DEBIAN-CVE-2026-46673

Russh is a Rust SSH client & server library. Prior to version 0.60.3, CryptoVec used unchecked capacity growth, unchecked length arithmetic, and unsafe allocation/locking paths. In current russh releases, local SSH agent peers could still feed attacker-controlled frame lengths into buffer growth...

CVE-2025-47404 Buffer Copy Without Checking Size of Input in Automotive Audio

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified...

CLSA-2026-1772125283 nodejs: Fix of 4 CVEs

CVE-2025-23167: fix improper termination of HTTP/1 headers using \r\n\rX instead of the required \r\n\r\n. - CVE-2025-59466: fix uncatchable stack overflow exceptions when asynchooks are enabled, preventing denial-of-service crashes in applications using AsyncLocalStorage or...

n8n Node.js Package >= 1.65.0 < 1.114.3 Unsafe Buffer Allocation Memory Disclosure (CVE-2025-61917)

The version of the n8n Node.js Package installed on the remote host is = 1.65.0 and prior to 1.114.3. It is, therefore, affected by an information disclosure vulnerability: - The use of Buffer.allocUnsafe and Buffer.allocUnsafeSlow in the task runner allows untrusted code to allocate uninitialize...

Security update for nodejs20

This update for nodejs20 fixes the following issues: Update to 20.20.0: CVE-2026-22036: Updated undici to 6.23.0 bsc1256848 CVE-2025-59465: Add TLSSocket default error handler bsc1256573 CVE-2025-55132: Disable futimes when permission model is enabled bsc1256571 CVE-2025-55130: Require full read...

GHSA-49MX-FJ45-Q3P6 n8n's Unsafe Buffer Allocation Allows In-Process Memory Disclosure in Task Runner

Impact The use of Buffer.allocUnsafe and Buffer.allocUnsafeSlow in the task runner allowed untrusted code to allocate uninitialized memory. Such uninitialized buffers could contain residual data from within the same Node.js process for example, data from prior requests, tasks, secrets, or tokens,...

n8n's Unsafe Buffer Allocation Allows In-Process Memory Disclosure in Task Runner

Impact The use of Buffer.allocUnsafe and Buffer.allocUnsafeSlow in the task runner allowed untrusted code to allocate uninitialized memory. Such uninitialized buffers could contain residual data from within the same Node.js process for example, data from prior requests, tasks, secrets, or tokens,...

CVE-2025-61917

CVE-2025-61917 affects the open‑source workflow tool n8n (versions 1.65.0 through before 1.114.3). The root cause is the use of Buffer.allocUnsafe() / Buffer.allocUnsafeSlow() inside the Task Runner, allowing untrusted code to allocate uninitialized memory that may contain residual data (prior re...

ROS-20251111-10

Vulnerability of processsymtab function of eu-readelf component of ELF Elfutils binary modification and analysis utility is related to copying buffer without checking input data size. ELF Elfutils is related to buffer copying without checking input data size. Exploitation vulnerability could allo...

PHOENIX CONTACT CHARX SEC-3xxx 安全漏洞

PHOENIX CONTACT CHARX SEC-3000 etc. are products of PHOENIX CONTACT, Germany.PHOENIX CONTACT CHARX SEC-3000 is an AC charge controller.PHOENIX CONTACT CHARX SEC-3050 is an AC charge controller.PHOENIX CONTACT CHARX SEC-3100 is an AC charge controller. PHOENIX CONTACT CHARX SEC-3100 is an AC charg...

The vulnerability of the formEasySetupWizard function in the D-Link DIR-600L router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the formEasySetupWizard function in the D-Link DIR-600L router’s microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by using the host...

The vulnerability of the readDataVar() function in the hdf/dataobject.c component of the Libmysofa library for audio processing allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failure.

The vulnerability of the readDataVar function in the hdf/dataobject.c component of the Libmysofa audio library involves copying buffers without checking the input data. Exploiting this vulnerability could allow an attacker to gain access to confidential data, compromise its integrity, and even...

The vulnerability of the Assimp::SplitLargeMeshesProcess_Triangle::UpdateNode() function in the Open Asset Import Library (Assimp) import library allows a malicious actor to trigger a denial-of-service attack.

The vulnerability of the OpenDDLParser::parseStructure function in the Open Asset Import Library Assimp import library is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the __zzip_fetch_disk_trailer() function in the /zzip/zip.c component of the ZZIPlib compression library allows a hacker to induce a service failure.

The vulnerability of the zzipFetchFetchDiskTrailer function in the /zzip/zip.c component of the ZZIPlib compression library is related to the copying of buffers without checking the input data. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of the formSetLog function (/goform/formSetLog) in D-Link DIR-619L router software allows a intruder to trigger a service failure.

The vulnerability of the formSetLog /goform/formSetLog function in D-Link DIR-619L router microprogramming software lies in the copying of buffers without checking the size of input data when processing the curTime parameter. Exploiting this vulnerability can allow an attacker to cause service...

The vulnerability of the formSetMACFilter function (/goform/formSetMACFilter) in D-Link DIR-619L router software allows a hacker to trigger a service failure.

The vulnerability of the formSetMACFilter function /goform/formSetMACFilter in D-Link DIR-619L router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure by sending a specially crafte...

The vulnerability of the lsx_read_w_buf() function in the formats_i.c component of the SoX sound processing program allows a hacker to cause a service failure.

The vulnerability of the lsxreadwbuf function in the formsi.c component of the SoX sound processing program is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows an attacker to cause a service failure using a specially created file...

The vulnerabilities of the functions read_erst_record() and write_erst_record() in the QEMU hardware emulation software allow a malicious actor to induce a service failure.

The vulnerability of the readerstrecord and writeerstrecord functions in the QEMU hardware emulation software involves copying buffers without checking the input data. Exploiting this vulnerability allows an attacker to cause a service failure...

The vulnerability of the NET-SNMP-VACM-MIB() function in the Net-SNMP software suite for the Linux operating system allows a attacker to compromise the integrity of the system.

The vulnerability of the NET-SNMP-VACM-MIB function in the Net-SNMP software suite for the Linux operating system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to compromise the integrity of the system...

The vulnerability of the interpolate component (libavfilter/vf_minterpolate.c) in the FFmpeg multimedia library allows a hacker to execute arbitrary code.

The vulnerability of the interpolate component libavfilter/vfminterpolate.c in the FFmpeg multimedia library involves copying buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...