748 matches found
UBUNTU-CVE-2022-49551
In the Linux kernel, the following vulnerability has been resolved: usb: isp1760: Fix out-of-bounds array access Running the driver through kasan gives an interesting splat: BUG: KASAN: global-out-of-bounds in isp1760register+0x180/0x70c Read of size 20 at addr f1db2e64 by task swapper/0/1...
CVE-2022-49551 usb: isp1760: Fix out-of-bounds array access
In the Linux kernel, the following vulnerability has been resolved: usb: isp1760: Fix out-of-bounds array access Running the driver through kasan gives an interesting splat: BUG: KASAN: global-out-of-bounds in isp1760register+0x180/0x70c Read of size 20 at addr f1db2e64 by task swapper/0/1...
CVE-2022-49551 usb: isp1760: Fix out-of-bounds array access
In the Linux kernel, the following vulnerability has been resolved: usb: isp1760: Fix out-of-bounds array access Running the driver through kasan gives an interesting splat: BUG: KASAN: global-out-of-bounds in isp1760register+0x180/0x70c Read of size 20 at addr f1db2e64 by task swapper/0/1...
CVE-2022-49249 ASoC: codecs: wc938x: fix accessing array out of bounds for enum type
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wc938x: fix accessing array out of bounds for enum type Accessing enums using integer would result in array out of bounds access on platforms like aarch64 where sizeoflong is 8 compared to enum size which is 4 bytes...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the svcrdmabuildwrites function potentially overstepping its bounds to access the segment array of the Write...
A malicious manifests can lead to DoS due to unchecked array bound access via network in ollama/ollama
This report is not public...
Azure Linux 3.0 Security Update: kernel (CVE-2024-50007)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50007 advisory. - In the Linux kernel, the following vulnerability has been resolved: ALSA: asihpi: Fix potential OOB array...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fgraph module not using READONCE when accessing fgrapharray.This could result in a null pointer...
PT-2025-3605 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the ASoC: Intel: sof sdw component in the Linux kernel. The code uses the initialised member of the asoc sdw dailink struct to determine if a member of the arra...
ABB Cylon Aspect 3.08.02 escDevicesUpdate.php Denial of Service Vulnerability
ABB Cylon Aspect version 3.08.02 has an off-by-one error in array access that could lead to undefined behavior and potential denial of service. The issue arises in a loop that iterates over an array using a less than condition, allowing access to an out-of-bounds index. This can trigger errors or...
PT-2026-2897
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the adv7842 cp log status function related to potential out-of-bounds array accesses. The issue arises because the cp read and hdmi read functions can...
PT-2026-20440
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the crypto/iaa module related to an out-of-bounds index in the find empty iaa compression mode function. A local variable, i, is initialized...
CVE-2024-53228
In the Linux kernel, the following vulnerability has been resolved: riscv: kvm: Fix out-of-bounds array access In kvmriscvvcpusbiinit the entry-extidx can contain an out-of-bound index. This is used as a special marker for the base extensions, that cannot be disabled. However, when traversing the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an invalid progarray access issue in perfeventdetachbpfprog in the bpf, perf subsystem. No detailed...
CVE-2024-56375
CVE-2024-56375 affects Fort Validator Fort 1.6.3 and 1.6.4 (before 1.6.5). A malicious RPKI repository can serve a Manifest RPKI object with an empty fileList. An integer underflow causes the surrounding loop to iterate infinitely, dereferencing an array that effectively doesn’t exist and leading...
ALSA: asihpi: Fix potential OOB array access
...
Huawei EulerOS: Security Advisory for OpenIPMI (EulerOS-SA-2024-2817)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2024-51755
Twig is a template language for PHP. In a sandbox, an attacker can access attributes of Array-like objects as they were not checked by the security policy. They are now checked via the property policy and the isset method is now called after the security check. This is a BC break. This issue has...
ABB Cylon Aspect 3.08.00 Off-By-One Vulnerability
A vulnerability was identified in a ABB Cylon Aspect version 3.08.00 where an off-by-one error in array access could lead to undefined behavior and potential denial of service. The issue arises in a loop that iterates over an array using a less than or equals to condition, allowing access to an...
ABB Cylon Aspect 3.08.00 Off-By-One
ABB Cylon Aspect 3.08.00 logMix/YumLookup.php Off-by-One Error in Log Parsing Vendor: ABB Ltd. Product web page: https://www.global.abb Affected version: NEXUS Series, MATRIX-2 Series, ASPECT-Enterprise, ASPECT-Studio Firmware: =3.08.00 Summary: ASPECT is an award-winning scalable building energy...