CVE-2026-48040 netty-incubator-codec-ohttp's Incorrect Native Pointer Derivation in Pooled Direct ByteBuf Fallback Leads to Out-of-Bounds Native Memory Access

The netty incubator codec.bhttp is a java language binary http parser. The library implements Oblivious HTTP RFC 9458 using BoringSSL's HPKE C library via JNI. When deriving native memory addresses for cryptographic operations versions prior to 0.0.22.Final provide a fallback path for direct...

PT-2026-46309

Name of the Vulnerable Software and Affected Versions netty incubator codec.bhttp versions prior to 0.0.22.Final Description The library implements Oblivious HTTP RFC 9458 using BoringSSL's HPKE C library via JNI. When sun.misc.Unsafe is unavailable—such as when the JVM is started with...

PT-2026-6538

In the unique reclaim path of BytesMut::reserve, the condition rs if v capacity = new cap + offset uses an unchecked addition. When new cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated...

EUVD-2023-39842

Malicious code in bioql PyPI...

EUVD-2022-30371

Malicious code in bioql PyPI...

EUVD-2021-3572

Malicious code in bioql PyPI...

SUSE CVE-2022-50255

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix reading strings from synthetic events The follow commands caused a crash: cd /sys/kernel/tracing echo 's:open char file' dynamicevents echo 'hist:keys=commonpid:file=filename:onchange$file.traceopen,$file'...

CVE-2022-25716

Memory corruption in Multimedia Framework due to unsafe access to the data members...

PT-2025-20369 · Crates.Io · Fast Id Map

FastMap::get lacks sufficient checks to its parameter index and is used to unsafely get a Vec element. fast id map is unmaintained...

UBUNTU-CVE-2025-21830

In the Linux kernel, the following vulnerability has been resolved: landlock: Handle weird files A corrupted filesystem e.g. bcachefs might return weird files. Instead of throwing a warning and allowing access to such file, treat them as regular files...

fast-fault has a segmentation fault due to lack of bound check

In this case, the "fastfloat::common::AsciiStr::first" method within the "AsciiStr" struct uses the unsafe keyword to reading from memory without performing bounds checking. Specifically, it directly dereferences a pointer offset by "self.ptr". Because of the above reason, the method accesses...

GHSA-JQCP-XC3V-F446 fast-float2 has a segmentation fault due to lack of bound check

In this case, the "fastfloat2::common::AsciiStr::first" method within the "AsciiStr" struct uses the unsafe keyword to reading from memory without performing bounds checking. Specifically, it directly dereferences a pointer offset by "self.ptr". Because of the above reason, the method accesses...

PT-2024-27729 · Unknown · Safe Exam Browser

Name of the Vulnerable Software and Affected Versions: Safe Exam Browser versions 3.5.0 and earlier Description: The issue is related to insecure access control, allowing an attacker to share clipboard data between the Safe Exam Browser kiosk mode and the underlying system. This compromises exam...

CVE-2023-33498

alist =3.16.3 is vulnerable to Incorrect Access Control. Low privilege accounts can upload any file...

SUSE CVE-2021-26930

An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be discarded by later...

CVE-2022-25716

Memory corruption in Multimedia Framework due to unsafe access to the data members...

Memory corruption

Memory corruption in Multimedia Framework due to unsafe access to the data members...

CVE-2022-25716

CVE-2022-25716 is described across multiple sources as a memory corruption issue in a Multimedia Framework caused by unsafe access to data members, classed as a time-of-check/time-of-use race condition. The NVD entry lists local attack vector with high confidentiality/integrity/availability impac...

Mozilla: Use-after-free in NSSToken objects

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of NSSToken objects referenced via direct points that could have been accessed unsafely on different threads, leading to a use-after-free and potentially exploitable crash...

CVE-2021-38188

An issue was discovered in the iced-x86 crate through 1.10.3 for Rust. In Decoder::new, slice.getuncheckedslice.length is used unsafely...