Assertions and array length checks can be manipulated maliciously, causing issues.

Lines of code Vulnerability details Impact There are some assertions and requirements on array lengths to prevent mismatched data. But assertions like require statements can potentially be used maliciously in some cases. These are a few ways a malicious user could try to exploit the asserts,...

USN-5704-1 dbus vulnerabilities

It was discovered that DBus incorrectly handled messages with invalid type signatures. A local attacker could possibly use this issue to cause DBus to crash, resulting in a denial of service. CVE-2022-42010 It was discovered that DBus was incorrectly validating the length of arrays of fixed-lengt...

samba: Multiple heap-based buffer overflows in memory management based on NDR marshalling code output

The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call...