71 matches found
SUSE CVE-2026-46191
In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbconrotatefont. The putcs implementations for the rotated buffer will return early in this case. S...
CVE-2026-46191
CVE-2026-46191 affects the Linux kernel framebuffer console (fbcon). The issue arises in fbcon_rotate_font() when a reallocation during console rotation fails; the old buffer is kept but becomes too small for the rotated font, enabling out-of-bounds font access for high-character codes. The fix c...
Astra Linux - уязвимость в expat, firefox, thunderbird
In libexpat before version 2.7.4, the doContent function does not properly determine the buffer size bufSize, as there is no check for integer overflow during the reallocation of the tag buffer...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Issue: Skipping the reallocation of the Unicode buffer when resizing the alternate screen after exiting the alt screen mode. When the enteraltscreen function saves vcunilines into vcsavedunilines and sets vcunilines to NULL, a...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: i40e: Fixed DMA mapping leaks During the reallocation of RX buffers, new DMA mappings are created for those buffers. Steps to reproduce the issue are as follows: While loop: Do For i=0; i=8160; i=i+32 Do ethtool -G enp130s0f0 ...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: Ice: Fixed DMA mapping leaks The leak was addressed when the user changed ring parameters. During the reallocation of RX buffers, new DMA mappings are created for those buffers. New buffers with a different RX ring count shoul...
JLSEC-2026-380
In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...
CLSA-2026-1773928447 expat: Fix of CVE-2026-25210
CVE-2026-25210: fix integer overflow in tag buffer reallocation in doContent function...
EUVD-2026-17233
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuvensurebuffer in libfreerdp/codec/h264.c, h264-width and h264-height are updated before the reallocation loop. If any winpralignedrecalloc call fails, the function returns FALSE but width/height are...
CLSA-2026-1774283473 Fix CVE(s): CVE-2026-25210
SECURITY UPDATE: Improve determination of buffer size bufSize in function doContent - debian/patches/CVE-2026-25210.patch: fix integer overflow in doContent tag buffer reallocation - CVE-2026-25210...
CLSA-2026-1774021165 expat: Fix of CVE-2026-25210
CVE-2026-25210: fix memory corruption via integer overflow in doContent function during tag buffer reallocation...
expat: Fix of CVE-2026-25210
CVE-2026-25210: fix memory corruption via integer overflow in doContent function during tag buffer reallocation...
CLSA-2026-1773925534 expat: Fix of CVE-2026-25210
Fix CVE-2026-25210: integer overflow in doContent tag buffer reallocation...
CLSA-2026-1774009875 Fix CVE(s): CVE-2026-25210
SECURITY UPDATE: integer overflow in doContent tag buffer reallocation. - debian/patches/CVE-2026-25210.patch: add overflow check for tag buffer reallocation - CVE-2026-25210...
CLSA-2026-1774006814 expat: Fix of CVE-2026-25210
CVE-2026-25210: fix integer overflow in tag buffer reallocation in doContent...
CLSA-2026-1773930717 Fix CVE(s): CVE-2026-25210
SECURITY UPDATE: integer overflow in doContent tag buffer reallocation. - debian/patches/CVE-2026-25210.patch: add overflow check for tag buffer reallocation - CVE-2026-25210...
CLSA-2026-1773930526 Fix CVE(s): CVE-2026-25210
SECURITY UPDATE: integer overflow in doContent tag buffer reallocation. - debian/patches/CVE-2026-25210.patch: add overflow check for tag buffer reallocation - CVE-2026-25210...
CLSA-2026-1773928179 expat: Fix of CVE-2026-25210
Fix CVE-2026-25210: integer overflow in doContent tag buffer reallocation...
CLSA-2026-1773924658 expat: Fix of CVE-2026-25210
Fix CVE-2026-25210: integer overflow in doContent tag buffer reallocation...
CLSA-2026-1773924425 expat: Fix of CVE-2026-25210
Fix CVE-2026-25210: integer overflow in doContent tag buffer reallocation...