4224 matches found
CVE-2022-42262
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service...
CVE-2022-35928
AES Crypt is a file encryption software for multiple platforms. AES Crypt for Linux built using the source on GitHub and having the version number 3.11 has a vulnerability with respect to reading user-provided passwords and confirmations via command-line prompts. Passwords lengths were not checke...
CVE-2025-68753 ALSA: firewire-motu: add bounds check in put_user loop for DSP events
In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it could overwrite beyond the buffer...
PT-2026-5018
Name of the Vulnerable Software and Affected Versions Xen affected versions not specified Description The issue relates to the context switch logic within Xen. Specifically, Xen attempts to skip an IBPB Instruction Barrier Page Base when a virtual CPU vCPU returns to a CPU it previously ran on...
PT-2026-7846
PostgreSQL and Affected Versions PostgreSQL versions prior to 18.3 PostgreSQL versions prior to 17.9 PostgreSQL versions prior to 16.13 PostgreSQL versions prior to 15.17 PostgreSQL versions prior to 14.22 PostgreSQL version 9.3 Description PostgreSQL is susceptible to a buffer overrun due to...
CVE-2025-11964 OOBW in utf_16le_to_utf_8_truncated() in libpcap
On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message includes characters that UTF-8 represents using 4 bytes, utf16letoutf8truncated can write data beyond the end of the provided buffer...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992922)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992922 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: bcm - Fix pointer arithmetic In spu2dumpomd value of ptr is increased by ciphkeylen inste...
SUSE CVE-2023-54054
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CLSA-2025-1766601879 gnutls: Fix of CVE-2025-32989
CVE-2025-32989: fix read buffer overrun in x509 SCT timestamps...
EUVD-2023-60272
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix buffer overrun Klocwork warning: Buffer Overflow - Array Index Out of Bounds Driver uses fcelsflogi to calculate size of buffer. The actual buffer is nested inside of fcelsflogi which is smaller. Replace...
CVE-2023-54054
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2023-54054
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2023-54054
...
CVE-2023-54054
CVE-2023-54054 pertains to the Linux kernel SCSI qla2xxx driver, where a buffer overrun occurred in the handling of fc_els_flogi, leading to an incorrect buffer size calculation. Multiple connected sources (OSV entries for Debian, Ubuntu, and general OSV) report that the vulnerability has been re...
CVE-2023-54054 scsi: qla2xxx: Fix buffer overrun
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix buffer overrun Klocwork warning: Buffer Overflow - Array Index Out of Bounds Driver uses fcelsflogi to calculate size of buffer. The actual buffer is nested inside of fcelsflogi which is smaller. Replace...
PT-2025-53052
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the qla2xxx SCSI driver that can lead to a buffer overrun. The issue stems from an incorrect buffer size calculation during the use of the fc els...
CVE-2025-14409
Soda PDF Desktop PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Soda PDF Desktop. User interaction is required to exploit this vulnerability in that the target must visit a...
ROS-20251216-7349
A vulnerability in the Gimp image processing library is related to writing beyond buffer boundaries. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by loading a specially crafted ICNS file...
ROS-20251215-7303
A vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to an operation exceeding the memory buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
CVE-2023-53788
In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: fixup buffer overrun at tuningctlset tuningctlset might have buffer overrun at X if it didn't break from loop by matching A. static int tuningctlset... for i = 0; i TUNINGCTLSCOUNT; i++ A if nid ==...