tipc: guard against string buffer overrun

...

The vulnerability of the PDF editing program Foxit PDF Editor (formerly Foxit PhantomPDF) relates to the execution of operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Foxit PDF Editor formerly Foxit PhantomPDF PDF editing program is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created PDF file...

The vulnerability of the dwfcore.dll library in Autodesk Navisworks allows a perpetrator to execute arbitrary code.

The vulnerability of the dwfcore.dll library in Autodesk Navisworks software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the PDF XRef Stream Handler component in the Ghostscript software suite for document processing, conversion, and generation means that a malicious actor can compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the PDF XRef StreamHandler component in the Ghostscript software for document processing, conversion, and generation is related to the execution of operations outside of the buffer. Exploiting this vulnerability could allow an attacker to influence the confidentiality,...

The vulnerabilities of the ODXSW_DLL.dll and libodxdll.dll libraries, which are software components for modeling, design, and drawing in AutoCAD, allow attackers to gain unauthorized access to protected information, execute arbitrary code, or cause service interruptions.

The vulnerability of the ODXSWDLL.dll and libodxdll.dll libraries, which are used in AutoCAD modeling, design, and drafting software, relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to...

The vulnerability of the ext4_mb_find_by_goal() function in the Linux operating system, related to the operation of writing beyond the buffer in memory, allows a malicious actor to cause a service failure.

The vulnerability of the ext4mbfindbygoal function in the Linux operating system is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Bluetooth Low Energy (BLE) technology in tool sets and libraries for setting up wireless connections provided by Cypress’ Bluetooth SDK allows a intruder to trigger a service failure.

The vulnerability of the Bluetooth Low Energy BLE technology, as well as the toolkits and libraries for configuring wireless connections in Cypress’ Bluetooth SDK, is related to the issue where an operation goes beyond the buffer boundaries in memory when processing the Length field of the Data...

AZL-52306 CVE-2024-50131 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: tracing: Consider the NULL character when validating the event length strlen returns a string length excluding the null byte. If the string length equals to the maximum buffer length, the buffer will have no space for the NULL...

The vulnerability of the AcTranslators.exe executable file of the AutoCAD simulation, design, and drafting software allows a perpetrator to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the AcTranslators.exe executable file of the AutoCAD modeling, design, and drafting software relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the libodxdll.dll library in the AutoCAD modeling, design, and drafting software allows a perpetrator to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the libodxdll.dll library in software for simulation, design, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information, execu...

The vulnerability of the AcTranslators.exe executable file of the AutoCAD simulation, design, and drafting software allows a perpetrator to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the AcTranslators.exe executable file of the AutoCAD simulation, design, and drafting software is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...

The vulnerability of the AcTranslators.exe executable file of the AutoCAD simulation, design, and drafting software allows a perpetrator to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the AcTranslators.exe executable file of the AutoCAD simulation, design, and drafting software is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...

Buffer overrun from integer overflow in array modification (CVE-2023-5869)

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing...

The vulnerability of the PAN-OS operating system, related to the operation of data beyond the buffer in memory, allows a perpetrator to trigger a service failure.

The vulnerability of the PAN-OS operating system is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the web interface of DrayTek Vigor microprogramming software-enabled routers allows a hacker to modify settings or cause service failures.

The vulnerability of the web interface of DrayTek Vigor microprogramming software lies in the writing and reading of data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to modify settings remotely or cause service failures...

The vulnerability of the web interface of DrayTek Vigor microprogramming software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the web interface of DrayTek Vigor microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely or cause a service failure by sending a specially...

The vulnerability of the cs_dsp_load() function in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the csdspload function in the drivers/firmware/cirrus/csdsp.c file of the Linux kernel is related to memory writing beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the UEFI Firmware component of Intel microprogramming systems, related to writing beyond the buffer boundaries, allows attackers to enhance their privileges.

The vulnerability of the UEFI Firmware component of Intel microprocessors is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the arp component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the arp component in the Linux operating system’s kernel is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the iucv_cpu_down_prep() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the iucvcpudownprep function in the net/iucv/iucv.c module of the Linux kernel is related to memory writing beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...