LinuxSecurity.com

29.05.2025 06:51 It was discovered that a double-free in the encoder of libvpx, a multimedia library for the VP8 and VP9 video codecs, may result in denial of service and potentially the execution of arbitrary code.

29.05.2025 06:51 gs_lib_ctx_stash_sanitized_arg in base/gslibctx.c in Artifex Ghostscript before 10.05.1 lacks argument sanitization for the # case. A created PDF document includes its password in cleartext. References:

29.05.2025 06:51 A heap-based buffer overflow in Clmg before 3.3.3 can occur via a crafted file to cimg_library::CImg ::_load_analyze. References:

29.05.2025 01:22 A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment.

29.05.2025 01:22 A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment.

29.05.2025 01:22 Kerberos could be made to expose sensitive information over the network.

29.05.2025 01:22 It was discovered that Yelp, the help browser for the GNOME desktop, allowed help files to execute arbitrary scripts. Opening a malformed help file could have resulted in data exfiltration.

29.05.2025 01:22 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or cross-origin leaks.

29.05.2025 01:22 * bsc#1242809 Cross-References: * CVE-2025-3887

28.05.2025 19:21 GNU C Library could be made to crash or run programs if it processed specially crafted dynamically shared library.

28.05.2025 19:21 * bsc#1243313 Cross-References: * CVE-2025-47273

28.05.2025 19:21 * bsc#1243356 Cross-References: * CVE-2025-21490

28.05.2025 19:21 

28.05.2025 19:21 * bsc#1242809 Cross-References: * CVE-2025-3887

28.05.2025 19:21