17 matches found
ROS-20260403-73-0009
A vulnerability in the fs/f2fs/f2fs/f2fs.h component of the Linux operating system kernel is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability allows an attacker to gain access to confidential data, violate its integrity, and cause denial of service...
ROS-20260401-73-0020
A vulnerability in the PNG raster graphics library Libpng is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensitive data and cause a denial of service...
ROS-20260323-73-0017
A vulnerability in the Linux operating system kernel is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability allows an attacker to gain access to sensitive data and cause a denial of service...
ROS-20260119-7334
A vulnerability in the soc/qcom/socinfo.c component of the Linux operating system kernel is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data and cause a denial of service...
ROS-20260112-7317
Vulnerability of cmd.c, driver.h components of the Linux operating system kernel is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
The vulnerability of the Storage Management Provider component in Windows operating systems allows a hacker to gain unauthorized access to protected information.
The vulnerability of the Storage Management Provider component in Windows operating systems is related to reading data beyond the buffer limits of memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of the Remote Access Connection Manager in Windows operating systems allows a hacker to disclose protected information.
The vulnerability of the Remote Access Connection Manager in Windows operating systems is related to reading data beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...
The vulnerability of MediaTek’s microprogramming software, related to reading data outside the buffer in memory, allows a hacker to gain access to confidential information.
The vulnerability of MediaTek’s microprogramming software relates to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain access to confidential information...
MediaTek Chip Buffer Error Vulnerability
MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips due to a lack of boundary checking in the camera middleware module, which may result in out-of-bounds writes...
The vulnerability of the libxrdp_send_to_channel() function on the XRDP server allows a hacker to gain unauthorized access to protected information.
The vulnerability of the libxrdpsendtochannel function on the XRDP server is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the ImageIO component in iOS, iPadOS, tvOS, watchOS, and macOS allows attackers to gain access to confidential information.
The vulnerability of the ImageIO component in iOS, iPadOS, tvOS, watchOS, and macOS relates to the ability to read data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to access confidential information...
The vulnerability of the PDF editing software Foxit PhantomPDF and the text viewing software Foxit Reader for Windows operating systems arises from allowing operations beyond the buffer boundaries in memory, enabling attackers to execute arbitrary code.
The vulnerability of the Foxit PhantomPDF PDF editing program and the Foxit Reader text viewing program for Windows operating systems relates to the execution of operations beyond the buffer in memory when processing annotation objects. Exploiting this vulnerability allows a malicious actor to...
The vulnerability of Google Chrome’s Skia graphic library allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of Google Chrome’s Skia graphics library is related to the storage of data beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the remap_struct function in the sysstat system monitoring and analysis tool allows a attacker to cause a service failure.
The vulnerability of the remapstruct function in the sysstat system performance monitoring and analysis tool involves reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure...
The vulnerability of the AdaptiveThresholdImage function in the console-based image editing tool ImageMagick allows a hacker to cause a service failure or expose protected information.
The vulnerability of the AdaptiveThresholdImage function MagickCore/threshold.c in the console-based image editing tool ImageMagick involves reading data beyond the buffer boundaries in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause service failures or reveal...
The vulnerability of the parse_hid_report_descriptor function (drivers/input/tablet/gtco.c) in the Linux operating system allows a hacker to trigger a service failure or exert other effects.
The vulnerability of the parsehidreportdescriptor function in the Linux kernel’s drivers/input/tablet/gtco.c file arises from a read operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause service failures or other effects such as...
qemu: cirrus: insufficient blit region checks
It was found that the Cirrus blit region checks were insufficient. A privileged guest user could use this flaw to write outside of VRAM-allocated buffer boundaries in the host's QEMU process address space with attacker-provided data...