CVE-2025-21784

CVE-2025-21784 affects the Linux kernel’s drm/amdgpu path. The vulnerability arises in psp_init_cap_microcode() where the code must bail out on firmware load failure to avoid invalid memory access. The connected Astra Linux bulletin reiterates this fix for psp_init_cap_microcode(). The practical ...

fast-fault has a segmentation fault due to lack of bound check

In this case, the "fastfloat::common::AsciiStr::first" method within the "AsciiStr" struct uses the unsafe keyword to reading from memory without performing bounds checking. Specifically, it directly dereferences a pointer offset by "self.ptr". Because of the above reason, the method accesses...

CVE-2018-11889

In all android releases Android for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, when requesting rssi timeout, access invalid memory may occur since local variable 'context' stack data of wlan function is free...

CURL-CVE-2015-3237 SMB send off unrelated memory contents

libcurl can get tricked by a malicious SMB server to send off data it did not intend to. In libcurl's state machine function handling the SMB protocol smbrequeststate, two length and offset values are extracted from data that has arrived over the network, and those values are subsequently used to...

Memory corruption

libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge messages from users who are not on the receiver's buddy list, which allows remote attackers to cause a denial of service crash via a nudge message that triggers an access of "an invalid memory location."...