30 matches found
CVE-2021-46757
Insufficient checking of memory buffer in ASP Secure OS may allow an attacker with a malicious TA to read/write to the ASP Secure OS kernel virtual address space potentially leading to privilege escalation...
ARM NN Android-NN-Driver 缓冲区错误漏洞
ARM NN Android-NN-Driver is a driver from ARM UK. A security vulnerability exists in ARM NN Android-NN-Driver prior to version 23.02, which stems from an improper length check of shared memory, resulting in an out-of-bounds read/write issue...
Wolfssl 缓冲区错误漏洞
Wolfssl CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from Wolfssl, USA. A buffer error vulnerability exists in Wolfssl wolfMQTT that stems from the product's failure to properly determine memory boundaries when calling MqttDecodePublish from...
PT-2025-37509
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw in the tracing subsystem related to handling synthetic events. Specifically, the synthetic event field "char file" can read a string value without...
The vulnerability of the TiffDecode.c component in the Pillow image processing library, related to out-of-buffer writing, allows a hacker to cause a service failure.
The vulnerability of the TiffDecode.c component in the Pillow image processing library is related to the lack of memory checks during reading operations. Exploiting this vulnerability could allow an attacker to cause a service failure...
Buffer Overflow Vulnerability in Multiple Apple Products (CNVD-2020-19872)
Apple iOS is an operating system for mobile devices. apple watchOS is an operating system for smartwatches. apple iPadOS is an operating system for iPad tablets. libxml2 is one of the XML document parsing libraries. A buffer error vulnerability exists in the libxml2 component in multiple Apple...
Artifex Ghostscript Denial of Service Vulnerability (CNVD-2020-54476)
Artifex Ghostscript is an open source Postscript a page description language and programming language used in the electronics industry and desktop publishing parser from Artifex Software that displays Postscript files and prints them on non-Postscript printers. Postscript file. A security...
kernel: infiniband: Unprivileged process can overwrite kernel memory using rdma_ucm.ko
A flaw was found in the way certain interfaces of the Linux kernel's Infiniband subsystem used write as bi-directional ioctl replacement, which could lead to insufficient memory security checks when being invoked using the splice system call. A local unprivileged user on a system with either...
The vulnerability of the Android operating system, which allows a hacker to trigger a service failure or increase their privileges.
The vulnerability of the prctlvmaanonname function in the Android operating system’s kernel is related to the absence of a check to verify the availability of virtual memory regions for updates. Exploiting this vulnerability can allow a malicious actor to enhance their privileges or cause service...
SUSE-SU-2015:2088-2 Security update for LibVNCServer
The LibVNCServer package was updated to fix the following security issues: - bsc897031: fix several security issues: CVE-2014-6051: Integer overflow in MallocFrameBuffer on client side. CVE-2014-6052: Lack of malloc return value checking on client side. CVE-2014-6053: Server crash on a very large...