injection

In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATHMAX characters...

CVE-2016-10714

In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATHMAX characters...

CVE-2016-10714

CVE-2016-10714 affects zsh before 5.3, where an off-by-one error caused undersized buffers intended to support PATH_MAX characters. The resulting issue can cause a potential crash or instability due to buffer mis-sizing in path handling. Multiple connected sources reference this specific vulnerab...

CVE-2016-10714

In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATHMAX characters...

python: buffer overflow in socket.recvfrom_into()

It was discovered that the socket.recvfrominto function failed to check the size of the supplied buffer. This could lead to a buffer overflow when the function was called with an insufficiently sized buffer...