420 matches found
CVE-2026-46197
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: validate SVM ioctl nattr against buffer size Validate nattr field against the buffer size, preventing out-of-bounds buffer access via user-controlled attribute count. cherry picked from commit...
CVE-2026-46218 drm/amdgpu: Add bounds checking to ib_{get,set}_value
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add bounds checking to ibget,setvalue The uvd/vce/vcn code accesses the IB at predefined offsets without checking that the IB is large enough. Check the bounds here. The caller is responsible for making sure it can...
UBUNTU-CVE-2026-46016
In the Linux kernel, the following vulnerability has been resolved: remoteproc: xlnx: Only access buffer information if IPI is buffered In the receive callback check if message is NULL to prevent possibility of crash by NULL pointer dereferencing...
EUVD-2026-32397
In the Linux kernel, the following vulnerability has been resolved: remoteproc: xlnx: Only access buffer information if IPI is buffered In the receive callback check if message is NULL to prevent possibility of crash by NULL pointer dereferencing...
CVE-2026-46016
remoteproc: xlnx: Only access buffer information if IPI is buffered...
CLSA-2026-1778674879 opensc: Fix of CVE-2024-45619
CVE-2024-45619: fix incorrect access of initialized parts of partially filled buffers triggered by crafted APDU responses from USB devices or smart cards...
CLSA-2026-1778602862 vim: Fix of 4 CVEs
CVE-2022-2175: fix invalid memory access in cmdlineinsertreg when using an expression on the command line; save/restore newcmdpos around the expression evaluation exgetln.c, upstream patch 8.2.5148; hunk 3 context adjusted for 8.2.2637 - CVE-2022-3256: fix use-after-free in movemark when an...
PT-2026-38025
GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been discovered in gst wavparse cue chunk within gstwavparse.c. The vulnerability happens due to a discrepancy between the size of the data buffer and the size value provided to the function. This mismatc...
Astra Linux - уязвимость в opensc
A vulnerability was discovered in OpenSC, OpenSC tools, the PKCS11 module, minidrivers, and CTKs. An attacker could use a specially crafted USB device or smart card, which would send a specially crafted response to APDUs to the system. When buffers are partially filled with data, the initialized...
Astra Linux - уязвимость в opensc
A vulnerability was discovered in the pkcs15-init tool in OpenSC. An attacker could use a specially crafted USB Device or Smart Card, which would send a specially crafted response to APDUs to the system. When buffers are partially filled with data, the initialized parts of the buffer can be...
CVE-2023-20585
Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity...
UBUNTU-CVE-2023-20585
Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity...
CVE-2023-20585
Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity...
CVE-2023-20585
CVE-2023-20585 : Insufficient checks of the RMP on host buffer access in IOMMU may allow a privileged attacker with a compromised hypervisor to trigger an out-of-bounds condition, risking confidentiality of guest memory and integrity. The vulnerability is associated with AMD IOMMU (RMP) handling....
CVE-2023-20585
Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity...
CVE-2023-20585
Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity...
Google Chrome WebAssembly Memory Out-of-Bounds Access Vulnerability
Google Chrome is a free web browser developed by Google Inc. A memory out-of-bounds access vulnerability exists in Google Chrome WebAssembly, which stems from improper memory buffer access control and can be exploited by remote attackers to execute arbitrary code...
CVE-2025-47377
Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005665)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005665 advisory. In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit 30696378f68a pstore/ram: Do not...
Google Chrome 安全漏洞
Google Chrome is a free web browser developed by Google Inc. A memory out-of-bounds access vulnerability exists in Google Chrome WebAssembly, which stems from improper memory buffer access control and can be exploited by remote attackers to execute arbitrary code...