CVE-2025-32990
- EPSS 0.72%
- Veröffentlicht 10.07.2025 09:41:46
- Zuletzt bearbeitet 30.06.2026 01:16:26
A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds (OOB) NULL point...
CVE-2025-32989
- EPSS 1.18%
- Veröffentlicht 10.07.2025 08:05:26
- Zuletzt bearbeitet 30.06.2026 01:16:26
A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency (CT) Signed Certificate Timestamp (SCT) extension during X.509 certificate parsing. This flaw allows a malicious user to create a certificate cont...
CVE-2025-32988
- EPSS 1.19%
- Veröffentlicht 10.07.2025 08:04:57
- Zuletzt bearbeitet 30.06.2026 01:16:26
A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject Alternative Name (SAN) entries containing an otherName. If the type-id OID is invalid or malformed, GnuTLS wil...
CVE-2025-5351
- EPSS 0.49%
- Veröffentlicht 04.07.2025 08:16:47
- Zuletzt bearbeitet 30.06.2026 11:16:24
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading t...
CVE-2025-5372
- EPSS 0.41%
- Veröffentlicht 04.07.2025 06:01:27
- Zuletzt bearbeitet 15.06.2026 03:16:22
A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the ssh_kdf() function responsible for key derivation. Due to inconsistent interpretation of return values where OpenSSL uses 0 to indicate failure and li...
CVE-2025-5318
- EPSS 2.39%
- Veröffentlicht 24.06.2025 14:15:30
- Zuletzt bearbeitet 30.06.2026 11:16:24
A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and t...
CVE-2025-6170
- EPSS 0.19%
- Veröffentlicht 16.06.2025 15:24:05
- Zuletzt bearbeitet 08.07.2026 15:16:24
A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an overly long command, the program does not check the input size properly, which can cause it to crash. This issue might allow...
CVE-2025-6021
- EPSS 1.07%
- Veröffentlicht 12.06.2025 12:49:16
- Zuletzt bearbeitet 30.06.2026 11:16:27
A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.
CVE-2025-5914
- EPSS 0.33%
- Veröffentlicht 09.06.2025 19:53:48
- Zuletzt bearbeitet 30.06.2026 11:16:25
A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free ...
- EPSS 0.17%
- Veröffentlicht 09.06.2025 19:49:13
- Zuletzt bearbeitet 30.06.2026 11:16:25
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can...