3 matches found
CVE-2026-59997
The CVE affects OpenSSH’s internal-sftp helper invoked by sshd, where the process only parses the first 9 command-line arguments. This is tied to OpenSSH before version 10.4. According to the description, this could undermine intended security properties of an SFTP connection if a later argument ...
CVE-2025-21462
Memory corruption while processing an IOCTL request, when buffer significantly exceeds the command argument limit...
CVE-2025-21462
CVE-2025-21462 describes memory corruption in Qualcomm chipsets during IOCTL processing when the input buffer greatly exceeds the command argument limit, effectively an out-of-bounds/write scenario. The vulnerability is evidenced across multiple feeds (NVD, Red Hat, CVE List) with the same descri...