225 matches found
CVE-2025-47398
Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: net/smc: fixed a warning in smcrxsplice, when calling getpage. smcloregisterdmb allocates DMB buffers using kzalloc, which are later passed to getpage in smcrxsplice. Since kmalloc memory is not page-backed, this triggers...
ROS-20251217-7302
A vulnerability in the WebGPU component of the Google Chrome browser is related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code and cause a denial of service...
AzeoTech DAQFactory Out-of-Bounds Read Vulnerability
AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, Inc. and commonly used in industrial automation. AzeoTech DAQFactory suffers from an out-of-bounds read vulnerability that originates from out-of-bounds reading of memory buffer data, which can be exploited b...
CVE-2025-58410
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permissions to memory buffers exported as read-only. This is caused by improper handling of the memory protections for the buffer resource...
EUVD-2025-35068
In the Linux kernel, the following vulnerability has been resolved: net/smc: fix warning in smcrxsplice when calling getpage smcloregisterdmb allocates DMB buffers with kzalloc, which are later passed to getpage in smcrxsplice. Since kmalloc memory is not page-backed, this triggers WARNONONCE in...
EUVD-2007-3455
Malware in sbrugna...
EUVD-2002-1185
Malware in sbrugna...
CVE-2022-50407 crypto: hisilicon/qm - increase the memory of local variables
In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - increase the memory of local variables Increase the buffer to prevent stack overflow by fuzz test. The maximum length of the qos configuration buffer is 256 bytes. Currently, the value of the 'val buffer' i...
CVE-2023-53353
In the Linux kernel, the following vulnerability has been resolved: accel/habanalabs: postpone memmgr IDR destruction to hprivrelease The memory manager IDR is currently destroyed when user releases the file descriptor. However, at this point the user context might be still held, and memory buffe...
PT-2025-38203
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The memory manager IDR is destroyed when a user releases the file descriptor. However, the user context might still be held at this point, and memory buffers might still be in use...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the habanalabs driver not handling file descriptors correctly when exporting dmabuf, which could lead to reuse...
Netty's decoders vulnerable to DoS via zip bomb style attack
Summary With specially crafted input, BrotliDecoder and some other decompressing decoders will allocate a large number of reachable byte buffers, which can lead to denial of service. Details BrotliDecoder.decompress has no limit in how often it calls pull, decompressing data 64K bytes at a time...
CVE-2025-38674
CVE-2025-38674 concerns the Linux kernel where a revert of the patch “drm/prime: Use dma_buf from GEM object instance” makes the dma_buf field in struct drm_gem_object unstable over a buffer object’s lifetime. As a result, the field becomes NULL when the final GEM handle is released, causing a NU...
CVE-2025-38511
CVE-2025-38511 concerns a Linux kernel vulnerability in drm/xe/pf where LMEM (LMEM buffer objects) were not cleared by default on allocation, creating a risk that unused LMTT PTEs could point to other VF or PF pages. The patch clears all new LMTT pages on allocation to prevent a malicious VF from...
The vulnerability of embedded software developed by Qualcomm, related to the execution of operations outside the buffer in memory, allows attackers to cause system failures.
The vulnerability of embedded Qualcomm software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause system failures...
The vulnerability of the ImageIO component in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS allows attackers to gain unauthorized access to protected information.
The vulnerability of the ImageIO component in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS relates to reading data beyond the buffer limit of memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the execution of operations beyond buffer boundaries in memory, allowing attackers to gain unauthorized access to protected information.
The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...
The vulnerability of the NVIDIA Virtual GPU Manager driver, which allows a hacker to gain unauthorized access to protected information.
The vulnerability of the NVIDIA Virtual GPU Manager driver relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of PDF document viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the ability to read data beyond the buffer in memory, allowing attackers to disclose protected information.
The vulnerability of PDF document viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the reading of data beyond the buffer boundaries in memory during file processing for U3D files. Exploiting this vulnerability can allow attackers to disclose protecte...