ROOT-OS-DEBIAN-13-CVE-2025-40146 CVE-2025-40146 in rootio-linux - Patched by Root

Root has patched CVE-2025-40146 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

RHSA-2026:8434 Red Hat Security Advisory: rhc security update

Bulletin has no description...

(Pwn2Own) Music Assistant _update_library_item External Control of File Path Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Music Assistant. Authentication is not required to exploit this vulnerability. The specific flaw exists within the updatelibraryitem method. The issue results from the lack of proper...

CVE-2021-41153

The evm crate is a pure Rust implementation of Ethereum Virtual Machine. In evm crate 0.31.0, JUMPI opcode's condition is checked after the destination validity check. However, according to Geth and OpenEthereum, the condition check should happen before the destination validity check. This is a...

RHSA-2026:0012 Red Hat Security Advisory: httpd:2.4 security update

Bulletin has no description...

CLSA-2025-1762957404 dhcp: Fix of CVE-2022-3094

Rebuild with the latest ELS version of bind to address CVE-2022-3094...

Advisory ROSA-SA-2025-3075

Software: libssh 0.9.6 OS: ROSA Virtualization 2.1 unaffected versions = libssh-0.9.6-15.rv3 affected versions libssh-0.9.6-15.rv3 CVE-ID: CVE-2025-5318 BDU-ID: CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the sftphandle function of the LibSSH library involves reading data outside of buffer...

EUVD-2021-2242

Malware in sbrugna...

EUVD-2025-13496

Malicious code in bioql PyPI...

update Security Vulnerabilities

update is a library from Aaron's personal developer. A security vulnerability exists in update version 1.0.0, which originates from easy prototype contamination via update/index.js...

CVE-2023-5491

A vulnerability, which was classified as critical, has been found in Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928. This issue affects some unknown processing of the file /sysmanage/updatelib.php. The manipulation of the argument fileupload leads to...

Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform Code Issue Vulnerability

Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform is a Multi-Service Secure Gateway Intelligent Management Platform from Beijing Baichuo, China. Byzro Networks Smart S45F Multi-Service Secure Gateway Intelligent Management Platform 20230928 and earlier versio...

CVE-2020-8935

An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allow an attacker to make an Ecallrestore function call to reallocate untrusted code and overwrite sections of the Enclave memory address. We recommend updating your library...

CVE-2020-8935

An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allow an attacker to make an Ecallrestore function call to reallocate untrusted code and overwrite sections of the Enclave memory address. We recommend updating your library...

Security of Millions At Risk Due to Unpatched Android Apps

By Deeba Ahmed High-profile Android apps still aren't using the latest version of Google app's update library, jeopardizing hundreds of millions of smartphone users' security. This is a post from HackRead.com Read the original post: Security of Millions At Risk Due to Unpatched Android Apps...

PT-2016-3942 · Libtiff +4 · Libtiff +4

Name of the Vulnerable Software and Affected Versions: libtiff versions 4.0.6 and earlier Description: The issue is related to a heap-based buffer overflow in the PackBitsPreEncode function in tif packbits.c in bmp2tiff, which allows remote attackers to execute arbitrary code or cause a denial of...

DX Library vulnerable to buffer overflow

Overview DX Library is an open source library for creating Windows application. DX Library contains a buffer overflow vulnerability due to a flaw in processing an inner function CLvsprintf. Tomoya Kitagawa reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

FreeBSD : proxychains-ng -- current path as the first directory for the library search path (9471ec47-05a2-11e5-8fda-002590263bf5)

Mamoru TASAKA reports : proxychains4 sets LDPRELOAD to dlopen libproxychains4.so and execvp the arbitrary command user has specified. proxychains4 sets the current directory as the first path to search libproxychains4.so %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...