Microsoft Outlook Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Visual Studio Information Disclosure Vulnerability

Visual Studio Remote Code Execution Vulnerability

Windows Common Log File System Driver Elevation of Privilege Vulnerability

HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sample_conv_regsub heap-based buffer overflow because of mishandling of the replacement of multiple short patterns with a longer one.

Sudo before 1.9.17p1 allows local users to obtain root access

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL

PyTorch: `torch.load` with `weights_only=True` leads to remote code execution

Erlang/OTP SSH Vulnerable to Pre-Authentication RCE

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API (Python bindings) because of an incorrect return value. This occurs in xmlPythonFileRead and xmlPythonFileReadRaw because of a difference between bytes and characters.

Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow

Helm Allows A Specially Crafted Chart Archive To Cause Out Of Memory Termination

Libsoup: heap buffer overflows in sniff_feed_or_html() and skip_insignificant_space()

Libsoup: heap buffer overflow in sniff_unknown()

Libsoup: segmentation fault when parsing malformed data uri

Libsoup: integer overflow in append_param_quoted

Libsoup: denial of service attack to websocket server

Redis allows out of bounds writes in hyperloglog commands leading to RCE