`VMABuffer::set_data` may allow out-of-bounds writes from safe code

VMABuffer::setdata was a publicly accessible safe function. It accepted an arbitrary offset and a data slice, then used the offset in unsafe pointer arithmetic before copying the slice into a mapped allocation. Affected versions did not check that the requested write range fit within the allocati...

Extending the ElGamal Cryptosystem to the Third Group of Units of $\Z_{N}$

In this paper, we extend the ElGamal cryptosystem to the third group of units of the ring $\Zn$, which we prove to be more secure than the previous extensions. We describe the arithmetic needed in the new setting. We also provide some numerical simulations that shows the security and efficiency o...

The vulnerability of the `cache_setFlush()` function in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the cachesetFlush function in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to trigger a service failure...

Vulnerability of the ieee80211_probereq_get() function in the drivers/net/wireless/realtek/rtw89/fw.c module of the Linux kernel, allowing a hacker to cause a service failure

The vulnerability of the ieee80211probereqget function in the drivers/net/wireless/realtek/rtw89/fw.c module of the Linux kernel is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

Denial Of Service (DoS)

@apeleghq/asn1-der is vulnerable to Denial of ServiceDoS. The vulnerability is due to incorrect arithmetic in the numBitLen function due to the use of the operator causing negative results for values between 2³¹ and 2³²-1, and attackers can exploit this to trigger an infinite loop and cause a...

Measuring Computational Universality of Fully Homomorphic Encryption

Many real-world applications, such as machine learning and graph analytics, involve combinations of linear and non-linear operations. As these applications increasingly handle sensitive data, there is a significant demand for privacy-preserving computation techniques capable of efficiently...

The vulnerability of the memset() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_job.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the memset function in the drivers/gpu/drm/amd/amdgpu/amdgpujob.c module of the Linux kernel’s CPU is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the mlx5e_tir_builder_alloc() function in the net/mlx5e component of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the mlx5etirbuilderalloc function in the net/mlx5e component of the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the DRM/AMD/display components in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the DRM/amd/display components in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the cpufreq_cpu_get_raw() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the cpufreqcpugetraw function in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the __hci_cmd_sync_sk() function in the net/bluetooth/hci_sync.c component of the Linux operating system allows a malicious actor to trigger a service failure.

The vulnerability of the hcicmdsyncsk function in the net/bluetooth/hcisync.c component of the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the cppc_get_cpu_cost() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the cppcgetcpucost function in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the DRM/AMD/display components of the Linux operating system allows a perpetrator to influence the accessibility of protected information.

The vulnerability of the DRM/AMD/display components in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to influence the accessibility of protected information...

The vulnerability of the DRM/Mediatek kernel components in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the DRM/Mediatek kernel components in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability could allow a hacker to cause a service failure...

[SECURITY] Fedora 42 Update: php-phpseclib3-3.0.43-1.fc42

MIT-licensed pure-PHP implementations of an arbitrary-precision integer arithmetic library, fully PKCS1 v2.1 compliant RSA, DES, 3DES, RC4, Rijndael, AES, Blowfish, Twofish, SSH-1, SSH-2, SFTP, and X.509...

SUSE CVE-2023-53033

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits If the offset + length goes over the ethernet + vlan header, then the length is adjusted to copy the bytes that are within the boundaries of the vlanethh...

CVE-2023-53033

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits If the offset + length goes over the ethernet + vlan header, then the length is adjusted to copy the bytes that are within the boundaries of the vlanethh...

UBUNTU-CVE-2023-53033

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits If the offset + length goes over the ethernet + vlan header, then the length is adjusted to copy the bytes that are within the boundaries of the vlanethh...

UBUNTU-CVE-2023-53032

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix overflow before widen in the bitmapipcreate function. When firstip is 0, lastip is 0xFFFFFFFF, and netmask is 31, the value of an arithmetic expression 2 netmask - maskbits - 1 is subject to overflow due to ...

CVE-2023-53033 netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits If the offset + length goes over the ethernet + vlan header, then the length is adjusted to copy the bytes that are within the boundaries of the vlanethh...