226 matches found
EUVD-2026-24641
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in getfileallinfo for compound requests When a compound request consists of QUERYDIRECTORY + QUERYINFO FILEALLINFORMATION and the first command consumes nearly the entire maxtranssize, getfileallinfo woul...
CVE-2026-31433
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in getfileallinfo for compound requests When a compound request consists of QUERYDIRECTORY + QUERYINFO FILEALLINFORMATION and the first command consumes nearly the entire maxtranssize, getfileallinfo woul...
CVE-2026-31433
CVE-2026-31433 affects the Linux kernel ksmbd module. A vulnerability arises when processing a compound SMB request of QUERY_DIRECTORY + QUERY_INFO (FILE_ALL_INFORMATION): the code lacked a validation check on the client-provided OutputBufferLength before copying a filename into the smb2_file_all...
CVE-2026-31433 ksmbd: fix potencial OOB in get_file_all_info() for compound requests
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in getfileallinfo for compound requests When a compound request consists of QUERYDIRECTORY + QUERYINFO FILEALLINFORMATION and the first command consumes nearly the entire maxtranssize, getfileallinfo woul...
PT-2026-34276
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds write exists in the ksmbd component within the get file all info function during the processing of compound requests consisting of QUERY DIRECTORY and QUERY INFO FILE AL...
CVE-2026-21378
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...
CVE-2026-21375
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing...
CVE-2026-21373
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing...
CVE-2026-21371
Memory Corruption when retrieving output buffer with insufficient size validation...
CVE-2026-21376
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...
EUVD-2026-19325
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing...
EUVD-2026-19330
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing...
EUVD-2026-19331
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...
EUVD-2026-19321
Memory Corruption when retrieving output buffer with insufficient size validation...
CVE-2026-21375
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing...
CVE-2026-21371
Memory Corruption when retrieving output buffer with insufficient size validation...
CVE-2026-21373
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing...
CVE-2026-21378
The CVE-2026-21378 entry describes a memory corruption vulnerability in a camera sensor driver triggered when IOCTLs access an output buffer without validating its size. Affected component is the camera sensor driver’s IOCTL handling (output buffer). Root cause: insufficient validation of the des...
CVE-2026-21378 Buffer Over-read in Camera
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...
CVE-2026-21378 Buffer Over-read in Camera
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...