ROS-20260401-73-0032

Vulnerability in libpng15 related to buffer copying without checking input size. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

CVE-2026-24810

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb src/cjson modules. This vulnerability is associated with program files cJSON.Cc. This issue affects rethinkdb: through v2.4.4...

CVE-2025-47394

CVE-2025-47394 describes memory corruption caused by incorrect offset calculations when copying overlapping buffers during memory operations. The Red Hat entry echoes this description, noting a memory corruption condition from overlapping-buffer copy due to miscalculated offsets. The available do...

CVE-2025-14310

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4...

Linux Distros Unpatched Vulnerability : CVE-2023-53513

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nbd: fix incomplete validation of ioctl arg We tested and found an alarm caused by nbdioctl arg without verification. The UBSAN warning calltrace like below:...

EUVD-2018-17635

Malware in sbrugna...

EUVD-2018-17634

Malware in sbrugna...

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') in Wireshark

...

Vulnerability of the wl1251cmd_scan() function in the drivers/net/wireless/ti/wl1251/cmd.c module – A driver for supporting wireless adapter devices from Texas Instruments’ Linux kernel. This vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the wl1251cmdscan function in the drivers/net/wireless/ti/wl1251/cmd.c module – The wireless adapter support driver from Texas Instruments in the Linux operating system is vulnerable to a buffer overflow attack without proper input data size checking a classic buffer overflow...

PT-2025-25856

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A potential out-of-bound write issue has been resolved in the Linux kernel, specifically in the gpio: virtuser component. The problem occurred when the input size exceeded the buffer siz...

The vulnerability of the Access profile component of the access control and remote authentication solution BIG-IP Access Policy Manager allows a perpetrator to trigger a service failure.

The vulnerability of the Access profile component of the BIG-IP Access Policy Manager access control and remote authentication system lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to cause service...

The vulnerability of the sub_422eb8() function in Linksys E8450 Wi-Fi router software allows a hacker to induce a service failure.

The vulnerability of the sub422eb8 function in Linksys E8450 Wi-Fi routers’ microprogrammed software involves copying buffers without checking the size of the input data during the strcopy parameter processing. Exploiting this vulnerability can allow an attacker to cause service interruptions...

The vulnerability of the setDiagnosisCfg() function in the microprogramming software of TOTOLINK AC1200 T8 routers allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the setDiagnosisCfg function in the microprogramming software of TOTOLINK AC1200 T8 routers lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the SLP UDP server slpd-lite in the OpenBMC operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the SLP UDP server slpd-lite in the OpenBMC operating system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to compromise privacy, integrity, and accessibility by sending a specially...

The vulnerability of the ff_bwdif_filter_intra_c component (libavfilter/bwdifdsp.c) in the FFmpeg multimedia library allows a hacker to execute arbitrary code.

The vulnerability of the ffbwdiffilterintrac component libavfilter/bwdifdsp.c in the FFmpeg multimedia library lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CVE-2024-31225 Lack of size check and buffer overflow in RIOT

RIOT is a real-time multi-threading operating system that supports a range of devices that are typically 8-bit, 16-bit and 32-bit microcontrollers. The onrdinit function does not implement a size check before copying data to the resultbuf static buffer. If an attacker can craft a long enough...

Buffer Overflow

PaddlePaddle is vulnerable to Buffer Overflow. The vulnerability is caused due to missing input size checks within the paddle.searchsorted function, which may lead to Denial of Service DoS...

The vulnerability in the embedded software of Netgear R6250 lies in the copying of buffers without checking the size of the input data. This allows an attacker to trigger buffer overflows.

The vulnerability in the embedded software of Netgear R6250 routers lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to trigger buffer overflows remotely...

The vulnerability of the identifier processing function in Zyxel ATP network devices, such as USG FLEX, USG FLEX50(W), USG20(W)-VPN, VPN, ZyWALL/USG, arises from copying buffers without checking the size of the input data. This allows attackers to execute arbitrary code or cause service interruptions.

The vulnerability of the identifier processing function in Zyxel ATP, USG FLEX, USG FLEX50W, USG20W-VPN, VPN, ZyWALL/USG network devices lies in the copying of buffers without checking the size of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause...

The vulnerability of embedded software developed by Qualcomm, related to copying from buffers without checking the size of the input data, allows a violator to execute arbitrary code.

The vulnerability of microprogramming software in embedded Qualcomm chips lies in the copying of input data from the buffer without checking its size. Exploiting this vulnerability can allow an attacker to execute arbitrary code...