2 matches found
CVE-2026-53366
The CVE-2026-53366 fix applies to the Linux kernel IPv4 stack, specifically the paged-allocation path in __ip_append_data(). The issue arises when fraggap from the previous skb is copied into the new skb’s linear area; alloclen and pagedlen were computed as alloclen = fragheaderlen + transhdrlen ...
UBUNTU-CVE-2017-16797
In SWFTools 0.9.2, the pngload function in lib/png.c does not properly validate an alloclen64 multiplication of width and height values, which allows remote attackers to cause a denial of service integer overflow, heap-based buffer overflow, and application crash or possibly have unspecified othe...