The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in its ability to copy buffers without checking the size of the input data. This allows attackers to execute arbitrary code.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created RTF file...

CVE-2025-21734

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix copy buffer page size For non-registered buffer, fastrpc driver copies the buffer and pass it to the remote subsystem. There is a problem with current implementation of page size calculation which is not...

UBUNTU-CVE-2025-21734

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix copy buffer page size For non-registered buffer, fastrpc driver copies the buffer and pass it to the remote subsystem. There is a problem with current implementation of page size calculation which is not...

CVE-2025-21734 misc: fastrpc: Fix copy buffer page size

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix copy buffer page size For non-registered buffer, fastrpc driver copies the buffer and pass it to the remote subsystem. There is a problem with current implementation of page size calculation which is not...

CVE-2022-49464

In the Linux kernel, the following vulnerability has been resolved: erofs: fix buffer copy overflow of ztailpacking feature I got some KASAN report as below: 46.959738 ================================================================== 46.960430 BUG: KASAN: use-after-free in...

CVE-2022-49464 erofs: fix buffer copy overflow of ztailpacking feature

In the Linux kernel, the following vulnerability has been resolved: erofs: fix buffer copy overflow of ztailpacking feature I got some KASAN report as below: 46.959738 ================================================================== 46.960430 BUG: KASAN: use-after-free in...

CVE-2021-35123

Buffer copy in GATT multi notification due to improper length check for the data coming over-the-air in Snapdragon Connectivity, Snapdragon Industrial IOT...

CVE-2022-25708

Memory corruption in WLAN due to buffer copy without checking size of input while parsing keys in Snapdragon Connectivity, Snapdragon Mobile...

CVE-2022-33276

Memory corruption due to buffer copy without checking size of input in modem while receiving WMIREQUESTSTATSCMDID command...

CVE-2022-33277

Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command...

CVE-2022-33259

Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received...

CVE-2022-40514

Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame...

CVE-2024-27130

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute code via a network. We have already fixed the vulnerability in the following version: QTS 5.1.7.2770 build...

The vulnerability of the GSL mathematical library, related to copying buffers without checking the input data, allows a violator to trigger a service failure.

The vulnerability of the GSL mathematical library relates to the copying of buffers without checking the input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the EctEnhancedCT method in the DICOM DCMT format allows a intruder to gain unauthorized access to protected information.

The vulnerability of the EctEnhancedCT method in the DICOM DCMT library lies in the copying of buffers without checking the input data. Exploiting this vulnerability could allow an unauthorized actor to gain unauthorized access to protected information...

The vulnerability of the __zzip_fetch_disk_trailer() function in the /zzip/zip.c component of the ZZIPlib compression library allows a hacker to induce a service failure.

The vulnerability of the zzipFetchFetchDiskTrailer function in the /zzip/zip.c component of the ZZIPlib compression library is related to the copying of buffers without checking the input data. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of the Network Stack module in Qualcomm’s embedded software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the Network Stack module in Qualcomm’s embedded software lies in the copying of buffers without checking the size of the input data during the processing of IPA structures. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause system failures...

The vulnerability of the iwl_mvm_send_recovery_cmd function in the drivers/net/wireless/intel/iwlwifi/mvm/fw.c file of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the iwlmvmsendrecoverycmd function in the drivers/net/wireless/intel/iwlwifi/mvm/fw.c module of the Linux kernel is related to the copying of buffers without checking the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

PT-2025-51556

Name of the Vulnerable Software and Affected Versions Qualcomm embedded platform firmware affected versions not specified Description A memory corruption issue exists when handling packets received from Unix clients. The firmware does not properly validate the size of incoming data during buffer...

The vulnerability of the sub_422eb8 function in Linksys E8450 Wi-Fi routers allows a hacker to induce a service failure.

The vulnerability of the sub422eb8 function in Linksys E8450 Wi-Fi routers’ microprogramming software lies in the copying of buffers without checking the size of the input data during the strcopy parameter processing. Exploiting this vulnerability can allow an attacker to cause service...