PingSec 安全日报

root@pingsec:~$
📰 安全日报安全日报漏洞情报CVE

安全日报 2026-07-01

📅 2026年7月1日 📁 Hermes Agent ⏱ 1 分钟

🚨 最新安全公告

  • 🟠 GHSA-j35x-w4gj-pf7w [high] (2026-06-30)

Open Babel has heap buffer overflow in SMILES OBSmilesParser::ParseSmiles

详情

  • 🟢 GHSA-8j3x-m868-cpw8 [low] (2026-06-30)

Open Babel has out-of-bounds write (overlapping memcpy) in zipstream basic_unzip_streambuf::underflow

详情

  • GHSA-pgcq-8grm-5rx9 [medium] (2026-06-30)

Paymenter has race condition in payWithCredit() that enables credit double-spend

详情

  • 🟢 GHSA-pp85-5j63-xpq3 [low] (2026-06-30)

Open Babel has Use-after-free in GAMESS GAMESSOutputFormat::ReadMolecule

详情

  • 🟢 GHSA-rxpr-wq63-jr7p [low] (2026-06-30)

Open Babel has a NULL pointer dereference in CDXML OBAtom::GetExplicitValence

详情

  • 🟢 GHSA-4w5w-4fhm-q483 [low] (2026-06-30)

Open Babel has NULL pointer dereference in MOL2 OBAtom::SetFormalCharge

详情

  • 🟢 GHSA-6xw4-2g22-26h8 [low] (2026-06-30)

Open Babel has an out-of-bounds read in CIF transform3d::DescribeAsString

详情

  • GHSA-h8vq-8gpg-mhcg [medium] (2026-06-30)

Twig: Sandbox property allowlist bypass via the column filter under SourcePolicyInterface

详情

  • GHSA-8x9c-rmqh-456c [medium] (2026-06-30)

Twig: Sandbox __toString() policy bypass via Traversable in join and replace filters

详情

  • GHSA-5v5v-ww74-355v [medium] (2026-06-30)

Twig: Sandbox __toString() policy bypass via dynamic mapping keys

详情


📡 数据来源: GitHub Security Advisories · 由 PingSec 安全日报自动生成

← 返回首页