400 matches found
DEBIAN-CVE-2022-49226
In the Linux kernel, the following vulnerability has been resolved: net: asix: add proper error handling of usb read errors Syzbot once again hit uninit value in asix driver. The problem still the same -- asixreadcmd reads less bytes, than was requested by caller. Since all read requests are...
CVE-2022-49226
CVE-2022-49226 affects the Linux kernel's asix USB Ethernet driver. The root cause is that asix_read_cmd() can read fewer bytes than requested, potentially leaving callers with uninitialized data. The fix adds a sanity check to ensure the number of bytes read matches the request and propagates er...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the btrfs driver double-completing a bio on a compressed read error, which could lead to problems...
Astra Linux – Vulnerability in OpenSSL
Issue summary: Applications that perform certificate name checks e.g., TLS clients checking server certificates may attempt to read an invalid memory address, resulting in an abnormal termination of the application process. Impact summary: An abnormal termination of an application can cause a...
PT-2025-6301 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a denial-of-service vulnerability in the Internet Connection Sharing ICS function of Windows operating systems. It involves a memory reading error beyond the allowed...
The vulnerability of the vduse_vdpa_get_config() function in the vDPA driver of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the vdusevdpagetconfig function in the vDPA driver, located in the drivers/vdpa/vdpauser/vdusedev.c file of the Linux kernel, involves reading memory beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...
PT-2025-5664 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-underflow read error. Technical details include a crash type of Stack-buffer-underflow READ 4, with the crash stat...
PT-2025-16152 · Git +1 · Poco
Name of the Vulnerable Software and Affected Versions: Poco versions affected versions not specified Description: The software contains a crash issue related to an unknown read error occurring within the Poco::Net::NTLMCredentials::parseChallengeMessage and...
PT-2025-1169 · Microsoft · Windows Digital Media +1
Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can be...
PT-2025-1170 · Microsoft · Windows Digital Media +1
Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of Windows Digital Media and involves a memory reading error beyond the allowed range. This can potentially allow an attacker to elevate...
OSV-2024-1406 UNKNOWN READ in _TIFFVSetField
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=385406655 Crash type: UNKNOWN READ Crash state: TIFFVSetField TIFFSetField TIFFFetchNormalTag...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a logic error in the geniseclktblget function in the soc: qcom: geni-se module's checking of frequencies i...
PT-2024-40645 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details include the crash type being a Heap-buffer-overflow READ 12, and the crash...
OSV-2024-1355 UNKNOWN READ in glslang::TInfoSinkBase::location
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=382922237 Crash type: UNKNOWN READ Crash state: glslang::TInfoSinkBase::location glslang::TParseContextBase::outputMessage glslang::TParseContextBase::error...
DEBIAN-CVE-2024-50202
In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfsfindentry Syzbot reported that a task hang occurs in vcsopen during a fuzzing test for nilfs2. The root cause of this problem is that in nilfsfindentry, which searches for directo...
CVE-2024-50202
In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfsfindentry Syzbot reported that a task hang occurs in vcsopen during a fuzzing test for nilfs2. The root cause of this problem is that in nilfsfindentry, which searches for directo...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a directory read error propagation problem...
kernel: net: asix: add proper error handling of usb read errors
In the Linux kernel, the following vulnerability has been resolved: net: asix: add proper error handling of usb read errors Syzbot once again hit uninit value in asix driver. The problem still the same -- asixreadcmd reads less bytes, than was requested by caller. Since all read requests are...
PT-2024-40885 · Flac · Flac
Name of the Vulnerable Software and Affected Versions: FLAC affected versions not specified Description: The issue is related to a stack-buffer-overflow read error. Technical details about the crash include the FLAC stream encoder init ogg file function, EncoderSession init encoder, and flac enco...
kernel: drm/vmwgfx: Fix invalid reads in fence signaled events
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drmevent to the size of the structure that's actually used. The length of the drmevent was set to the parent structure instead of to the...