Heap Overflow
The latest Heap Overflow coverage — news, analysis, and updates from the WindowsNews.AI desk.
Unbound DNS CVE-2026-42944 Heap Overflow Fixed in 1.25.1
NLnet Labs has released Unbound version 1.25.1 to address CVE-2026-42944, a high-severity heap-based buffer overflow vulnerability in its popular DNS resolver software. The flaw, disclosed on May 20,...
CVE-2026-3713: Critical Heap Overflow Vulnerability in libpng's pnm2png Tool
A newly disclosed vulnerability in the libpng project—tracked as CVE-2026-3713—allows a specially crafted PNM image to trigger a heap-based buffer overflow in the library's pnm2png utility. This...
CVE-2026-2648: Critical PDFium Heap Overflow Patched in Chrome 145 - What Windows Users Must Know
A critical security vulnerability in the PDF rendering engine used by billions of users worldwide has been patched in the latest Chrome update, but the implications extend far beyond Google's...
CVE-2025-31344: The GIF Vulnerability That Can Crash Your Server and How to Fix It
A heap-based buffer overflow in the widely used giflib library—tracked as CVE-2025-31344—can be triggered by a specially crafted GIF file, allowing an attacker to crash the gif2rgb utility or...
Heap overflow in GDB 13.1 and earlier allows code execution via crafted PE/COFF files
A significant security vulnerability has been identified in the GNU Debugger (GDB), one of the most widely used debugging tools across multiple operating systems including Windows, Linux, and macOS....
CVE-2023-2804: The 12-bit JPEG Heap Overflow Threat in Windows & How to Patch
A critical vulnerability lurking in a rarely used JPEG feature has exposed millions of Windows systems and applications to potential remote code execution attacks. CVE-2023-2804, a heap-based buffer...
CVE-2026-21259: Critical Excel Heap Overflow Vulnerability Demands Immediate Action
Microsoft has disclosed a critical security vulnerability in Excel that could allow attackers to execute arbitrary code on affected systems. CVE-2026-21259, a heap-based buffer overflow in Microsoft...
CVE-2025-2912: Critical HDF5 Heap Overflow Vulnerability Patched in Version 1.14.6
A critical heap-based buffer overflow vulnerability in the widely-used HDF5 scientific data format library has been patched in version 1.14.6, addressing a flaw that could allow attackers to execute...
CVE-2025-14178: Critical PHP array_merge Heap Overflow Vulnerability Patched
A critical security vulnerability in PHP's core array_merge() function has been patched in the latest updates, addressing a heap buffer overflow that could potentially lead to remote code execution....
HDF5 1.14.6 CVE-2025-7067 Heap Overflow Vulnerability: Critical Security Alert
A critical heap-based buffer overflow vulnerability has been publicly disclosed in HDF5 version 1.14.6, posing significant security risks to applications that rely on this widely-used data management...
HDF5 CVE-2025-6818 Heap Overflow: Critical Vulnerability in 1.14.6 Explained
A critical heap-based buffer overflow vulnerability has been publicly disclosed in HDF5 version 1.14.6, tracked as CVE-2025-6818, posing significant security risks to applications that rely on this...
HDF5 CVE-2025-6816 Heap Overflow: Critical Vulnerability Analysis and Mitigation Guide
A critical heap-based buffer overflow vulnerability in the HDF5 library, designated CVE-2025-6816, has been publicly disclosed and patched, posing a significant security risk to countless...