381 matches found
EUVD-2019-18212
Malware in sbrugna...
EUVD-2025-8989
Malicious code in bioql PyPI...
EUVD-2024-52584
Malicious code in bioql PyPI...
Off-by-one Error
Overview Affected versions of this package are vulnerable to Off-by-one Error via the processing of web content. An attacker can execute arbitrary code or cause a denial of service by enticing a user to visit a specially crafted web page. Remediation Upgrade thunderbird to version 143.0 or higher...
Off-by-one Error
Overview Affected versions of this package are vulnerable to Off-by-one Error via the processing of web content. An attacker can execute arbitrary code or cause a denial of service by enticing a user to visit a specially crafted web page. Remediation Upgrade thunderbird-ESR to version 140.3 or...
Off-by-one Error
Overview Affected versions of this package are vulnerable to Off-by-one Error via the processing of web content. An attacker can execute arbitrary code or cause a denial of service by enticing a user to visit a specially crafted web page. Remediation Upgrade Firefox to version 143.0 or higher...
Linux Distros Unpatched Vulnerability : CVE-2024-23226
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4...
webkit2gtk3 security update
An update is available for webkit2gtk3. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list WebKitGTK is the port of the portable web rendering engine WebKit to the...
Linux Distros Unpatched Vulnerability : CVE-2020-27918
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud...
RHEL 8 : webkit2gtk3 (RHSA-2025:14486)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:14486 advisory. WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: angle: insufficient input validation...
Linux Distros Unpatched Vulnerability : CVE-2025-43211
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, macOS Sequoia 15.6, tvOS 18....
SUSE-SU-2025:02766-1 Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: Updated to version 2.48.5: - CVE-2025-31273: Fixed a vulnerability where processing maliciously crafted web content could lead to memory corruption. bsc1247564 - CVE-2025-31278: Fixed a vulnerability where processing maliciously crafted web...
SUSE CVE-2025-43265
An out-of-bounds read was addressed with improved input validation. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing maliciously crafted web content may disclose internal states of the app...
DEBIAN-CVE-2025-43211
The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing web content may lead to a denial-of-service...
UBUNTU-CVE-2025-43211
The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, macOS Sequoia 15.6, iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing web content may lead to a denial-of-service...
RLSA-2025:8676 Moderate: libxslt security update
libxslt is a library for transforming XML files into other textual formats including HTML, plain text, and other XML representations of the underlying data using the standard XSLT stylesheet transformation mechanism. Security Fixes: libxslt: Processing web content may disclose sensitive informati...
PT-2025-31300
Name of the Vulnerable Software and Affected Versions Safari affected versions not specified watchOS versions prior to 11.6 iOS versions prior to 18.6 iPadOS versions prior to 18.6 iPadOS version 17.7.9 tvOS versions prior to 18.6 macOS versions prior to Sequoia 15.6 visionOS versions prior to 2....
webkitgtk: Heap buffer overflow in WebCore::TextureMapperLayer::setContentsLayer leading to arbitrary code execution
A heap buffer overflow vulnerability was found in WebKitGTK. The vulnerability occurs when processing or rendering HTML content in WebKit. This flaw allows a remote attacker to trick the victim into opening a specially crafted web page, triggering a heap buffer overflow error and leading to the...
webkitgtk: improper bounds checking leading to arbitrary code execution
A vulnerability was found in webkitgtk. This issue occurs when processing web content, which may lead to arbitrary code execution...
webkitgtk: use after free vulnerability
A vulnerability was found in WebKit. When processing web content, it may lead to arbitrary code execution...