Lucene search
K

7 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in libxml2

A use-after-free vulnerability was discovered in libxml2. This issue occurs when parsing XPath elements under certain circumstances, especially when the XML schema includes the schema element. This flaw allows a malicious actor to create a malicious XML document that can be used as input for...

9.1CVSS6.7AI score0.00669EPSS
Exploits0References2
OSV
OSV
added 2025/07/24 4:23 p.m.5 views

CLSA-2025-1753374216 Fix CVE(s): CVE-2025-49794, CVE-2025-49796

SECURITY UPDATE: memory vulnerabilities in schematron - debian/patches/CVE-2025-49794CVE-2025-49796.patch: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements and memory corruption issue triggered by processing sch:name elements in input XML file - CVE-2025-49794 -...

9.1CVSS7AI score0.01437EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/15 4:29 p.m.6 views

firefox: thunderbird: Unsafe attribute access during XPath parsing

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access an...

4.8CVSS7.3AI score0.00267EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/05/13 4:5 p.m.7 views

firefox: thunderbird: Unsafe attribute access during XPath parsing

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access an...

4.8CVSS7.3AI score0.00267EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/05/13 1:59 p.m.7 views

firefox: thunderbird: Unsafe attribute access during XPath parsing

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access an...

4.8CVSS7.3AI score0.00267EPSS
Exploits0References9
SUSE Linux
SUSE Linux
added 2025/05/02 1:15 p.m.2 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 128.10.0 ESR MFSA 2025-29 bsc1241621: CVE-2025-2817: Potential privilege escalation in Firefox Updater CVE-2025-4082: WebGL shader attribute memory corruption in Firefox for macOS CVE-2025-4083: Process...

8.8CVSS8.9AI score0.00538EPSS
Exploits0References16
OSV
OSV
added 2025/04/29 2:15 p.m.2 views

DEBIAN-CVE-2025-4087

A vulnerability was identified in Thunderbird where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access and potentially, memory corruption. This vulnerability was fixed in Firefox 138, Firefox ESR 128.10,...

4.8CVSS6.9AI score0.00267EPSS
Exploits0References1
Rows per page
Query Builder