CVE-2025-46714 Sandboxie has Pool Buffer Overflow in SbieDrv.sys API (API_GET_SECURE_PARAM)

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to 1.15.12, APIGETSECUREPARAM has an arithmetic overflow leading to a small memory allocation and then a extremely large copy into the small allocation...

CVE-2017-1000413

Linaro's open source TEE solution called OP-TEE, version 2.4.0 and older is vulnerable a timing attack in the Montgomery parts of libMPA in OP-TEE resulting in a compromised private RSA key...

Verifying Differentially Private Median Estimation

Differential Privacy DP is a robust privacy guarantee that is widely employed in private data analysis today, finding broad application in domains such as statistical query release and machine learning. However, DP achieves privacy by introducing noise into data or query answers, which malicious...

Sandboxie 安全漏洞

Sandboxie is sandboxie-plus open source sandbox-based isolation software. A security vulnerability exists in Sandboxie versions prior to 1.3.0 through 1.15.12, which stems from an arithmetic overflow in APIGETSECUREPARAM that results in too small a memory allocation and oversized copy operations...

Sandboxie 安全漏洞

Sandboxie is sandboxie-plus open source sandbox-based isolation software. A security vulnerability exists in Sandboxie versions prior to 0.0.1 through 1.15.12, which stems from an arithmetic overflow in the memory allocation subsystem that could result in a buffer overflow...

PT-2025-22474 · Sandboxie · Sandboxie

Name of the Vulnerable Software and Affected Versions: Sandboxie versions 1.3.0 through 1.15.12 Description: The issue is related to an arithmetic overflow in the API GET SECURE PARAM, leading to a small memory allocation followed by an extremely large copy into the small allocation...

CVE-2025-37976

CVE-2025-37976 is rejected by its CVE Numbering Authority.

SUSE CVE-2025-4945

A flaw was found in the cookie parsing logic of the libsoup HTTP library, used in GNOME applications and other software. The vulnerability arises when processing the expiration date of cookies, where a specially crafted value can trigger an integer overflow. This may result in undefined behavior,...

CVE-2025-4638

A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary PCL. This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic. Since version 1.14.0, PCL by default uses a zlib...

CVE-2025-4638

A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary PCL. This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic. Since version 1.14.0, PCL by default uses a zlib...

UBUNTU-CVE-2025-4638

A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary PCL. This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic. Since version 1.14.0, PCL by default uses a zlib...

CVE-2025-4638 Improper Pointer Arithmetic in pcl

A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary PCL. This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic. Since version 1.14.0, PCL by default uses a zlib...

CVE-2025-4638 Improper Pointer Arithmetic in pcl

A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary PCL. This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic. Since version 1.14.0, PCL by default uses a zlib...

CVE-2025-4638

CVE-2025-4638 affects the inftrees.c component of the zlib library bundled with PointCloudLibrary (PCL). The issue can trigger undefined behavior via improper pointer arithmetic and is relevant when PCL is built with an older zlib (older than 1.14.0) or when the user disables the system zlib, cau...

Point Cloud Library 缓冲区错误漏洞

Point Cloud Library PCL is a library in the Point Cloud Library open source. A security vulnerability exists in Point Cloud Library version 1.14.0 and earlier, which stems from improper pointer arithmetic in the zlib library that could lead to undefined behavior...

UBUNTU-CVE-2025-37858

In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Prevent integer overflow in AG size calculation The JFS filesystem calculates allocation group AG size using 1 2TB aggregates on 32-bit systems, this 32-bit shift operation causes undefined behavior and improper AG sizing...

The vulnerability of the kzalloc() function in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the kzalloc function in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the alloc_precpu() function in the Linux operating system allows a hacker to perform a denial-of-service attack.

The vulnerability of the allocprecpu function in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow a remote attacker to perform a denial-of-service attack...

The vulnerability of the KVM kernel component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the KVM kernel component in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

Low Latency FPGA Implementation of Twisted Edward Curve Cryptography Hardware Accelerator over Prime Field

The performance of any elliptic curve cryptography hardware accelerator significantly relies on the efficiency of the underlying point multiplication PM architecture. This article presents a hardware implementation of field-programmable gate array FPGA based modular arithmetic, group operation, a...