EUVD-2025-28067

Malicious code in bioql PyPI...

CVE-2025-46715

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to version 1.15.12, ApiGetSecureParam fails to sanitize incoming pointers, and implicitly trusts that the pointer the user has passed in is safe to write t...

CVE-2025-46713

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 0.0.1 and prior to 1.15.12, APISETSECUREPARAM may have an arithmetic overflow deep in the memory allocation subsystem that would lead to a smaller allocation than requeste...

CVE-2025-46716

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to version 1.15.12, ApiSetSecureParam fails to sanitize incoming pointers, and implicitly trusts that the pointer the user has passed in is safe to read...

CVE-2025-46716

CVE-2025-46716 affects Sandboxie (Sandboxie or Sandboxie-plus) for Windows. The issue is in Api_SetSecureParam, which prior to v1.15.12 fails to sanitize incoming pointers and implicitly trusts the user-supplied pointer. As a result, SetRegValue can read an arbitrary address (potentially a kernel...

Amazon Linux 2 : golang (ALAS-2021-1657)

The version of golang installed on the remote host is prior to 1.15.12-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2021-1657 advisory. A vulnerability was found in net/http of the Go standard library when parsing very large HTTP header values, causing a crash and...

Security fix for the ALT Linux 9 package golang version 1.15.12-alt1

1.15.12-alt1 built May 11, 2021 Alexey Shabalin in task 271288 May 6, 2021 Alexey Shabalin - New version 1.15.12. - Fixes: + CVE-2021-31525...