Lucene search
K

2521 matches found

RedhatCVE
RedhatCVE
added 2024/12/29 2:37 p.m.14 views

CVE-2024-56540

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Prevent recovery invocation during probe and resume Refactor IPC send and receive functions to allow correct handling of operations that should not trigger a recovery process. Expose ivpusendreceiveinternal, which is...

5.5CVSS6.8AI score0.00156EPSS
Exploits0References4
CVE
CVE
added 2024/12/27 2:51 p.m.183 views

CVE-2024-56608

CVE-2024-56608 affects the Linux kernel in the AMD display driver (drm/amd/display) where dcn21_link_encoder_create could perform an out-of-bounds access on the link_enc_hpd_regs array. The connected TencentOS NASL notes the issue is present in kernels prior to 5.15.182.1-1 and that a patch updat...

7.8CVSS6.5AI score0.00226EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2024/12/27 2:51 p.m.8 views

CVE-2024-56608 drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create'

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bounds access in 'dcn21linkencodercreate' An issue was identified in the dcn21linkencodercreate function where an out-of-bounds access could occur when the hpdsource index was used to reference the...

7.8CVSS6.9AI score0.00226EPSS
Exploits0References11
OSV
OSV
added 2024/12/24 12:15 p.m.3 views

AZL-54936 CVE-2024-53156 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: add range check for connrspepid in htcconnectservice I found the following bug in my fuzzer: UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htchst.c:26:51 index 255 is out of range for type...

7.8CVSS6.3AI score0.00232EPSS
Exploits0References1
OSV
OSV
added 2024/12/24 12:15 p.m.3 views

UBUNTU-CVE-2024-53156

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: add range check for connrspepid in htcconnectservice I found the following bug in my fuzzer: UBSAN: array-index-out-of-bounds in drivers/net/wireless/ath/ath9k/htchst.c:26:51 index 255 is out of range for type...

7.8CVSS6.1AI score0.00232EPSS
Exploits0References53
Github Security Blog
Github Security Blog
added 2024/12/23 8:19 p.m.26 views

Unsoundness in `Iterator` and `DoubleEndedIterator` impls for `glib::VariantStrIter`

The VariantStrIter::implget function called internally by implementations of the Iterator and DoubleEndedIterator traits for this type was unsound, resulting in undefined behaviour. An immutable reference &p to a mut libc::cchar pointer initialized to NULL was passed as an argument to a C functio...

7.4AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/12/23 7:29 p.m.33 views

Unsound usages of `u8` type casting in spl-token-swap

The library provides a safe public API unpack to cast u8 array to arbitrary types, which can cause to undefined behaviors. The length check of array can only prevent out-of-bound access on the return type. However, it can't prevent misaligned pointer when casting u8 pointer to a type aligned to...

7.1AI score
Exploits0References3Affected Software1
OSV
OSV
added 2024/12/23 7:29 p.m.1 views

GHSA-H6XM-C6R4-VMWF Unsound usages of `u8` type casting in spl-token-swap

The library provides a safe public API unpack to cast u8 array to arbitrary types, which can cause to undefined behaviors. The length check of array can only prevent out-of-bound access on the return type. However, it can't prevent misaligned pointer when casting u8 pointer to a type aligned to...

6AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/12/23 7:26 p.m.8 views

Undefined behaviour in `kvm_ioctls::ioctls::vm::VmFd::create_device`

An issue was identified in the VmFd::createdevice function, leading to undefined behavior and miscompilations on rustc 1.82.0 and newer due to the function's violation of Rust's pointer safety rules. The function downcasted a mutable reference to its struct kvmcreatedevice argument to an immutabl...

7.3AI score
Exploits0References3Affected Software1
OSV
OSV
added 2024/12/23 7:26 p.m.5 views

GHSA-3QX8-RV27-J6GP Undefined behaviour in `kvm_ioctls::ioctls::vm::VmFd::create_device`

An issue was identified in the VmFd::createdevice function, leading to undefined behavior and miscompilations on rustc 1.82.0 and newer due to the function's violation of Rust's pointer safety rules. The function downcasted a mutable reference to its struct kvmcreatedevice argument to an immutabl...

