426 matches found
SAMSUNG mTower 缓冲区错误漏洞
SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower versions prior to 0.3.0, which stems from an "incorrect length buffer access" vulnerability in the TEECipherUpdate function that could allow a trusted application ...
CVE-2021-33650
When performing the inference shape operation of the SparseToDense operator, if the number of inputs is less than three, it will access data outside of bounds of inputs which allocated from heap buffers...
CVE-2022-21237
Improper buffer access in firmware for some IntelR NUCs may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2022-21237
Improper buffer access in firmware for some IntelR NUCs may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2022-21237
CVE-2022-21237 affects Intel® NUC firmware with an improper buffer access issue that could allow a local, privileged escalation. Intel’s advisory (INTEL-SA-00654) lists affected NUC BIOS/firmware and provides mitigations via updated firmware versions. The vulnerability is local, requires no user ...
CVE-2021-34339
Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString in decompiler.c file that causes a direct segmentation fault and leads to denial of service...
CVE-2021-34339
Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString in decompiler.c file that causes a direct segmentation fault and leads to denial of service...
CVE-2021-34340
Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCRDECR in decompiler.c file that causes a direct segmentation fault and leads to denial of service...
Out-of-bounds
Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString in decompiler.c file that causes a direct segmentation fault and leads to denial of service...
UBUNTU-CVE-2021-34340
Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCRDECR in decompiler.c file that causes a direct segmentation fault and leads to denial of service...
CVE-2021-34339
Ming 0.4.8 contains an out-of-bounds buffer access in getString() within decompiler.c that triggers a direct segmentation fault, leading to a denial of service. This is the concrete technical detail documented across multiple sources in the connected documents, confirming the vulnerable component...
CVE-2021-34339
Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString in decompiler.c file that causes a direct segmentation fault and leads to denial of service...
CVE-2021-34340
Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCRDECR in decompiler.c file that causes a direct segmentation fault and leads to denial of service...
CVE-2021-34340
CVE-2021-34340 affects Ming 0.4.8. The vulnerability is an out-of-bounds buffer access in decompiler.c (function decompileINCR_DECR()) that can trigger a direct segmentation fault, leading to denial of service. The connected sources (Red Hat, Ubuntu, CNVD, OSV, CNVD-2022, etc.) consistently descr...
Rocky Linux 8 : virt:rhel and virt-devel:rhel (RLSA-2021:3061)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:3061 advisory. - hw/pci/msix.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access via a crafted address in an msi-x mmio operation. CVE-2020-13754 ...
CVE-2022-0519
Buffer Access with Incorrect Length Value in GitHub repository radareorg/radare2 prior to 5.6.2...
CVE-2022-0519
Buffer Access with Incorrect Length Value in GitHub repository radareorg/radare2 prior to 5.6.2...
UBUNTU-CVE-2022-0519
Buffer Access with Incorrect Length Value in GitHub repository radareorg/radare2 prior to 5.6.2...
CVE-2022-0519
Buffer Access with Incorrect Length Value in GitHub repository radareorg/radare2 prior to 5.6.2...
CVE-2022-0519
CVE-2022-0519 affects the radare2 project (radareorg/radare2) and is described as a Buffer Access with Incorrect Length Value in versions prior to 5.6.2. Public sources in connected documents consistently reference radare2 with this fixed window (e.g., Alpine and Fedora advisories noting updates ...