214 matches found
UBUNTU-CVE-2026-1484
A flaw was found in the GLib Base64 encoding routine when processing very large input data. Due to incorrect use of integer types during length calculation, the library may miscalculate buffer boundaries. This can cause memory writes outside the allocated buffer. Applications that process untrust...
CVE-2026-1484
The CVE-2026-1484 issue affects the GLib Base64 encoding routine when handling very large inputs. The vulnerability arises from incorrect integer-type usage during length calculations, which can lead to buffer boundary miscalculation and memory writes beyond allocated space. Reported impact inclu...
CVE-2026-1484
A flaw was found in the GLib Base64 encoding routine when processing very large input data. Due to incorrect use of integer types during length calculation, the library may miscalculate buffer boundaries. This can cause memory writes outside the allocated buffer. Applications that process untrust...
PT-2026-4928
TapinRadio 2.13.7 contains a denial of service vulnerability in the application proxy settings that allows attackers to crash the program by overflowing input fields. Attackers can paste a large buffer of 20,000 characters into the username and address fields to cause the application to become...
Out-of-bounds Write
Overview Affected versions of this package are vulnerable to Out-of-bounds Write via the gbase64encodeclose function. An attacker can cause memory corruption or application crashes by providing excessively large or untrusted input data. Remediation A fix was pushed into the master branch but not...
EUVD-2026-3645
GeoGebra Graphing Calculator 6.0.631.0 contains a denial of service vulnerability that allows attackers to crash the application by inputting an oversized buffer. Attackers can generate a payload of 8000 repeated characters to overwhelm the input field and cause the application to become...
CVE-2021-47876 GeoGebra Classic 5.0.631.0-d - Denial of Service
GeoGebra Classic 5.0.631.0-d contains a denial of service vulnerability in the input field that allows attackers to crash the application by sending oversized buffer content. Attackers can generate a large buffer of 800,000 repeated characters and paste it into the 'Entrada:' input field to trigg...
CVE-2021-47876
GeoGebra Classic 5.0.631.0-d is affected by a denial-of-service vulnerability in the input field. The underlying issue is a fragile input handler that can be overwhelmed by an oversized buffer, demonstrated by pasting about 800,000 repeated characters into the Entrada: input field, which triggers...
CVE-2021-47824
iDailyDiary 4.30 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the preferences tab name field. Attackers can paste a 2,000,000 character buffer into the default diary tab name to trigger an application crash...
CVE-2021-47815 Nsauditor 3.2.3 - Denial of Service (PoC)
Nsauditor 3.2.3 contains a denial of service vulnerability in the registration code input field that allows attackers to crash the application. Attackers can paste a large buffer of 256 repeated characters into the 'Key' field to trigger an application crash...
PT-2026-4915
Name of the Vulnerable Software and Affected Versions GLib affected versions not specified Description A flaw exists in the GLib Base64 encoding routine when handling very large input data. The issue stems from the incorrect use of integer types during length calculation, potentially leading to...
CVE-2022-50689
CVE-2022-50689 affects Cobian Reflector 0.9.93 RC1. A denial-of-service can be triggered by overflowing the password input field during SFTP task configuration, e.g., pasting an ~8000-byte buffer into the password field, causing the application to crash. Multiple connected sources (NVD/NVD-derive...
CVE-2025-34450 merbanan/rtl_433 <= 25.02 Stack-based Buffer Overflow
merbanan/rtl433 versions up to and including 25.02 and prior to commit 25e47f8 contain a stack-based buffer overflow vulnerability in the function parserfraw located in src/rfraw.c. When processing crafted or excessively large raw RF input data, the application may write beyond the bounds of a...
Linux Distros Unpatched Vulnerability : CVE-2025-67899
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas...
AZL-72379 CVE-2025-67899 affecting package uriparser 0.9.8-3
uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas...
UBUNTU-CVE-2025-67899
uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas...
Uncontrolled Recursion
Overview Affected versions of this package are vulnerable to Uncontrolled Recursion via the ParseMustBeSegmentNzNc function when processing large input containing many commas. An attacker can cause excessive stack consumption and application crash by supplying specially crafted input. Remediation...
CVE-2025-67899
CVE-2025-67899 affects uriparser up to version 0.9.9, where unbounded recursion leads to stack consumption on large inputs (ParseMustBeSegmentNzNc with many commas). Connected advisories confirm the issue and direct upgrade to uriparser-1.0.0 as the remediation (e.g., Fedora/FEDORA advisories). O...
AZL-71452 CVE-2025-65637 affecting package delve 1.5.0-16
A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving...
AZL-71560 CVE-2025-65637 affecting package cf-cli for versions less than 8.4.0-26
A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving...