Lucene search
K

14 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/11 7:32 p.m.5 views

CVE-2026-31961

Quill provides simple mac binary signing and notarization from any platform. Quill before version v0.7.1 contains an unbounded memory allocation vulnerability when parsing Mach-O binaries. Exploitation requires that Quill processes an attacker-supplied Mach-O binary, which is most likely in...

5.5CVSS5.8AI score0.001EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/11 12:38 a.m.7 views

Quill has unbounded memory allocation via unvalidated size fields in Mach-O binary parsing

Impact Quill before version v0.7.1 contains an unbounded memory allocation vulnerability when parsing Mach-O binaries. Exploitation requires that Quill processes an attacker-supplied Mach-O binary, which is most likely in environments such as CI/CD pipelines, shared signing services, or any...

5.5CVSS5.8AI score0.001EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/03/11 12:38 a.m.6 views

GHSA-XJ69-M9QQ-8M94 Quill has unbounded memory allocation via unvalidated size fields in Mach-O binary parsing

Impact Quill before version v0.7.1 contains an unbounded memory allocation vulnerability when parsing Mach-O binaries. Exploitation requires that Quill processes an attacker-supplied Mach-O binary, which is most likely in environments such as CI/CD pipelines, shared signing services, or any...

5.5CVSS5.9AI score0.001EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.6 views

PT-2026-24692

Name of the Vulnerable Software and Affected Versions Quill versions prior to 0.7.1 Description Quill, a tool for Mac binary signing and notarization, has an issue where it can allocate an excessive amount of memory when processing Mach-O binaries. This occurs because the software doesn't properl...

9.9CVSS7.2AI score0.22162EPSS
Exploits70References139
RedhatCVE
RedhatCVE
added 2026/03/09 8:19 p.m.4 views

CVE-2025-69647

A flaw was found in binutils. Processing a specially crafted ELF binary file containing malformed DWARF loclists data with the readelf program can trigger an infinite loop and result in a denial of service. Mitigation To mitigate this vulnerability, do not process untrusted, unverified or...

6.2CVSS5.7AI score0.00152EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/03/06 9:20 p.m.3 views

CVE-2025-69650

A flaw was found in binutils. Processing a specially crafted ELF binary file containing malformed relocation data with the readelf program can trigger a double free, causing a crash and resulting in a denial of service. Mitigation To mitigate this vulnerability, do not process untrusted, unverifi...

7.5CVSS5.8AI score0.00502EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0062

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00316EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/07/31 12:0 a.m.4 views

PT-2024-29909 · Homebrew · Homebrew

Name of the Vulnerable Software and Affected Versions: Homebrew versions prior to 4.2.20 Description: The issue allows attackers to achieve code execution via an ELF file with a custom .interp section. This occurs during an un-sandboxed binary relocation phase, before a user would expect executio...

8.3CVSS7.4AI score0.0061EPSS
Exploits0References12
CNNVD
CNNVD
added 2022/07/12 12:0 a.m.33 views

Git for Windows 代码问题漏洞

Git for Windows is the Git groups' Git for Windows. A code issue vulnerability exists in versions prior to Git for Windows v2.37.1, which stems from the possibility that the installer can be tricked into executing untrusted binaries...

8.2CVSS8.1AI score0.00377EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/01/22 12:0 a.m.61 views

openSUSE Security Update : libunwind (openSUSE-2019-61)

This update for libunwind fixes one minor security issue and one bug. The following security issue was fixed : - CVE-2015-3239: off-by-one error that could be triggered when reading untrusted binaries boo936786 The following packaging bug was fixed : - boo1122012: The 32 bit were not generated on...

3.3CVSS5.3AI score0.00498EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2015/09/10 12:5 p.m.4 views

libunwind: off-by-one in dwarf_to_unw_regnum()

An off-by-one array indexing error was found in the libunwind API, which could cause an error when reading untrusted binaries or dwarf debug info data. Red Hat products do not call the API in this way; and it is unlikely that any exploitable attack vector exists in current builds or supported usa...

3.3CVSS5.7AI score0.00498EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/09/10 12:4 p.m.6 views

libunwind: off-by-one in dwarf_to_unw_regnum()

An off-by-one array indexing error was found in the libunwind API, which could cause an error when reading untrusted binaries or dwarf debug info data. Red Hat products do not call the API in this way; and it is unlikely that any exploitable attack vector exists in current builds or supported usa...

3.3CVSS5.7AI score0.00498EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/08/24 7:57 p.m.7 views

libunwind: off-by-one in dwarf_to_unw_regnum()

An off-by-one array indexing error was found in the libunwind API, which could cause an error when reading untrusted binaries or dwarf debug info data. Red Hat products do not call the API in this way; and it is unlikely that any exploitable attack vector exists in current builds or supported usa...

3.3CVSS5.7AI score0.00498EPSS
Exploits1References4
FreeBSD Advisory
FreeBSD Advisory
added 2000/10/30 12:0 a.m.3 views

FreeBSD-SA-00:60.boa

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:60 Security Advisory FreeBSD, Inc. Topic: boa web server allows arbitrary file access/execution Category: ports Module: boa Announced: 2000-10-30 Credits: Lluis Mora...

6.2AI score
Exploits0
Rows per page
Query Builder