CVE-2024-49833 Improper Validation of Array Index in Camera

Memory corruption can occur in the camera when an invalid CID is used...

CVE-2024-49833

CVE-2024-49833 is a memory corruption vulnerability in the camera triggered by an invalid CID, reported across Qualcomm components and Android security bulletins. Affected area is the camera stack from Qualcomm—details cite memory corruption as the underlying flaw with high impact (C:H, I:H, A:H)...

CVE-2024-49833 Improper Validation of Array Index in Camera

Memory corruption can occur in the camera when an invalid CID is used...

CVE-2024-49832 Improper Validation of Array Index in Camera

Memory corruption in Camera due to unusually high number of nodes passed to AXI port...

CVE-2024-49832

CVE-2024-49832 concerns Qualcomm camera hardware. The root cause is memory corruption caused by an unusually high number of nodes passed to the AXI port, enabling memory corruption in the Camera subsystem. The CVSS v3.1 metrics indicate local exploitation with low privileges and no user interacti...

CVE-2024-45582 Improper Validation of Array Index in Camera Driver

Memory corruption while validating number of devices in Camera kernel...

CVE-2024-45582

CVE-2024-45582 affects Qualcomm camera kernel: memory corruption during validation of the number of devices in the camera core. Root cause described as an input/array validation issue leading to memory corruption. CVSS metrics indicate local access, low attack complexity with low privileges, and ...

SUSE-SU-2025:0339-1 Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: Update to upstream tag jdk-17.0.14+7 January 2025 CPU: Security fixes: - CVE-2025-21502: Enhance array handling JDK-8330045, bsc1236278 Other changes: - JDK-7093691: Nimbus LAF: disabled JComboBox using renderer has bad font color -...

CVE-2025-0973

A vulnerability classified as critical was found in CmsEasy 7.7.7.9. This vulnerability affects the function backAllaction in the library lib/admin/databaseadmin.php of the file /index.php?case=database&act=backAll&admindir=admin&site=default. The manipulation of the argument select leads to path...

The vulnerability of the `array_from_pyobj` function in the NumPy module fortranobject.c, which allows a hacker to cause a service failure.

The vulnerability in the arrayfrompyobj function of the NumPy module fortranobject.c is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

PT-2025-14366

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns out-of-bound accesses in the Linux kernel, specifically in the drm/amd/display component. The problem arises because hpo stream to link encoder mapping has a size of M...

AZL-56375 CVE-2025-21680 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: pktgen: Avoid out-of-bounds access in getimixentries Passing a sufficient amount of imix entries leads to invalid access to the pktdev-imixentries array because of the incorrect boundary check. UBSAN: array-index-out-of-bounds in...

CVE-2025-21680

The CVE-2025-21680 issue affects the Linux kernel’s pktgen code, specifically get_imix_entries, where an insufficient boundary check on the imix_entries array allows out-of-bounds access when a large number of imix entries are passed. This leads to UBSAN reported array-index-out-of-bounds in net/...

The vulnerability of the Linux operating system’s kernel, related to unvalidated array indexing, allows a hacker to trigger a service failure.

The vulnerability of the Linux operating system’s kernel is related to unvalidated array indexing. Exploiting this vulnerability can allow an attacker to cause a service failure...

SUSE: Security Advisory (SUSE-SU-2025:0235-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Moderate: Red Hat Security Advisory: java-21-openjdk security update for RHEL 8.10, 9.4 and 9.5

An update for java-21-openjdk is now available for Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 9.4 Extended Update Support, and Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS...

openjdk: Enhance array handling (Oracle CPU 2025-01)

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to Oracle Java SE accessible. This vulnerability can be...

Moderate: Red Hat Security Advisory: OpenJDK 21.0.6 Security Update for Windows Builds

An update is now available for OpenJDK. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...

openjdk: Enhance array handling (Oracle CPU 2025-01)

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to Oracle Java SE accessible. This vulnerability can be...

Moderate: Red Hat Security Advisory: OpenJDK 21.0.6 Security Update for Portable Linux Builds

An update is now available for OpenJDK. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...