SUSE CVE-2021-28687

HVM soft-reset crashes toolstack libxl requires all data structures passed across its public interface to be initialized before use and disposed of afterwards by calling a specific set of functions. Many internal data structures also require this initialize / dispose discipline, but not all of...

SUSE CVE-2022-24939

A malformed packet containing an invalid destination address, causes a stack overflow in the Ember ZNet stack. This causes an assert which leads to a reset, immediately clearing the error...

PT-2025-40747

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.16.0-rc5-00184-g0bca5994cacc-dirty 308 Description The Linux kernel contained a flaw in the ubifs subsystem related to page management. Specifically, a race condition could occur during page truncation and file...

Lack of input validation: The contract does not perform any checks on the inputs passed to the functions, which could allow an attacker to pass malicious data and trigger wrong behavior or errors.

Lines of code Vulnerability details Impact function readInt208 ReturndataPointer rdPtr internal pure returns int208 value assembly returndatacopy0, rdPtr, 0x20 value := mload0 This function reads the int208 at rdPtr in returndata. However, it does not perform any checks on the input rdPtr to ensu...

The vulnerability of the iconv function in the glibc library, which allows a hacker to cause a service failure

The vulnerability of the iconv function in the glibc library is related to the lack of use of the assert function. This vulnerability allows a malicious actor to cause a service failure...

Vulnerability of the sql/item_cmpfunc.cc component of the MariaDB database, which allows a hacker to cause service failure

The vulnerability in the sql/itemcmpfunc.cc component of the MariaDB database is related to the insufficient use of the assert function. Exploiting this vulnerability allows an attacker to cause service failures...

Vulnerability of the /row/row0mysql.cc component in the MariaDB database, which allows a hacker to cause a service failure

The vulnerability in the /row/row0mysql.cc component of the MariaDB database is related to the insufficient use of the assert function. Exploiting this vulnerability allows an attacker to cause service failures...

The vulnerability of the sql/item_func.cc component of the MariaDB database, which allows a hacker to cause service failures.

The vulnerability of the sql/itemfunc.cc component of the MariaDB database is related to the insufficient use of the assert function. Exploiting this vulnerability allows an attacker to cause service failures...

Stack overflow

A malformed packet containing an invalid destination address, causes a stack overflow in the Ember ZNet stack. This causes an assert which leads to a reset, immediately clearing the error...

CVE-2022-24938

A malformed packet causes a stack overflow in the Ember ZNet stack. This causes an assert which leads to a reset, immediately clearing the error...

CVE-2022-24938

A malformed packet causes a stack overflow in the Ember ZNet stack. This causes an assert which leads to a reset, immediately clearing the error...

Stack overflow

A malformed packet causes a stack overflow in the Ember ZNet stack. This causes an assert which leads to a reset, immediately clearing the error...

CVE-2022-24938

CVE-2022-24938 affects the Ember ZNet stack (as used in Silicon Labs Gecko SDK). A malformed Zigbee/ZW packet can trigger a stack overflow in Ember ZNet, causing an assertion failure and a reset that immediately clears the error. Some sources specify Ember ZNet versions 7.0.1 or earlier. The prov...

PT-2022-16998 · Unknown · Ember Znet Stack

Name of the Vulnerable Software and Affected Versions: Ember ZNet stack affected versions not specified Description: A malformed packet causes a stack overflow in the Ember ZNet stack, leading to an assert and a subsequent reset, which immediately clears the error. Recommendations: At the moment,...

Fedora: Security Advisory for php-wikimedia-assert (FEDORA-2022-ea159a2ec4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability in the `src/libavutil/mathematics.c` component of the FFmpeg multimedia library allows a attacker to cause a service failure.

The vulnerability in the src/libavutil/mathematics.c file of the FFmpeg multimedia library is related to the insufficient use of the assert function. Exploiting this vulnerability allows a remote attacker to cause a service failure...

The vulnerability of the LibTIFF library, related to the lack of use of the assert() function, allows a attacker to trigger a service failure.

The vulnerability of the LibTIFF library is related to the lack of use of the assert function. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a specially created TIFF file...

The vulnerability of the dict0dict.cc component of the MariaDB database management system allows a attacker to cause a service failure.

The vulnerability of the dict0dict.cc component in the MariaDB database management system is related to the use of the assert function or similar operators. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

The vulnerability of the DNS-server BIND daemon, which allows a hacker to cause a service failure.

The vulnerability of the DNS-server BIND daemon is related to the use of the assert function or similar operators. Exploiting this vulnerability allows a remote attacker to cause a service failure...

CVE-2022-38150

In Varnish Cache 7.0.0, 7.0.1, 7.0.2, and 7.1.0, it is possible to cause the Varnish Server to assert and automatically restart through forged HTTP/1 backend responses. An attack uses a crafted reason phrase of the backend response status line. This is fixed in 7.0.3 and 7.1.1...