gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.

GNOME libsoup before 3.6.1 has an infinite loop and memory consumption. during the reading of certain patterns of WebSocket data from clients.

GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. 

GNOME libsoup before 3.6.0 allows HTTP request smuggling in some configurations

Tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method

Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root

Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer

The sideband payload is passed unfiltered to the terminal in git

Redis allows denial-of-service due to malformed ACL selectors

Chromium: CVE-2024-5160 Heap buffer overflow in Dawn

Chromium: CVE-2024-5159 Heap buffer overflow in ANGLE

Chromium: CVE-2024-5158 Type Confusion in V8

Chromium: CVE-2024-5157 Use after free in Scheduling

TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.

libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpeg_l3_encode.c mpeg_l3_encoder_close.