SUSE CVE-2026-49127

Music Player Daemon MPD before version 0.24.11 contains a stack buffer overflow vulnerability in the pcmunpack24be function in src/pcm/Pack.cxx that allows unauthenticated attackers to corrupt stack memory by triggering an off-by-one write in the PCM decoder plugin. Attackers can issue two MPD...

EUVD-2026-23607

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 842. The function reads the FormFlag byte via dtoh8odata, poffset without a prior bounds check. The standard ptpunpackDPD at lines...

CVE-2025-67482

CVE-2025-67482 is a vulnerability in the Wikimedia Scribunto extension and its luasandbox, described as a Segfault in unpack() when handling large integers on certain Lua builds. Affected versions include Scribunto prior to 1.39.16, 1.43.6, 1.44.3, 1.45.1; luasandbox prior to fea2304f8f6ab3031436...

libfluid 安全漏洞

libfluid is an Open Networking open source application. A security vulnerability exists in libfluid that stems from the fact that the fluidmsg::of10::StatsReplyFlow::unpack routine contains an out-of-bounds read vulnerability...

libfluid 安全漏洞

libfluid is an Open Networking open source application. A security vulnerability exists in libfluid that stems from the fact that the fluidmsg::of13::MultipartReplyTable::unpack routine contains an out-of-bounds read vulnerability...

DEBIAN-CVE-2018-5801

An error within the "LibRaw::unpack" function src/librawcxx.cpp in LibRaw versions prior to 0.18.7 can be exploited to trigger a NULL pointer dereference...