Input validation

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. When calls to external contracts are made, we write the input buffer starting at byte 28, and allocate the return buffer to start at byte 0 overlapping with the input buffer. When checking RETURNDATASIZE for dynamic...

CVE-2024-24560 Vyper external calls can overflow return data to return input buffer

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. When calls to external contracts are made, we write the input buffer starting at byte 28, and allocate the return buffer to start at byte 0 overlapping with the input buffer. When checking RETURNDATASIZE for dynamic...

Vyper Buffer Error Vulnerability

Vyper is the Pythonic smart contract language for EVM. Vyper suffers from a buffer error vulnerability that stems from mistaking erroneous data in the input buffer for return data...

Synology SSL VPN Client Security Vulnerability

Synology SSL VPN Client is a VPN client software for secure connection to Synology NAS from China-based Synology Inc. A security vulnerability exists in Synology SSL VPN Client prior to version 1.4.7-0687, which stems from a buffer replication in the cgi component that does not check the input...

The vulnerability of the DDP microprogramming software-based wireless access points from D-Link, model DAP-2622, allows a intruder to execute any arbitrary code.

The vulnerability of the DDP microprogramming software used in D-Link DAP-2622 wireless access points lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

CVE-2023-20560

Insufficient validation of the IOCTL Input Output Control input buffer in AMD Ryzen™ Master may allow a privileged attacker to provide a null value potentially resulting in a Windows crash leading to denial of service...

CVE-2023-20561

Insufficient validation of the IOCTL Input Output Control input buffer in AMD μProf may allow an authenticated user to send an arbitrary address, potentially resulting in a Windows crash, leading to a denial of service. Mitigation Please contact AMD support for updates...

CVE-2023-20562

CVE-2023-20562 involves AMD μProf (AMD uProf) where there is insufficient validation in the IOCTL input buffer. The impact described across sources is that an authenticated user may load an unsigned driver, potentially enabling arbitrary kernel execution. Connected materials explicitly discuss ex...

CVE-2023-20562

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...

SAMSUNG Mobile devices security vulnerability

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices NFC, which stems from a copy of a buffer that is not checked for input size could cause the...

AMD μProf Security Vulnerability

AMD μProf is a software analysis tool from Ultra Micro Semiconductor AMD. AMD μProf suffers from a security vulnerability that stems from insufficient validation of the IOCTL input buffer, which allows an attacker to load an unsigned driver, leading to arbitrary kernel execution...

Security Vulnerabilities fixed in Thunderbird 115.1 — Mozilla

Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violation of same-origin policy. In some circumstances, a stale value could have been used for a global variable in WASM JIT analysis. This resulted in incorrect...

Buffer Overflows

gpac is vulnerable to Buffer Overflows. The vulnerability found within the filters/loadtext.c file, which causes the program to copy the input buffer into the output buffer without verifying the buffer size resulting in buffer overflows...

SUSE CVE-2019-11461

An issue was discovered in GNOME Nautilus 3.30 prior to 3.30.6 and 3.32 prior to 3.32.1. A compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push characters into the input buffer of the thumbnailer's controlling terminal, allowing...

SUSE-SU-2023:2620-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: - CVE-2023-1255: Fixed input buffer over-read in AES-XTS implementation on 64 bit ARM bsc1210714. - CVE-2023-2650: Fixed possible DoS translating ASN.1 object identifiers bsc1211430...

Moderate: Red Hat Security Advisory: openssl security and bug fix update

An update for openssl is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

openssl: Input buffer over-read in AES-XTS implementation on 64 bit ARM

A vulnerability was found in OpenSSL. This security flaw occurs because the AES-XTS cipher decryption implementation for the 64-bit ARM platform contains an issue that could cause it to read past the input buffer, leading to a crash...

The vulnerability of the FixMapCfgRpm component (/userRpm/FixMapCfgRpm.htm) in the microprogramming software for TP-Link routers such as TL-WR940N, TL-WR841N, and TL-WR740N allows a hacker to gain unauthorized access to protected information or cause service failures.

The vulnerability of the FixMapCfgRpm component /userRpm/FixMapCfgRpm.htm of the TP-Link routers TL-WR940N, TL-WR841N, and TL-WR740N lies in the copying of buffers without checking the size of the input data during the processing of the Changed parameter. Exploiting this vulnerability can allow a...

CVE-2023-30576 Apache Guacamole: Use-after-free in handling of RDP audio input buffer

Apache Guacamole 0.9.10 through 1.5.1 may continue to reference a freed RDP audio input buffer. Depending on timing, this may allow an attacker to execute arbitrary code with the privileges of the guacd process...

CVE-2023-30576 Apache Guacamole: Use-after-free in handling of RDP audio input buffer

Apache Guacamole 0.9.10 through 1.5.1 may continue to reference a freed RDP audio input buffer. Depending on timing, this may allow an attacker to execute arbitrary code with the privileges of the guacd process...