CVE-2025-37857 scsi: st: Fix array overflow in st_setup()

In the Linux kernel, the following vulnerability has been resolved: scsi: st: Fix array overflow in stsetup Change the array size to follow parms size instead of a fixed value...

CVE-2025-37857

CVE-2025-37857 affects the Linux kernel scsi: st driver. It fixes an array overflow in st_setup() by changing the array size from a fixed value to follow the parms size.

SUSE CVE-2022-49792

In the Linux kernel, the following vulnerability has been resolved: iio: adc: mp2629: fix potential array out of bound access Add sentinel at end of maps to avoid potential array out of bound access in iio core...

SUSE CVE-2022-49878

In the Linux kernel, the following vulnerability has been resolved: bpf, verifier: Fix memory leak in array reallocation for stack state If an error NULL is returned by krealloc, callers of reallocarray were setting their allocation pointers to NULL, but on error krealloc does not touch the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly handling the PDSCORECMDFWCONTROL result, which could lead to out-of-bounds access to arrays...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a fixed size of st-driven arrays, which could lead to an array overflow...

LibreOffice Improper Validation of Array Index vulnerability (May 2025) - Linux

LibreOffice is prone to an improper validation of array index vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CLSA-2025-1746653404 libtasn1: Fix of CVE-2021-46848

CVE-2021-46848: fix ETYPEOK off-by-one array size check in asn1encodesimpleder...

RLSA-2024:4568 Important: java-17-openjdk security update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: OpenJDK: RangeCheckElimination array index overflow 8323231 CVE-2024-21147 OpenJDK: potential UTF8 size overflow 8314794 CVE-2024-21131 OpenJDK: Excessive...

RLSA-2025:0422 Moderate: java-17-openjdk security update for Rocky Linux 8.6, 8.8, 8.10, 9.4 and 9.5

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: JDK: Enhance array handling CVE-2025-21502 Bug Fixes: The Rocky Enterprise Software Foundation OpenJDK packages rely on the copy-jdk-configs package to...

CVE-2025-20154

A vulnerability in the Two-Way Active Measurement Protocol TWAMP server feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service DoS condition. For Cisco IOS XR Software, this...

Configure Audit Rules for User Information Changes

Generally, for deployed services, users and user groups do not change. Passwords, however, are changed periodically but not frequently due to validity periods. It is recommended that key authentication and authorization data be audited and monitored so that changes can be traced. Performing attac...

CVE-2024-45574

Memory corruption during array access in Camera kernel due to invalid index from invalid command data...

CVE-2024-45574

Memory corruption during array access in Camera kernel due to invalid index from invalid command data...

CVE-2024-45578 Improper Validation of Array Index in Camera Driver

Memory corruption while acquire and update IOCTLs during IFE output resource ID validation...

CVE-2024-45578 Improper Validation of Array Index in Camera Driver

Memory corruption while acquire and update IOCTLs during IFE output resource ID validation...

CVE-2024-45576 Improper Validation of Array Index in Camera Driver

Memory corruption while prociesing command buffer buffer in OPE module...

CVE-2024-45574 Improper Validation of Array Index in Camera Driver

Memory corruption during array access in Camera kernel due to invalid index from invalid command data...

CVE-2024-45574 Improper Validation of Array Index in Camera Driver

Memory corruption during array access in Camera kernel due to invalid index from invalid command data...

CVE-2025-46585

Out-of-bounds array read/write vulnerability in the kernel module Impact: Successful exploitation of this vulnerability may affect availability...