CVE-2025-40348

CVE-2025-40348 concerns a race in the Linux kernel slab allocator. When two threads concurrently execute alloc_slab_obj_exts() and one fails to allocate the object extension vector, the winning thread may overwrite the other thread’s valid slab->obj_exts with OBJEXTS_ALLOC_FAIL, leading the ra...

EUVD-2025-20798

Malicious code in bioql PyPI...

CVE-2025-21937

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Add check for mgmtallocskb in mgmtremotename Add check for the return value of mgmtallocskb in mgmtremotename to prevent null pointer dereference...

Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc()

...

CVE-2022-49453

In the Linux kernel, the following vulnerability has been resolved: soc: ti: tiscipmdomains: Check for null return of devmkcalloc The allocation funciton devmkcalloc may fail and return a null pointer, which would cause a null-pointer dereference later. It might be better to check it and directly...

scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()

...

scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()

...

fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()

...

CVE-2024-49880

In the Linux kernel, the following vulnerability has been resolved: ext4: fix off by one issue in allocflexgd Wesley reported an issue: ================================================================== EXT4-fs dm-5: resizing filesystem from 7168 to 786432 blocks ------------ cut here -----------...

CVE-2024-38592

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Init ddpcomp with devmkcalloc In the case where connroutes is true we allocate an extra slot in the ddpcomp array but mtkdrmcrtccreate never seemed to initialize it in the test case I ran. For me, this caused a late...

CVE-2024-32622

HDF5 Library through 1.14.3 contains a out-of-bounds read operation in H5FLarrmalloc in H5FL.c called from H5Ssetextentsimple in H5S.c...

CVE-2024-24856

The memory allocation function ACPIALLOCATEZEROED does not guarantee a successful allocation, but the subsequent code directly dereferences the pointer that receives it, which may lead to null pointer dereference. To fix this issue, a null pointer check should be added. If it is null, return...

BIT-REDIS-2021-32762 Integer overflow that can lead to heap overflow in redis-cli, redis-sentinel on some platforms

Redis is an open source, in-memory database that persists on disk. The redis-cli command line tool and redis-sentinel service may be vulnerable to integer overflow when parsing specially crafted large multi-bulk network replies. This is a result of a vulnerability in the underlying hiredis librar...

ALPINE-CVE-2016-10166

Integer underflow in the gdContributionsAlloc function in gdinterpolation.c in the GD Graphics Library aka libgd before 2.2.4 allows remote attackers to have unspecified impact via vectors related to decrementing the u variable...

apr-util: Integer overflows in memory pool (apr) and relocatable memory (apr-util) management

Multiple integer overflows in the Apache Portable Runtime APR library and the Apache Portable Utility library aka APR-util 0.9.x and 1.3.x allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via vectors that trigger crafted calls to the 1...

RedHat Update for ruby RHSA-2008:0561-01

Check for the Version of ruby OpenVAS Vulnerability Test RedHat Update for ruby RHSA-2008:0561-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...