109 matches found
GHSA-QG8R-F7X3-25F7 imageproc: Out-of-bounds read via NaN coordinates in bilinear/bicubic sampling
A bounds check was performed in floating points before a cast to the index passed to an unchecked access function. This checked considered NaN cases improperly, causing them to succeed the check instead of failing it. The floating point coordinate is under caller control by passing a selected...
CVE-2026-31738
CVE-2026-31738 concerns the Linux kernel vxlan code (vxlan_na_create) where ND option lengths are not properly validated. The flaw can cause the parser to advance beyond the option span or read an undersized LLADDR payload, enabling source address reading only when the option is large enough; imp...
SUSE CVE-2026-5713
The "profiling.sampling" module Python 3.15+ and "asyncio introspection capabilities" 3.14+, "python -m asyncio ps" and "python -m asyncio pstree" features could be used to read and write addresses in a privileged process if that process connected to a malicious or "infected" Python process via t...
CVE-2026-5713
The "profiling.sampling" module Python 3.15+ and "asyncio introspection capabilities" 3.14+, "python -m asyncio ps" and "python -m asyncio pstree" features could be used to read and write addresses in a privileged process if that process connected to a malicious or "infected" Python process via t...
UBUNTU-CVE-2026-5713
The "profiling.sampling" module Python 3.15+ and "asyncio introspection capabilities" 3.14+, "python -m asyncio ps" and "python -m asyncio pstree" features could be used to read and write addresses in a privileged process if that process connected to a malicious or "infected" Python process via t...
Linux Distros Unpatched Vulnerability : CVE-2025-2509
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-Bounds Read in Virglrenderer in ChromeOS 16093.57.0 allows a malicious guest VM to achieve arbitrary address access within the crosvm sandboxed process,...
CVE-2026-24918
Address read vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-24921
Address read vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...
CVE-2026-24921
Address read vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...
CVE-2026-24918
Address read vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-24921
CVE-2026-24921 concerns an address read issue in the HDC module. The available connected documents consistently state this vulnerability affects availability and confidentiality, with a local attack vector and low attack complexity, but they do not provide concrete details on affected products, v...
CVE-2026-24921
Address read vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...
CVE-2026-24921
Address read vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...
CVE-2026-24918
Address read vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2026-24918
CVE-2026-24918 affects a component called the communication module with a memory-read issue as the root cause. The vulnerability may allow local attackers to read memory, and exploitation could impact system availability. The PT-security entry notes an issue where memory is read incorrectly and m...
EUVD-2026-5656
Address read vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability...
PT-2026-6698
Name of the Vulnerable Software and Affected Versions HDC module affected versions not specified Description An address read issue exists in the HDC module. Successful exploitation could impact system availability and confidentiality. Recommendations At the moment, there is no information about a...
MiracleLinux 9 : ruby:3.1 (AXSA:2024-8490:01)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8490:01 advisory. ruby: Buffer overread vulnerability in StringIO CVE-2024-27280 ruby: RCE vulnerability with .rdocoptions in RDoc CVE-2024-27281 ruby: Arbitrary memo...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992810)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992810 advisory. In the Linux kernel, the following vulnerability has been resolved: of/irq: Prevent device address out-of-bounds read in interrupt map walk When ofirqparseraw is...
EUVD-2021-14965
Malware in sbrugna...