2586 matches found
EUVD-2024-51828
Malicious code in bioql PyPI...
EUVD-2024-53243
Malicious code in bioql PyPI...
EUVD-2023-39979
Malicious code in bioql PyPI...
EUVD-2024-53246
Malicious code in bioql PyPI...
CVE-2023-53485
CVE-2023-53485 affects the Linux kernel JFS code path. The UBSAN out-of-bounds access in fs/jfs/jfs_dmap.c:1965 was triggered when dbAllocDmapLev accessed dp->tree.stree[leafidx + LEAFIND] with a negative leafidx. The patch adds a guard in dbAllocDmapLev to return an I/O error if leafidx is ne...
ROS-20251001-08
Vulnerability of cJSON parser is related to boundary conditions in decodearrayindexfrompointer function in cJSONUtils.c. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to potentially sensitive information...
CVE-2025-27034 Improper Validation of Array Index in Multi-Mode Call Processor
Memory corruption while selecting the PLMN from SOR failed list...
CVE-2025-27034
CVE-2025-27034 affects Qualcomm Multi-Mode Call Processor (Qualcomm Snapdragon devices) with memory corruption when selecting the PLMN from the SOR failed list. The root cause is an unchecked array indexing in the firmware, enabling potential remote code execution. Connected sources specify the v...
CVE-2025-27034 Improper Validation of Array Index in Multi-Mode Call Processor
Memory corruption while selecting the PLMN from SOR failed list...
CVE-2025-23274
NVIDIA nvJPEG contains a vulnerability in jpeg encoding where a user may cause an out-of-bounds read by providing a maliciously crafted input image with dimensions that cause integer overflows in array index calculations. A successful exploit of this vulnerability may lead to denial of service...
NVIDIA nvdisasm symbol table parsing improper array index validation vulnerability
Talos Vulnerability Report TALOS-2025-2169 NVIDIA nvdisasm symbol table parsing improper array index validation vulnerability September 24, 2025 CVE Number CVE-2025-23338 SUMMARY An improper array index validation vulnerability exists in the symbol table parsing functionality of NVIDIA nvdisasm...
DEBIAN-CVE-2025-39823
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
AZL-67419 CVE-2025-39823 affecting package kernel for versions less than 6.6.104.2-1
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
UBUNTU-CVE-2025-39823
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
CVE-2025-39823
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
CVE-2025-39823 KVM: x86: use array_index_nospec with indices that come from guest
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
CVE-2025-39823
CVE-2025-39823 is a Linux kernel KVM/CPU virtualization vulnerability affecting x86 where indices from the guest (min, dest_id) were used with array_index_nospec after bounds checks. The issue enables speculative execution side-channel leakage affecting confidentiality, integrity, and availabilit...
CVE-2025-39823 KVM: x86: use array_index_nospec with indices that come from guest
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not using arrayindexnospec for indexes from clients, which could lead to a speculative execution side-channel...
CVE-2022-50315 ata: ahci: Match EM_MAX_SLOTS with SATA_PMP_MAX_PORTS
In the Linux kernel, the following vulnerability has been resolved: ata: ahci: Match EMMAXSLOTS with SATAPMPMAXPORTS UBSAN complains about array-index-out-of-bounds: 1.980703 kernel: UBSAN: array-index-out-of-bounds in /build/linux-9H675w/linux-5.15.0/drivers/ata/libahci.c:968:41 1.980709 kernel:...