Lucene search
K

400 matches found

OSV
OSV
added 2025/02/26 7:0 a.m.2 views

DEBIAN-CVE-2022-49226

In the Linux kernel, the following vulnerability has been resolved: net: asix: add proper error handling of usb read errors Syzbot once again hit uninit value in asix driver. The problem still the same -- asixreadcmd reads less bytes, than was requested by caller. Since all read requests are...

5.5CVSS5.5AI score0.00252EPSS
Exploits0References1
CVE
CVE
added 2025/02/26 1:55 a.m.143 views

CVE-2022-49226

CVE-2022-49226 affects the Linux kernel's asix USB Ethernet driver. The root cause is that asix_read_cmd() can read fewer bytes than requested, potentially leaving callers with uninitialized data. The fix adds a sanity check to ensure the number of bytes read matches the request and propagates er...

5.5CVSS5.3AI score0.00252EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the btrfs driver double-completing a bio on a compressed read error, which could lead to problems...

5.5CVSS5AI score0.00243EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.1 views

Astra Linux – Vulnerability in OpenSSL

Issue summary: Applications that perform certificate name checks e.g., TLS clients checking server certificates may attempt to read an invalid memory address, resulting in an abnormal termination of the application process. Impact summary: An abnormal termination of an application can cause a...

7.5CVSS6.8AI score0.66594EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/02/11 12:0 a.m.3 views

PT-2025-6301 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a denial-of-service vulnerability in the Internet Connection Sharing ICS function of Windows operating systems. It involves a memory reading error beyond the allowed...

6.5CVSS9.1AI score0.00931EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.7 views

The vulnerability of the vduse_vdpa_get_config() function in the vDPA driver of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the vdusevdpagetconfig function in the vDPA driver, located in the drivers/vdpa/vdpauser/vdusedev.c file of the Linux kernel, involves reading memory beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.1CVSS6.1AI score0.00211EPSS
Exploits0References10Affected Software5
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.4 views

PT-2025-5664 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-underflow read error. Technical details include a crash type of Stack-buffer-underflow READ 4, with the crash stat...

6.8AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/16 12:0 a.m.3 views

PT-2025-16152 · Git +1 · Poco

Name of the Vulnerable Software and Affected Versions: Poco versions affected versions not specified Description: The software contains a crash issue related to an unknown read error occurring within the Poco::Net::NTLMCredentials::parseChallengeMessage and...

6.8AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-1169 · Microsoft · Windows Digital Media +1

Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can be...

6.8CVSS9.1AI score0.00818EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-1170 · Microsoft · Windows Digital Media +1

Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of Windows Digital Media and involves a memory reading error beyond the allowed range. This can potentially allow an attacker to elevate...

6.8CVSS9.2AI score0.00818EPSS
Exploits0References5
OSV
OSV
added 2024/12/27 12:16 a.m.7 views

OSV-2024-1406 UNKNOWN READ in _TIFFVSetField

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=385406655 Crash type: UNKNOWN READ Crash state: TIFFVSetField TIFFSetField TIFFFetchNormalTag...

7.2AI score
Exploits0References1
CNNVD
CNNVD
added 2024/12/24 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a logic error in the geniseclktblget function in the soc: qcom: geni-se module's checking of frequencies i...

5.5CVSS6.4AI score0.00265EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/12/20 12:0 a.m.2 views

PT-2024-40645 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details include the crash type being a Heap-buffer-overflow READ 12, and the crash...

6.8AI score
Exploits0References2
OSV
OSV
added 2024/12/10 12:8 a.m.10 views

OSV-2024-1355 UNKNOWN READ in glslang::TInfoSinkBase::location

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=382922237 Crash type: UNKNOWN READ Crash state: glslang::TInfoSinkBase::location glslang::TParseContextBase::outputMessage glslang::TParseContextBase::error...

7.2AI score
Exploits0References1
OSV
OSV
added 2024/11/08 6:15 a.m.3 views

DEBIAN-CVE-2024-50202

In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfsfindentry Syzbot reported that a task hang occurs in vcsopen during a fuzzing test for nilfs2. The root cause of this problem is that in nilfsfindentry, which searches for directo...

5.5CVSS5.7AI score0.00231EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/11/08 5:56 a.m.12 views

CVE-2024-50202

In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfsfindentry Syzbot reported that a task hang occurs in vcsopen during a fuzzing test for nilfs2. The root cause of this problem is that in nilfsfindentry, which searches for directo...

5.5CVSS5.7AI score0.00231EPSS
Exploits0
CNNVD
CNNVD
added 2024/11/08 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a directory read error propagation problem...

5.5CVSS6.5AI score0.00231EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2024/09/24 2:39 a.m.4 views

kernel: net: asix: add proper error handling of usb read errors

In the Linux kernel, the following vulnerability has been resolved: net: asix: add proper error handling of usb read errors Syzbot once again hit uninit value in asix driver. The problem still the same -- asixreadcmd reads less bytes, than was requested by caller. Since all read requests are...

5.5CVSS6.7AI score0.00252EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/08/16 12:0 a.m.4 views

PT-2024-40885 · Flac · Flac

Name of the Vulnerable Software and Affected Versions: FLAC affected versions not specified Description: The issue is related to a stack-buffer-overflow read error. Technical details about the crash include the FLAC stream encoder init ogg file function, EncoderSession init encoder, and flac enco...

6.7AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/08/08 4:53 a.m.8 views

kernel: drm/vmwgfx: Fix invalid reads in fence signaled events

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drmevent to the size of the structure that's actually used. The length of the drmevent was set to the parent structure instead of to the...

7.1CVSS6.7AI score0.00288EPSS
Exploits0References5
Rows per page
Query Builder