7.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/12/23 12:0 a.m.2 views

PT-2024-40054 · Unknown · Kvm-Ioctls

Name of the Vulnerable Software and Affected Versions: kvm-ioctls versions 0.1.0 through 0.19.0 Description: An issue in the VmFd::create device function leads to undefined behavior and miscompilations due to a violation of Rust's pointer safety rules. The function incorrectly downcasts a mutable...

7.4AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/12/23 12:0 a.m.4 views

PT-2024-40316 · Solana · Solana Program Library

Name of the Vulnerable Software and Affected Versions: Solana Program Library affected versions not specified Description: The issue arises from the unpack function in the library, which casts a u8 array to arbitrary types. This can lead to undefined behaviors due to misaligned pointer dereferenc...

6.9AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/12/23 12:0 a.m.2 views

PT-2024-40510 · Glib · Glib

Name of the Vulnerable Software and Affected Versions: glib versions 0.15.0 and later Description: The VariantStrIter::impl get function was unsound, resulting in undefined behavior due to an immutable reference being passed to a C function that mutates the pointer in-place. This caused crashes d...

6.9CVSS7.1AI score
Exploits0References4
OSV
OSV
added 2024/12/19 12:0 p.m.5 views

RUSTSEC-2024-0435 Unsound usages of `Vec::from_raw_parts`

The library provides a public safe API transmutevecasbytes, which incorrectly assumes that any generic type T could have stable layout, causing to uninitialized memory exposure if the users pass any types with padding bytes as T and cast it to u8 pointer. In the issue, we develop a PoC to show...

7AI score
Exploits0References4
RustSec
RustSec
added 2024/12/19 12:0 p.m.4 views

Unsound usages of `u8` type casting

The library provides a safe public API unpack to cast u8 array to arbitrary types, which can cause to undefined behaviors. The length check of array can only prevent out-of-bound access on the return type. However, it can't prevent misaligned pointer when casting u8 pointer to a type aligned to...

7.1AI score
Exploits0Affected Software1
OSV
OSV
added 2024/12/19 12:0 p.m.9 views

RUSTSEC-2024-0426 Unsound usages of `u8` type casting

The library provides a safe public API unpack to cast u8 array to arbitrary types, which can cause to undefined behaviors. The length check of array can only prevent out-of-bound access on the return type. However, it can't prevent misaligned pointer when casting u8 pointer to a type aligned to...

7.1AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/12/19 12:0 a.m.5 views

PT-2024-40969 · Solana · Solana Program Library

Name of the Vulnerable Software and Affected Versions: Solana Program Library affected versions not specified Description: The issue arises from the unpack function in the library, which can lead to undefined behavior when casting a u8 array to arbitrary types. This is due to the potential for...

7AI score
Exploits0References4
Debian CVE
Debian CVE
added 2024/12/11 7:3 p.m.11 views

CVE-2024-47600

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been detected in the formatchannelmask function in gst-discoverer.c. The vulnerability affects the local array position, which is defined with a fixed size of 64 elements. However, the...

9.1CVSS6.7AI score0.01101EPSS
Exploits0
CNVD
CNVD
added 2024/12/06 12:0 a.m.5 views

Unspecified Vulnerability in FFmpeg (CNVD-2025-01686)

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in FFmpeg version n6.1.1, which can be exploited by attackers to cause undefined behavior or a crash during decoding...

5.5CVSS6.8AI score0.00235EPSS
Exploits0References1
OSV
OSV
added 2024/12/05 12:0 p.m.5 views

RUSTSEC-2024-0428 Undefined behaviour in `kvm_ioctls::ioctls::vm::VmFd::create_device`

An issue was identified in the VmFd::createdevice function, leading to undefined behavior and miscompilations on rustc 1.82.0 and newer due to the function's violation of Rust's pointer safety rules. The function downcasted a mutable reference to its struct kvmcreatedevice argument to an immutabl...

7.3AI score
Exploits0References3
Rows per page
Query Builder