Lucene search
K

516 matches found

CNNVD
CNNVD
added 2026/05/01 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from errors in buffer size calculations during DMA allocation and memcpy operations. This vulnerabilit...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/30 10:31 a.m.2 views

CVE-2026-31786

In the Linux kernel, the following vulnerability has been resolved: Buffer overflow in drivers/xen/sys-hypervisor.c The build id returned by HYPERVISORxenversionXENVERbuildid is neither NUL terminated nor a string. The first causes a buffer overflow as sprintf in buildidshow will read and copy ti...

7.8CVSS5.9AI score0.00197EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2026/04/24 2:42 p.m.5 views

CVE-2026-31617

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: validate minimum blocklen in ncmunwrapntb The blocklen read from the host-supplied NTB header is checked against ntbmax but has no lower bound. When blocklen is smaller than opts-ndpsize, the bounds check of:...

7CVSS5.2AI score0.00129EPSS
Exploits0
EUVD
EUVD
added 2026/04/22 9:31 a.m.7 views

EUVD-2026-24620

Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapes. Affected version is prior to commit 1.30.0...

6.6CVSS5.8AI score0.00102EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/22 5:54 a.m.27 views

CVE-2026-41664

Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapes. Affected version is prior to commit 1.30.0...

6.6CVSS0.00102EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/22 5:54 a.m.2 views

CVE-2026-41664

Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapes. Affected version is prior to commit 1.30.0...

6.6CVSS5.8AI score0.00102EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.12 views

ONE 输入验证错误漏洞

ONE is a high-performance edge-side neural network inference framework developed by Samsung. Versions prior to ONE 1.30.0 contained a vulnerability related to input validation errors. This vulnerability stemmed from integer overflows during the calculation of memory copy sizes, which could lead t...

6.6CVSS5.8AI score0.00102EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-34258

CVE-2026-41664 Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapes. Affected version is prio… https://t.co/2SA7cFRHKO...

6.6CVSS5.8AI score0.00102EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/21 6:4 p.m.6 views

CVE-2026-40614 PJSIP: Heap buffer overflow in Opus codec decoding

PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, there is a buffer overflow when decoding Opus audio frames due to insufficient buffer size validation in the Opus codec decode path. The FEC decode buffers decframe.buf were allocated based on a...

8.5CVSS6.2AI score0.00224EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013207)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013207 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace A received TKIP key may b...

5.6AI score0.00177EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/07 5:3 p.m.3 views

CVE-2026-21372

Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations...

7.8CVSS6AI score0.00096EPSS
Exploits0References1
NVD
NVD
added 2026/04/06 4:16 p.m.3 views

CVE-2026-21372

Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations...

7.8CVSS0.00096EPSS
Exploits0References1
OSV
OSV
added 2026/03/26 3:12 p.m.3 views

SUSE-SU-2026:20948-1 Security update for net-tools

This update for net-tools fixes the following issues: - Fix stack buffer overflow in parsehex bsc1248687, GHSA-h667-qrp8-gj58. - Fix stack-based buffer overflow in procgenfmt bsc1248687, GHSA-w7jq-cmw2-cq59. - Avoid unsafe memcpy in ifconfig bsc1248687. - Prevent overflow in ax25 and netrom...

6.6CVSS6.9AI score0.00158EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2026/03/17 3:0 p.m.5 views

kernel: svcrdma: use rc_pageoff for memcpy byte offset

In the Linux kernel, the following vulnerability has been resolved: svcrdma: use rcpageoff for memcpy byte offset svcrdmacopyinlinerange added rccurpage page index to the page base instead of the byte offset rcpageoff. Use rcpageoff so copies land within the current page. Found by ZeroPath...

5.7AI score0.00166EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/13 9:18 p.m.4 views

CVE-2026-32707 PX4 autopilot has a stack buffer overflow in tattu_can due to unbounded memcpy in frame assembly loop

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, tattucan contains an unbounded memcpy in its multi-frame assembly loop, allowing stack memory overwrite when crafted CAN frames are processed. In deployments where tattucan is enabled and running, a CAN-injection-capable...

5.2CVSS5.8AI score0.0027EPSS
Exploits2References1
Github Security Blog
Github Security Blog
added 2026/03/12 2:8 p.m.6 views

ImageMagick vulnerable to stack corruption through long morphology kernel names or arrays

A stack buffer overflow exists in ImageMagick's morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copied into fixed-size stack buffers via memcpy without bounds checking, resulting in stack corruption...

7.1CVSS6.1AI score0.00108EPSS
Exploits0References4Affected Software19
EUVD
EUVD
added 2026/03/11 3:31 p.m.7 views

EUVD-2026-11160

Calling NSS-backed functions that support caching via nscd may call the nscd client side code and in the GNU C Library version 2.36 under high load on x8664 systems, the client may call memcmp on inputs that are concurrently modified by other processes or threads and crash. The nscd client in the...

6.2CVSS5.8AI score0.00146EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2026/03/05 6:51 a.m.5 views

SUSE CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.8CVSS5.7AI score0.00206EPSS
Exploits0References17
EUVD
EUVD
added 2026/03/04 3:30 p.m.3 views

EUVD-2026-9408

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

5.8AI score0.00206EPSS
Exploits0References9
NVD
NVD
added 2026/03/04 3:16 p.m.9 views

CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.3CVSS0.00206EPSS
Exploits0References9
Rows per page
Query Builder