Lucene search
K

203 matches found

RedHat Linux
RedHat Linux
added 2025/07/15 1:39 p.m.7 views

glib: buffer overflow in set_connect_msg()

A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4CONNMSGLEN. This issue may lead to an application crash or other undefined behavior...

9.8CVSS7.3AI score0.01263EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/23 10:36 a.m.7 views

CVE-2024-47129

The goTenna Pro App does not inject extra characters into broadcasted frames to obfuscate the length of messages. This makes it possible to tell the length of the payload regardless of the encryption used...

5.3CVSS6.8AI score0.00135EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 10:32 a.m.8 views

CVE-2019-14062

Buffer overflows while decoding setup message from Network due to lack of check of IE message length received from network in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables ...

10CVSS7.2AI score0.00902EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:33 a.m.6 views

CVE-2018-13918

kernel could return a received message length higher than expected, which leads to buffer overflow in a subsequent operation and stops normal operation in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, in MDM9150, MDM9206, MDM9607,...

7.8CVSS7.8AI score0.00226EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/14 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to check msgi.len resulting in a null pointer dereference...

5.5CVSS6.5AI score0.00149EPSS
Exploits0References9
OSV
OSV
added 2025/05/01 2:10 p.m.7 views

CVE-2022-49862 tipc: fix the msg->req tlv len check in tipc_nl_compat_name_table_dump_header

In the Linux kernel, the following vulnerability has been resolved: tipc: fix the msg-req tlv len check in tipcnlcompatnametabledumpheader This is a follow-up for commit 974cb0e3e7c9 "tipc: fix uninit-value in tipcnlcompatnametabledump" where it should have type casted sizeof.. to int to work whe...

5.5CVSS5.9AI score0.00166EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2025/04/19 11:16 p.m.3 views

SUSE CVE-2025-22075

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for getting VF port and node GUIDs in netlink ifinfo messages, but their size was not take...

5.5CVSS7.7AI score0.00185EPSS
Exploits0References16
CVE
CVE
added 2025/04/16 2:12 p.m.133 views

CVE-2025-22075

CVE-2025-22075 affects the Linux kernel (netlink rtnetlink path) where VF port/node GUIDs were previously included in ifinfo messages but their size wasn’t accounted for when allocating netlink messages. The issue could produce a “Message too long” warning when many VFs are configured (for exampl...

5.5CVSS6.4AI score0.00185EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2025/04/16 2:12 p.m.15 views

CVE-2025-22075 rtnetlink: Allocate vfinfo size for VF GUIDs when supported

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for getting VF port and node GUIDs in netlink ifinfo messages, but their size was not take...

5.5CVSS6.1AI score0.00185EPSS
Exploits0References13
OSV
OSV
added 2025/02/25 7:57 a.m.6 views

CLSA-2025-1740470259 Fix CVE(s): CVE-2025-0395

SECURITY UPDATE: insufficient space allocation in assert function leading to buffer overflow - debian/patches/any/CVE-2025-0395.patch: Fix underallocation of abortmsgs struct to store the length of the message string - CVE-2025-0395...

6.2CVSS7.3AI score0.00349EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/01/13 8:25 a.m.10 views

CVE-2024-57791

In the Linux kernel, the following vulnerability has been resolved: net/smc: check return value of sockrecvmsg when draining clc data When receiving clc msg, the field length in smcclcmsghdr indicates the length of msg should be received from network and the value should not be fully trusted as i...

5.5CVSS7AI score0.00737EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/01/02 10:18 p.m.4 views

CVE-2022-49035

In the Linux kernel, the following vulnerability has been resolved: media: s5pcec: limit msg.len to CECMAXMSGSIZE I expect that the hardware will have limited this to 16, but just in case it hasn't, check for this corner case...

5.5CVSS6.8AI score0.00203EPSS
Exploits0References4
NVD
NVD
added 2025/01/02 3:15 p.m.14 views

CVE-2022-49035

In the Linux kernel, the following vulnerability has been resolved: media: s5pcec: limit msg.len to CECMAXMSGSIZE I expect that the hardware will have limited this to 16, but just in case it hasn't, check for this corner case...

5.5CVSS0.00203EPSS
Exploits0References8
OSV
OSV
added 2025/01/02 3:15 p.m.3 views

UBUNTU-CVE-2022-49035

In the Linux kernel, the following vulnerability has been resolved: media: s5pcec: limit msg.len to CECMAXMSGSIZE I expect that the hardware will have limited this to 16, but just in case it hasn't, check for this corner case...

5.5CVSS6.2AI score0.00203EPSS
Exploits0References11
CVE
CVE
added 2025/01/02 2:38 p.m.114 views

CVE-2022-49035

CVE-2022-49035 in the Linux kernel affects media: s5p_cec by not consistently limiting msg.len to CEC_MAX_MSG_SIZE. Root cause is the len check not enforced in all code paths, potentially enabling a corner-case that could impact availability (per CVSS: LOCAL, HIGH impact to availability; I/I/C = ...

5.5CVSS7AI score0.00203EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2025/01/02 2:38 p.m.16 views

CVE-2022-49035 media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE

In the Linux kernel, the following vulnerability has been resolved: media: s5pcec: limit msg.len to CECMAXMSGSIZE I expect that the hardware will have limited this to 16, but just in case it hasn't, check for this corner case...

0.00203EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/01/02 2:38 p.m.6 views

CVE-2022-49035

In the Linux kernel, the following vulnerability has been resolved: media: s5pcec: limit msg.len to CECMAXMSGSIZE I expect that the hardware will have limited this to 16, but just in case it hasn't, check for this corner case...

5.5CVSS5.7AI score0.00203EPSS
Exploits0
CNNVD
CNNVD
added 2025/01/02 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to limit msg.len to CECMAXMSGSIZE in the media: s5pcec module, which results in a message length...

5.5CVSS6.4AI score0.00203EPSS
Exploits0References10
OSV
OSV
added 2024/12/27 3:15 p.m.1 views

UBUNTU-CVE-2024-56616

In the Linux kernel, the following vulnerability has been resolved: drm/dpmst: Fix MST sideband message body length check Fix the MST sideband message body length check, which must be at least 1 byte accounting for the message body CRC aka message data CRC at the end of the message. This fixes a...

7.8CVSS6.2AI score0.00211EPSS
Exploits0References32
OSV
OSV
added 2024/12/27 2:51 p.m.8 views

CVE-2024-56616 drm/dp_mst: Fix MST sideband message body length check

In the Linux kernel, the following vulnerability has been resolved: drm/dpmst: Fix MST sideband message body length check Fix the MST sideband message body length check, which must be at least 1 byte accounting for the message body CRC aka message data CRC at the end of the message. This fixes a...

7.8CVSS6.2AI score0.00211EPSS
Exploits0References11
Rows per page
Query Builder