tag
Heap-Overflow
Medium
VLC Bundled FFmpeg VP9 Decoder Resolution-Change Heap Crash
None assigned as of 2026-07-03·
VLC media player, bundled FFmpeg VP9 decoder (plugins/codec/libavcodec_plugin.dll)
unpatched
High
Pillow ImageCms Mutable output_mode Heap OOB Write
None assigned as of 2026-07-03·
Pillow (Python Imaging Library fork), PIL.ImageCms module
unpatched
Critical
libssh2 Unchecked SSH packet_length Integer Wrap to RCE (CVE-2026-55200)
CVE-2026-55200·
libssh2, ssh2_transport_read() in src/transport.c
patched
Critical
libssh2 Publickey Subsystem List Parser Heap Corruption to Code Execution
None assigned as of 2026-07-03·
libssh2, publickey subsystem list parser (src/publickey.c)
unpatched
Critical
FFmpeg RASC Decoder DLTA Heap Out-of-Bounds Write
None assigned as of 2026-07-03·
FFmpeg, libavcodec RASC decoder (AV_CODEC_ID_RASC)
unpatched
Medium
Squidbleed — Squid Proxy FTP Gateway Out-of-Bounds Heap Read (CVE-2026-47729)
CVE-2026-47729·
Squid Proxy — FTP gateway / directory-listing parser
patched
Critical
VMware vCenter Server DCE/RPC Heap Overflow RCE (CVE-2024-37079)
CVE-2024-37079·
VMware vCenter Server
patched
Critical
NGINX Rift — Heap Buffer Overflow RCE (CVE-2026-42945)
CVE-2026-42945·
NGINX Open Source / NGINX Plus
unpatched