ROS-20251217-7322

A vulnerability in the Redis database management system DBMS involves integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

ROS-20251217-7321

A vulnerability in the Redis database management system DBMS is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

ROS-20251216-7315

A vulnerability in the ssh component of the OpenSSH cryptographic protection tool is related to incorrect processing of special elements. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

ROS-20251216-7328

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7324

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7301

A vulnerability in the ReadJXLImage function of the GraphicsMagick graphical editor is related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251216-7371

A vulnerability in the Extensions component of Google Chrome and Microsoft Edge browsers is related to incorrect resource initialization. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

ROS-20251216-7358

A vulnerability in the Extensions component of Google Chrome and Microsoft Edge browsers is related to flaws in the implementation of security checks for standard elements. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...

ROS-20251216-7346

Vulnerability in gimp related to stack buffer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

ROS-20251216-7345

A vulnerability in the GIMP graphical editor is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code using a specially crafted XWD file...

ROS-20251216-7341

A vulnerability in the qemuFwCfgMmioRead function of the Box/Devices/PC/DevQemuFwCfg.cpp component of the Oracle VM VirtualBox virtualization software tool is related to integer overflow. Exploitation of the vulnerability may allow an intruder to gain unauthorized access to protected information...

ROS-20251216-7339

A vulnerability in the qemuFwCfgMmioRead function of the Box/Devices/PC/DevQemuFwCfg.cpp component of the Oracle VM VirtualBox virtualization software tool is related to integer overflow. Exploitation of the vulnerability may allow an intruder to gain unauthorized access to protected information...

ROS-20251216-7337

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to an access control flaw. Exploitation of the vulnerability may allow an attacker to gain unauthorized access to protected information...

ROS-20251216-7334

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7305

Vulnerability in gnuplot related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251216-7319

Vulnerability in VirtualBox-kmod related to insecure privilege management. Exploitation of the vulnerability could allow an attacker to escalate privileges...

ROS-20251216-7347

Vulnerability in gimp related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251216-7317

Vulnerability in ImageMagick related to integer overflow. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

ROS-20251216-7314

Vulnerability in qt6-qtbase related to buffer overflow in dynamic memory. Exploitation of the vulnerability may allow a remote attacker to execute arbitrary code...

ROS-20251216-7323

A vulnerability in the "virtioCoreR3VirtqInfo" function of the "VBoxManage debugvm" command of the Oracle VM VirtualBox virtualization software tool is related to a stack-based buffer overflow. Exploitation of the vulnerability could allow an attacker to execute arbitrary code and gain unauthoriz...

ROS-20251216-7318

Vulnerability in VirtualBox related to insecure privilege management. Exploitation of the vulnerability could allow an attacker to escalate privileges...

ROS-20251216-7368

A vulnerability in the V8 JavaScript script handler of Google Chrome and Microsoft Edge browsers is related to reading data outside the buffer boundaries in memory. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

ROS-20251216-7363

A vulnerability in the Extensions component of Google Chrome and Microsoft Edge browsers is related to access control flaws. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

ROS-20251216-7343

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7348

Vulnerability in gimp related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251216-7351

Vulnerability in containerd related to lack of memory release after effective lifetime. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251216-7357

A vulnerability in the Media component of Google Chrome and Microsoft Edge browsers is related to insufficient control over the resource during its existence. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface using a specially crafted HTML page...

ROS-20251216-7353

Vulnerability in golang-x-crypto related to the implementation of an incorrect control flow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251216-7349

A vulnerability in the Gimp image processing library is related to writing beyond buffer boundaries. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by loading a specially crafted ICNS file...

ROS-20251216-7330

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7325

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7310

Vulnerability in mediawiki related to a flaw in the authentication procedure. Exploitation of the vulnerability could allow an attacker acting remotely to escalate their privileges...

ROS-20251216-7309

Vulnerability in guacamole-server related to unchecked array indexing. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected information...

ROS-20251216-7303

Vulnerability in GraphicsMagick related to reading outside buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251216-7335

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7342

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7365

A vulnerability in the Ozone component of Google Chrome and Microsoft Edge browsers is related to memory usage after it has been freed. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information...

ROS-20251216-7364

A vulnerability in the PageInfo component of Google Chrome and Microsoft Edge browsers is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to affect the confidentiality, integrity and availability of protected information...

ROS-20251216-7332

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7331

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

ROS-20251216-7302

Vulnerability in GraphicsMagick related to the use of an uninitialized resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20251216-7366

A vulnerability in the App-Bound Encryption component of Google Chrome and Microsoft Edge browsers is related to flaws in the implementation of security checks for standard elements. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to confidential informati...

ROS-20251216-7354

A vulnerability in the isolated container runc tool is associated with a race condition that allows link tracking. Exploitation of the vulnerability could allow an attacker to impact the confidentiality, integrity and availability of protected information...

ROS-20251216-7322

A vulnerability in the "virtioCoreR3VirtqInfo" function of the "VBoxManage debugvm" command of the Oracle VM VirtualBox virtualization software tool is related to a stack-based buffer overflow. Exploitation of the vulnerability could allow an attacker to execute arbitrary code and gain unauthoriz...

ROS-20251216-7321

A vulnerability in the "virtioCoreR3VirtqInfo" function of the "VBoxManage debugvm" command of the Oracle VM VirtualBox virtualization software tool is related to a stack-based buffer overflow. Exploitation of the vulnerability could allow an attacker to execute arbitrary code and gain unauthoriz...

ROS-20251216-7320

Vulnerability in virtualbox-guest-additions related to insecure privilege management. Exploitation of the vulnerability could allow an attacker to escalate privileges...

ROS-20251216-7313

A vulnerability in the V8 component of Google Chrome and Microsoft Edge browsers is related to data type conversion errors. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code...

ROS-20251216-7361

A vulnerability in the Storage component of Google Chrome and Microsoft Edge browsers is related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface using a specially crafted HTML page...

ROS-20251216-7373

A vulnerability in the Omnibox component of Google Chrome and Microsoft Edge browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface using a specially crafted HTML page...

ROS-20251216-7307

A vulnerability in the FTP Client component of the Apache Commons Net library is related to the use of open redirection with insufficient input data validation during PASV response processing. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected...