181 matches found
TencentOS Server 3: sysstat (TSSA-2023:0106)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0106 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
CVE-2025-46713
Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 0.0.1 and prior to 1.15.12, APISETSECUREPARAM may have an arithmetic overflow deep in the memory allocation subsystem that would lead to a smaller allocation than requeste...
CVE-2020-11296
Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon...
CVE-2025-46714
Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to 1.15.12, APIGETSECUREPARAM has an arithmetic overflow leading to a small memory allocation and then a extremely large copy into the small allocation...
CVE-2025-46714 Sandboxie has Pool Buffer Overflow in SbieDrv.sys API (API_GET_SECURE_PARAM)
Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to 1.15.12, APIGETSECUREPARAM has an arithmetic overflow leading to a small memory allocation and then a extremely large copy into the small allocation...
Sandboxie 安全漏洞
Sandboxie is sandboxie-plus open source sandbox-based isolation software. A security vulnerability exists in Sandboxie versions prior to 1.3.0 through 1.15.12, which stems from an arithmetic overflow in APIGETSECUREPARAM that results in too small a memory allocation and oversized copy operations...
PT-2025-22474 · Sandboxie · Sandboxie
Name of the Vulnerable Software and Affected Versions: Sandboxie versions 1.3.0 through 1.15.12 Description: The issue is related to an arithmetic overflow in the API GET SECURE PARAM, leading to a small memory allocation followed by an extremely large copy into the small allocation...
Sandboxie 安全漏洞
Sandboxie is sandboxie-plus open source sandbox-based isolation software. A security vulnerability exists in Sandboxie versions prior to 0.0.1 through 1.15.12, which stems from an arithmetic overflow in the memory allocation subsystem that could result in a buffer overflow...
UBUNTU-CVE-2023-53032
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix overflow before widen in the bitmapipcreate function. When firstip is 0, lastip is 0xFFFFFFFF, and netmask is 31, the value of an arithmetic expression 2 netmask - maskbits - 1 is subject to overflow due to ...
CVE-2023-53032 netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function.
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix overflow before widen in the bitmapipcreate function. When firstip is 0, lastip is 0xFFFFFFFF, and netmask is 31, the value of an arithmetic expression 2 netmask - maskbits - 1 is subject to overflow due to ...
CVE-2023-53032 netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function.
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix overflow before widen in the bitmapipcreate function. When firstip is 0, lastip is 0xFFFFFFFF, and netmask is 31, the value of an arithmetic expression 2 netmask - maskbits - 1 is subject to overflow due to ...
CVE-2022-49404
In the Linux kernel, the following vulnerability has been resolved: RDMA/hfi1: Fix potential integer multiplication overflow errors When multiplying of different types, an overflow is possible even when storing the result in a larger type. This is because the conversion is done after the...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : sysstat (SUSE-SU-2025:0019-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0019-1 advisory. - CVE-2023-33204: Fixed a multiplication integer overflow in checkoverflow in common.c bsc121150...
SUSE-SU-2025:0019-1 Security update for sysstat
This update for sysstat fixes the following issues: - CVE-2023-33204: Fixed a multiplication integer overflow in checkoverflow in common.c bsc1211507 - CVE-2022-39377: Fixed arithmetic overflow in allocatestructures bsc1205224...
SUSE SLES12 Security Update : sysstat (SUSE-SU-2025:0012-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0012-1 advisory. - CVE-2023-33204: Fixed a multiplication integer overflow in checkoverflow in common.c bsc1211507 - CVE-2022-39377: Fixed arithmetic overflow i...
Security update for sysstat
This update for sysstat fixes the following issues: CVE-2023-33204: Fixed a multiplication integer overflow in checkoverflow in common.c bsc1211507 CVE-2022-39377: Fixed arithmetic overflow in allocatestructures bsc1205224 Patch Instructions: To install this SUSE update use the SUSE recommended...
SUSE-SU-2025:0012-1 Security update for sysstat
This update for sysstat fixes the following issues: - CVE-2023-33204: Fixed a multiplication integer overflow in checkoverflow in common.c bsc1211507 - CVE-2022-39377: Fixed arithmetic overflow in allocatestructures bsc1205224...
CVE-2024-51540
Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. An authenticated user with bucket or object-level access and the necessary privileges could potentially exploit this vulnerability to bypass retention policies and delete...
CVE-2024-51540
Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. An authenticated user with bucket or object-level access and the necessary privileges could potentially exploit this vulnerability to bypass retention policies and delete...
CVE-2024-51540
Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. An authenticated user with bucket or object-level access and the necessary privileges could potentially exploit this vulnerability to bypass retention policies and delete...