27 matches found
CVE-2026-11696
Uninitialized Use in Video in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...
CVE-2026-11696
Uninitialized Use in Video in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...
CVE-2026-11696
Google Chrome on Windows is affected by CVE-2026-11696 due to an uninitialized use in the Video component prior to 149.0.7827.103. A remote attacker who has already gained renderer process access could read potentially sensitive data from process memory via a crafted HTML page. Impact: disclosure...
CVE-2026-11696
Uninitialized Use in Video in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...
CVE-2026-11696
Uninitialized Use in Video in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...
CVE-2026-6359
Use after free in Video in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: reject duplicate device on updates CVE-2025-38678 In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping behavior in ksmmadvise CVE-2025-40040 In the Lin...
SUSE-SU-2025:4195-1 Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues: - Update Mozilla Thunderbird to version 140.5 bsc1253188 - CVE-2025-13012: Race condition in the Graphics component. - CVE-2025-13016: Incorrect boundary conditions in the JavaScript: WebAssembly component. - CVE-2025-13017: Same-orig...
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 140.5.0 ESR bsc1253188 CVE-2025-13012: Race condition in the Graphics component. CVE-2025-13016: Incorrect boundary conditions in the JavaScript: WebAssembly component. CVE-2025-13017: Same-origi...
RLSA-2025:21881 Important: thunderbird security update
Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: Mitigation bypass in the DOM: Security component CVE-2025-13018 firefox: Use-after-free in the Audio/Video component CVE-2025-13014 firefox: Incorrect boundary conditions in the JavaScript: WebAssembly compone...
MGASA-2025-0305 Updated thunderbird packages fix security vulnerabilities
Race condition in the Graphics component. CVE-2025-13012 Mitigation bypass in the DOM: Core & HTML component. CVE-2025-13013 CVE-2025-13014: Use-after-free in the Audio/Video component. CVE-2025-13014 Spoofing issue in Firefox. CVE-2025-13015 Incorrect boundary conditions in the JavaScript:...
Security Vulnerabilities fixed in Thunderbird 140.5 — Mozilla
In general, these flaws cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts. CVE-2025-13012: Race condition in the Graphics component Reporter Irvan Kurniawan Impact high...
EUVD-2025-30995
Malicious code in bioql PyPI...
CVE-2025-27033
Information disclosure while running video usecase having rogue firmware...
CVE-2025-27033
Information disclosure while running video usecase having rogue firmware...
CVE-2025-27033 Buffer Over-read in Video
Information disclosure while running video usecase having rogue firmware...
CVE-2025-27033 Buffer Over-read in Video
Information disclosure while running video usecase having rogue firmware...
PT-2025-39273
Name of the Vulnerable Software and Affected Versions Affected versions not specified Description An information disclosure issue exists when running a video usecase with rogue firmware. The issue involves the disclosure of information during video processing when utilizing compromised firmware...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm, an American company. A security vulnerability exists in Qualcomm Chipsets that stems from the presence of malicious firmware when running a video use case, which could lead to information disclosure...
Linux Distros Unpatched Vulnerability : CVE-2019-9458
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Android kernel in the video driver there is a use after free due to a race condition. This could lead to local escalation of privilege with no additional...