Buffer Access with Incorrect Length Value

Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

Buffer Access with Incorrect Length Value

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

Buffer Access with Incorrect Length Value

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

Buffer Access with Incorrect Length Value

Overview Affected versions of this package are vulnerable to Buffer Access with Incorrect Length Value in the processing of YUV 4:2:2 images. An attacker can cause a crash by supplying a malicious image file to an application utilizing the affected process. Workaround This vulnerability can be...

Buffer Access with Incorrect Length Value

Overview Affected versions of this package are vulnerable to Buffer Access with Incorrect Length Value via the readSeparateStripsIntoBuffer function in tiffcrop component. A process can crash on malformed TIFF directory that triggers a stack overflow. Remediation Upgrade libtiff to version 4.7.1 ...

SUSE CVE-2026-23184

In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF in bindernetlinkreport Oneway transactions sent to frozen targets via binderproctransaction return a BRTRANSACTIONPENDINGFROZEN error but they are still treated as successful since the target is expected to thaw a...

CVE-2026-23184 binder: fix UAF in binder_netlink_report()

In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF in bindernetlinkreport Oneway transactions sent to frozen targets via binderproctransaction return a BRTRANSACTIONPENDINGFROZEN error but they are still treated as successful since the target is expected to thaw a...

PT-2026-7441

Name of the Vulnerable Software and Affected Versions affected versions not specified Description A flaw exists in input validation within the System Management Mode SMM communications buffer. This could allow a user with elevated privileges to read from or write to memory outside of designated...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38061)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38061 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: pktgen: fix access outside of user...

MiracleLinux 8 : virt:rhel (AXSA:2020-322:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-322:01 advisory. QEMU: block: iscsi: OOB heap access via an unexpected response of iSCSI Server CVE-2020-1711 QEMU: slirp: OOB buffer access while emulating tcp...

CVE-2023-50806

A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850 Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380 Exynos 1330, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem...

EUVD-2023-60418

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix invalid buffer access for legacy rq The below crash can be encountered when using xdpsock in rx mode for legacy rq: the buffer gets released in the XDPREDIRECT path, and then once again in the driver. This fix...

CVE-2023-54223

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix invalid buffer access for legacy rq The below crash can be encountered when using xdpsock in rx mode for legacy rq: the buffer gets released in the XDPREDIRECT path, and then once again in the driver. This fix...

EUVD-2025-204025

Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication...

PT-2025-52888

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel related to out-of-bounds memory access within the ch341 transfer one function of the SPI CH341 driver. The len variable calculation includes a command...

CVE-2025-47367

Memory corruption while accessing a buffer during IOCTL processing...

CVE-2025-47367

Memory corruption while accessing a buffer during IOCTL processing...

CVE-2025-54330

CVE-2025-54330 affects Samsung Mobile Processor Exynos 1380 (NPU) with an out-of-bounds read in the __is_done_for_me function, through July 2025. Vulnerable component: NPU inside the Exynos 1380 SoC. Impact as per CVSS: Medium (5.3), networked, requires no user interaction, no privileges. No fixe...

PT-2025-44931

Name of the Vulnerable Software and Affected Versions WinBlast Driver affected versions not specified Description A memory corruption issue exists when accessing a buffer during IOCTL processing. This can lead to an out-of-bounds write condition. Recommendations At the moment, there is no...

OESA-2025-2470 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READ Since before the git era, NFSD has conserved the number of pages held by each nfsd thread by combining t...