CVE-2026-0140

CVE-2026-0140 describes a potential out-of-bounds read in RtpPacket::decodePacket caused by an integer overflow that could lead to remote information disclosure. Exploitation requires user interaction; no remote code execution is stated. Connected sources (NVD, ENISA EUVD, OSV, PT-OSSecurity, And...

CVE-2026-0131

The CVE-2026-0131 entry affects the code path In RtpPacket::decodePacket, where an integer overflow can cause an out-of-bounds access. This vulnerability could enable local escalation of privilege with no additional execution privileges required, and exploitation requires user interaction. Connec...

Updated libxmp packages fix security vulnerabilities

CVE-2023-45679: Attempt to free an uninitialized memory pointer in vorbisdeinit CVE-2023-45680: Null pointer dereference in vorbisdeinit CVE-2023-45681: Out of bounds heap buffer write CVE-2023-45676: Multi-byte write heap buffer overflow in startdecoder CVE-2023-45677: Heap buffer out of bounds...

PUB-A-479211693

In RtpPacket::decodePacket, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...

Integer Underflow (Wrap or Wraparound)

Overview Affected versions of this package are vulnerable to Integer Underflow Wrap or Wraparound via the sslDecodePacket process. An attacker can cause a program crash and trigger a large out-of-bounds read by injecting a malformed TLS Application Data record that is shorter than the required...

Integer Underflow (Wrap or Wraparound)

Overview Affected versions of this package are vulnerable to Integer Underflow Wrap or Wraparound via the sslDecodePacket process. An attacker can cause a heap buffer overflow and application crash by injecting a malformed TLS Application Data record that is shorter than the required explicit IV...

Linux Distros Unpatched Vulnerability : CVE-2025-39839

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - batman-adv: fix OOB read/write in network-coding decode batadvncskbdecodepacket trusts codedlen and checks only against skb-len. XOR starts at sizeofstruct...

The vulnerability of the sftpdecode_channel_data_to_packet() function in the libssh library allows a hacker to induce a service failure.

The vulnerability of the sftpdecodechanneldatatopacket function in the libssh library is related to integer overflow. Exploiting this vulnerability could allow a malicious actor to cause a service failure remotely...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound due to incorrect validity check in the sftpdecodechanneldatatopacket function. An attacker can cause the server to crash by sending specially crafted SFTP packets with payload size field set to value...

PT-2023-27252 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version Description: The issue is related to a possible out of bounds write due to a heap buffer overflow in the a2dp vendor opus decoder decode packet function of a2dp vendor opus decoder.cc. This could le...

CVE-2021-45934

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClientDecodePacket called from MqttClientHandlePacket and MqttClientWaitType...

CVE-2021-45937

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClientDecodePacket called from MqttClientWaitType and MqttClientConnect...

Wolfssl 缓冲区错误漏洞

Wolfssl CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from Wolfssl, USA. A buffer error vulnerability exists in Wolfssl wolfMQTT, which stems from a call to MqttClientDecodePacket from the product's MqttClientHandlePacket and MqttClientWaitTyp...

Wolfssl 缓冲区错误漏洞

Wolfssl CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from Wolfssl, USA. A buffer error vulnerability exists in Wolfssl wolfMQTT that stems from the failure of the product's MqttClientWaitType and MqttClientConnect to correctly determine memor...