56 matches found
CVE-2024-21211
CVE-2024-21211 affects Oracle Java SE (Compiler) and related GraalVM products. Affected: Oracle Java SE 23; GraalVM for JDK 17.0.12, 21.0.4, 23; GraalVM Enterprise Edition 20.3.15, 21.3.11. Vulnerability can be exploited by network access via multiple protocols to cause unauthorized updates/inser...
CVE-2025-22134
Vim vulnerable to a heap-buffer overflow when switching buffers with Visual mode active via :all. Root cause: Vim does not end Visual mode before opening other windows/buffers, risking access beyond the end of a line. A fix is available in Vim patch 9.1.1003, which properly resets Visual mode and...
CVE-2022-1678
CVE-2022-1678 affects Linux kernel 4.18–4.19, with memory/netns leaks due to improper sock reference handling in TCP pacing. Public Nessus/Unity advisories confirm the issue and reference kernel commits addressing the vulnerability; exploitation is described as remote via TCP pacing. Mitigation/r...
CVE-2025-29768
Summary: CVE-2025-29768 affects Vim before 9.1.1198. The issue, described as potential data loss when opening certain crafted zip files via zip.vim, requires user interaction (viewing archive and selecting a filename) to trigger. A patch exists in Vim 9.1.1198 and later. Affected scope (from prov...
CVE-2024-26306
CVE-2024-26306 concerns iperf3 prior to 3.17 when used as a server with RSA authentication under OpenSSL prior to 3.2.0. A timing side-channel exists in the RSA decryption operation, potentially enabling an attacker to recover credential plaintext after sending a large number of trial messages, d...
CVE-2024-2312
The CVE-2024-2312 issue affects GRUB2 and stems from not calling module fini functions on exit, which leaves UEFI system table hooks after exit (notably in Debian/Ubuntu’s peimage GRUB2 module). This creates a use-after-free condition and could potentially enable secure boot bypass. Connected rec...