37 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: Incorrect arithmetic operations when fetching VLAN header bits. If the offset plus the length exceeds the range of the Ethernet + VLAN header, then the length is adjusted to copy the bytes that are within t...
CVE-2026-24872
CVE-2026-24872 affects SkyFire_548 (before 5.4.8-stable5). The issue is due to improper pointer arithmetic in SkyFire_548. The vulnerability is rated CVSSv3.1: 9.8 (CRITICAL) with Network attack vector, no privileges, no user interaction, and high impact on confidentiality, integrity, and availab...
CVE-2026-24872 Pointer arithmetic error in SkyFire_548
improper pointer arithmetic vulnerability in ProjectSkyfire SkyFire548.This issue affects SkyFire548: before 5.4.8-stable5...
CLSA-2025-1762540366 rsync: Fix of CVE-2016-9840
CVE-2016-9840: fix improper pointer arithmetic in inftrees.c...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990332)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990332 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits If the offset + lengt...
EUVD-2007-4656
Malware in sbrugna...
EUVD-2008-5165
Malware in sbrugna...
EUVD-2022-54825
Malicious code in bioql PyPI...
EUVD-2023-59687
Malicious code in bioql PyPI...
CLSA-2025-1749826078 rsync: Fix of CVE-2016-9840
CVE-2016-9840: fix improper pointer arithmetic in bundled zlib...
SUSE CVE-2025-4638
A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary PCL. This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic. Since version 1.14.0, PCL by default uses a zlib...
SUSE CVE-2023-53033
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits If the offset + length goes over the ethernet + vlan header, then the length is adjusted to copy the bytes that are within the boundaries of the vlanethh...
CVE-2023-53033 netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits If the offset + length goes over the ethernet + vlan header, then the length is adjusted to copy the bytes that are within the boundaries of the vlanethh...
CVE-2023-53033
The CVE-2023-53033 entry concerns the Linux kernel Netfilter nft_payload code, where arithmetic incorrectly added the VLAN header size when handling VLAN bits (notably for double-tagged packets). The issue is fixed by using subtraction to adjust the length, addressing CVE-2023-0179, with impact d...
CVE-2023-53033
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits If the offset + length goes over the ethernet + vlan header, then the length is adjusted to copy the bytes that are within the boundaries of the vlanethh...
DEBIAN-CVE-2023-45927
S-Lang 2.3.2 was discovered to contain an arithmetic exception via the function ttsprintf...
AZL-37129 CVE-2023-45927 affecting package slang 2.3.3-1
S-Lang 2.3.2 was discovered to contain an arithmetic exception via the function ttsprintf...
CVE-2023-52531 wifi: iwlwifi: mvm: Fix a memory corruption issue
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix a memory corruption issue A few lines above, space is kzalloc'ed for: sizeofstruct iwlnvmdata + sizeofstruct ieee80211channel + sizeofstruct ieee80211rate 'mvm-nvmdata' is a 'struct iwlnvmdata', so it is...
USN-6145-1 sysstat vulnerabilities
It was discovered that Sysstat incorrectly handled certain arithmetic multiplications. An attacker could use this issue to cause Sysstat to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue was only fixed for Ubuntu 16.04 LTS. CVE-2022-39377 It was discovered...
Incorrect calculation of gasToPay due to dividing before multiplying, rounding error.
Lines of code Vulnerability details Impact In Solidity, it is an error to divide before multiplying because of lots of rounding errors that can come from that. In this case: uint256 pubdataLen; unchecked pubdataLen = message.length + 31 / 32 32 + 64; uint256 gasToPay = pubdataLen...