14 matches found
CVE-2026-46043
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payloadsize in rxercv rxercv currently checks only that the incoming packet is at least headersizepkt bytes long before payloadsize is used. However, payloadsize subtracts both the...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: ksmbd: transportipc: Validate the payload size before reading the handle. The handleresponse function dereferences the payload as a 4-byte handle without verifying that the declared payload size is at least 4 bytes. A malformed o...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: nfc: nci: Fixed an uninitialized value in ncidevup and ncintfpacket. syzbot reported the following uninitialized value access issue 12: The ncirxwork function parses and processes received packets. When the payload length is...
EUVD-2026-15281
In the Linux kernel, the following vulnerability has been resolved: cxl/mbox: validate payload size before accessing contents in cxlpayloadfromuserallowed cxlpayloadfromuserallowed casts and dereferences the input payload without first verifying its size. When a raw mailbox command is sent with a...
Linux kernel 安全漏洞
The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of verification of the size of the payload before accessing its content, potentially leading t...
EUVD-2022-41262
Malicious code in bioql PyPI...
CVE-2025-38679 media: venus: Fix OOB read due to missing payload bound check
In the Linux kernel, the following vulnerability has been resolved: media: venus: Fix OOB read due to missing payload bound check Currently, The eventseqchanged handler processes a variable number of properties sent by the firmware. The number of properties is indicated by the firmware and used t...
CVE-2022-38696
Summary (CVE-2022-38696) : Multiple connected sources identify a vulnerability in BootRom caused by a missing payload size check, which could lead to a memory buffer overflow without requiring extra privileges. The affected component is described as BootRom (often in UNISOC chipsets context). No ...
CVE-2022-38693
In FDL1, there is a possible missing payload size check. This could lead to memory buffer overflow without requiring additional execution privileges...
CVE-2022-38693
CVE-2022-38693 concerns a flaw in FDL1 where a missing payload size check can cause a memory buffer overflow. Sources consistently describe the issue as affecting FDL1, with exploitation not requiring additional execution privileges and a network attack vector (per CVSS: AV:N/AC:L/PR:N/UI:N/S:U/C...
PT-2025-35466
Name of the Vulnerable Software and Affected Versions: BootRom affected versions not specified Description: A missing payload size check in BootRom could lead to a memory buffer overflow, and does not require additional execution privileges. Recommendations: At the moment, there is no information...
PT-2025-35464
Name of the Vulnerable Software and Affected Versions: FDL1 affected versions not specified Description: FDL1 may be susceptible to a memory buffer overflow due to a missing payload size check. This issue does not require additional execution privileges to exploit. Recommendations: At the moment,...
Linux Distros Unpatched Vulnerability : CVE-2024-35915
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nfc: nci: Fix uninit-value in ncidevup and ncintfpacket syzbot reported the following uninit-value access issue 12: ncirxwork parses and processes received...
DEBIAN-CVE-2024-35915
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value in ncidevup and ncintfpacket syzbot reported the following uninit-value access issue 12: ncirxwork parses and processes received packet. When the payload length is zero, each message type handler reads...