春雨润无声,挖洞正当时——3月众测活动超全攻略
春天从不辜负破土的努力
Aggregator
LithiumWare: вирус размером 103 КБ требует выкуп в $900,000
5 months 2 weeks ago
Крошечный файл нейтрализует системы защиты и надёжно шифрует данные жертв.
CVE-2025-2177 | libzvbi up to 0.2.43 src/search.c vbi_search_new pat_len integer overflow (GHSA-g7cg-7gw9-v8cf)
5 months 2 weeks ago
A vulnerability classified as critical was found in libzvbi up to 0.2.43. This vulnerability affects the function vbi_search_new of the file src/search.c. The manipulation of the argument pat_len leads to integer overflow.
This vulnerability was named CVE-2025-2177. The attack can be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional.
vuldb.com
CVE-2025-2173 | libzvbi up to 0.2.43 src/conv.c vbi_strndup_iconv_ucs2 src_length uninitialized pointer (GHSA-g7cg-7gw9-v8cf)
5 months 2 weeks ago
A vulnerability was found in libzvbi up to 0.2.43. It has been classified as problematic. Affected is the function vbi_strndup_iconv_ucs2 of the file src/conv.c. The manipulation of the argument src_length leads to uninitialized pointer.
This vulnerability is traded as CVE-2025-2173. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional.
vuldb.com
Конец цифровой империи? Минюст США готовит мощный удар по Google
5 months 2 weeks ago
Флагманские продукты корпорации рискуют «уйти с молотка».
CVE-2025-2177 | libzvbi up to 0.2.43 src/search.c vbi_search_new pat_len integer overflow (GHSA-g7cg-7gw9-v8cf)
5 months 2 weeks ago
A vulnerability classified as critical was found in libzvbi up to 0.2.43. This vulnerability affects the function vbi_search_new of the file src/search.c. The manipulation of the argument pat_len leads to integer overflow.
This vulnerability was named CVE-2025-2177. The attack can be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional.
vuldb.com
CVE-2025-2176 | libzvbi up to 0.2.43 src/io-sim.c vbi_capture_sim_load_caption integer overflow (GHSA-g7cg-7gw9-v8cf)
5 months 2 weeks ago
A vulnerability classified as critical has been found in libzvbi up to 0.2.43. This affects the function vbi_capture_sim_load_caption of the file src/io-sim.c. The manipulation leads to integer overflow.
This vulnerability is uniquely identified as CVE-2025-2176. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional.
vuldb.com
CVE-2025-2175 | libzvbi up to 0.2.43 _vbi_strndup_iconv integer overflow (GHSA-g7cg-7gw9-v8cf)
5 months 2 weeks ago
A vulnerability was found in libzvbi up to 0.2.43. It has been rated as problematic. Affected by this issue is the function _vbi_strndup_iconv. The manipulation leads to integer overflow.
This vulnerability is handled as CVE-2025-2175. The attack may be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional.
vuldb.com
CVE-2025-2174 | libzvbi up to 0.2.43 src/conv.c vbi_strndup_iconv_ucs2 src_length integer overflow (GHSA-g7cg-7gw9-v8cf)
5 months 2 weeks ago
A vulnerability was found in libzvbi up to 0.2.43. It has been declared as problematic. Affected by this vulnerability is the function vbi_strndup_iconv_ucs2 of the file src/conv.c. The manipulation of the argument src_length leads to integer overflow.
This vulnerability is known as CVE-2025-2174. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional.
vuldb.com
CVE-2025-2173 | libzvbi up to 0.2.43 src/conv.c vbi_strndup_iconv_ucs2 src_length uninitialized pointer (GHSA-g7cg-7gw9-v8cf)
5 months 2 weeks ago
A vulnerability was found in libzvbi up to 0.2.43. It has been classified as problematic. Affected is the function vbi_strndup_iconv_ucs2 of the file src/conv.c. The manipulation of the argument src_length leads to uninitialized pointer.
This vulnerability is traded as CVE-2025-2173. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional.
vuldb.com
Submit #512803: Open Source libzvbi 0.2.43 Integer Overflow -> Heap Overflow (vbi_search_new) [Accepted]
5 months 2 weeks ago
Submit #512803 / VDB-299206
ninpwn
Submit #512802: Open Source libzvbi 0.2.43 Integer Overflow -> Heap Overflow (vbi_capture_sim_load_caption) [Accepted]
5 months 2 weeks ago
Submit #512802 / VDB-299205
ninpwn
Submit #512801: Open Source libzvbi 0.2.43 Integer Overflow -> Heap Overflow (_vbi_strndup_iconv) [Accepted]
5 months 2 weeks ago
Submit #512801 / VDB-299204
ninpwn
Submit #512800: Open Source libzvbi 0.2.43 Integer Overflow -> Heap Overflow [Accepted]
5 months 2 weeks ago
Submit #512800 / VDB-299203
ninpwn
Submit #512798: Open Source libzvbi 0.2.43 Unitinialized Heap Read [Accepted]
5 months 2 weeks ago
Submit #512798 / VDB-299202
ninpwn
漏洞通告 | Apache Tomcat 远程代码执行漏洞
5 months 2 weeks ago
立即查看漏洞详情
漏洞通告 | Apache Tomcat 远程代码执行漏洞
5 months 2 weeks ago
立即查看漏洞详情
漏洞通告 | Apache Tomcat 远程代码执行漏洞
5 months 2 weeks ago
立即查看漏洞详情
漏洞通告 | Apache Tomcat 远程代码执行漏洞
5 months 2 weeks ago
立即查看漏洞详情
漏洞通告 | Apache Tomcat 远程代码执行漏洞
5 months 2 weeks ago
立即查看漏洞详情