Lucene search
+L

24 matches found

OSV
OSV
added 2026/07/08 11:35 a.m.8 views

BIT-PHP-2026-14355 ext/openssl: Memory corruption in openssl_encrypt with AES-WRAP-PAD

In PHP versions 8.2. before 8.2.32, 8.3. before 8.3.32, 8.4. before 8.4.23, 8.5. before 8.5.8, the AES-WRAP-PAD algorithm implementation in OpenSSL extension contains a buffer allocation flaw. The output buffer for the AES key-wrap-with-padding operation is sized from the plaintext length without...

5.6CVSS6.1AI score0.00306EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/07/06 4:54 a.m.3 views

kernel: ipv4: account for fraggap on the paged allocation path

A flaw was found in the Linux kernel's handling of IPv4 network packets. An error in how the kernel accounts for fragmented data during memory allocation can lead to an undersized memory buffer. This memory handling issue could potentially be exploited by a remote attacker to cause a system crash...

7.8CVSS5.3AI score0.00191EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/19 12:41 a.m.6 views

postgresql: libpq: libpq undersizes allocations, via integer wraparound

A vulnerability has been identified in PostgreSQL’s libpq client library, where integer wraparound in several allocation-size calculations allows a peer or input provider to cause an undersized buffer and then write out-of-bounds by hundreds of megabytes. This can lead to a client application...

5.9CVSS5.8AI score0.00332EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/04 7:59 a.m.5 views

postgresql: libpq: libpq undersizes allocations, via integer wraparound

A vulnerability has been identified in PostgreSQL’s libpq client library, where integer wraparound in several allocation-size calculations allows a peer or input provider to cause an undersized buffer and then write out-of-bounds by hundreds of megabytes. This can lead to a client application...

5.9CVSS5.8AI score0.00332EPSS
Exploits0References5
OSV
OSV
added 2025/10/20 1:19 p.m.13 views

CLSA-2025-1760966342 glibc: Fix of CVE-2025-0395

CVE-2025-0395: fix buffer underallocation in assert and libcfatal mmap handling...

6.2CVSS7.4AI score0.00349EPSS
Exploits0References1
OSV
OSV
added 2025/10/15 3:31 p.m.7 views

CLSA-2025-1760542306 glibc: Fix of CVE-2025-0395

CVE-2025-0395: fix buffer underallocation in assert and libcfatal mmap handling...

6.2CVSS6.9AI score0.00349EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 4:52 p.m.6 views

CLSA-2025-1760460711 glibc: Fix of CVE-2025-0395

CVE-2025-0395: fix buffer underallocation in assert and libcfatal mmap handling...

6.2CVSS6.9AI score0.00349EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:24 p.m.6 views

CVE-2020-11137

Integer multiplication overflow resulting in lower buffer size allocation than expected causes memory access out of bounds resulting in possible device instability in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...

10CVSS9.8AI score0.01085EPSS
Exploits0References1
OSV
OSV
added 2025/04/07 8:15 p.m.16 views

UBUNTU-CVE-2025-29087

In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string e.g., 2MB or more, an integer overflow occurs in calculating the size of the...

7.5CVSS6.1AI score0.00487EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/03/25 8:29 p.m.2 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 8:18 p.m.3 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 8:13 p.m.5 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 8:11 p.m.5 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 8:10 p.m.5 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 8:8 p.m.4 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 7:40 p.m.6 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 7:39 p.m.5 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 7:36 p.m.5 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 7:35 p.m.5 views

Mozilla: Integer overflow could have led to out of bounds write

The Mozilla Foundation Security Advisory describes this flaw as: AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write...

8.4CVSS7.5AI score0.00385EPSS
Exploits1References6
AlpineLinux
AlpineLinux
added 2024/03/19 12:2 p.m.32 views

CVE-2024-2608

AppendEncodedAttributeValue, ExtraSpaceNeededForAttrEncoding and AppendEncodedCharacters could have experienced integer overflows, causing underallocation of an output buffer leading to an out of bounds write. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9...

8.4CVSS7.2AI score0.00385EPSS
Exploits1
Rows per page
Query Builder