15 matches found
CVE-2026-46199
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg...
CVE-2026-46199 drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg...
rPGP affected by crash in message handling for deeply nested messages
Summary Previous rPGP versions could be caused to crash with a "stack overflow" when parsing messages that contain deeply nested message layers, such as messages with many signatures. rPGP 0.19.0 resolves this issue with a more robust message handling implementation via...
EUVD-2017-1375
Malware in sbrugna...
Panics on Malformed Untrusted Input
During a security audit, Radically Open Security discovered several reachable edge cases which allow an attacker to trigger rpgp crashes by providing crafted data. Impact When processing malformed input, rpgp can run into Rust panics which halt the program. This can happen in the following...
Open-Xchange Dovecot 安全漏洞
Open-Xchange Dovecot is an open source mail server from the German company Open-Xchange. A security vulnerability exists in Open-Xchange Dovecot that stems from parsing messages with very large headers that can lead to resource exhaustion...
CLSA-2024-1717087024 bind: Fix of CVE-2023-4408
CVE-2023-4408: use hashtable when parsing a message...
Uncontrolled Resource Consumption in LengthPrefixedMessageReader
Impact Affected gRPC Swift clients and servers are vulnerable to uncontrolled resource consumption attacks. Excessive memory may be allocated when parsing messages. This can lead to a denial of service. Patches The problem has been fixed in 1.2.0. Workarounds No workaround is available. Users mus...
UBUNTU-CVE-2023-24535
Parsing invalid messages can panic. Parsing a text-format message which contains a potential number consisting of a minus sign, one or more characters of whitespace, and no further input will cause a panic...
Denial of Service (DoS)
Overview grpc/grpc-swift is a Swift language implementation of gRPC. Affected versions of this package are vulnerable to Denial of Service DoS. Excessive memory may be allocated when parsing messages. Details Denial of Service DoS describes a family of attacks, all aimed at making a system...
PT-2022-22371 · Siemens · Simatic Cp 1542Sp-1 Irc +13
Name of the Vulnerable Software and Affected Versions: SIMATIC CP 1242-7 V2 versions prior to V3.3.46 SIMATIC CP 1243-1 versions prior to V3.3.46 SIMATIC CP 1243-7 LTE EU versions prior to V3.3.46 SIMATIC CP 1243-7 LTE US versions prior to V3.3.46 SIMATIC CP 1243-8 IRC versions prior to V3.3.46...
CVE-2021-27889
Cross-site Scripting XSS vulnerability in MyBB before 1.8.26 via Nested Auto URL when parsing messages...
CVE-2021-27889
Cross-site Scripting XSS vulnerability in MyBB before 1.8.26 via Nested Auto URL when parsing messages...
PT-2020-2147 · Videolabs +1 · Libmicrodns +1
Name of the Vulnerable Software and Affected Versions: Videolabs libmicrodns version 0.1.0 Description: The issue is related to the message-parsing functionality. When parsing mDNS messages in mdns recv, the return value of the mdns read header function is not checked, leading to an uninitialized...
mutt mail agent buffer overflow
Buffer overflow on parsing messages from mailbox...