The vulnerability in the LLVM Toolchain development tools, related to reading data beyond the buffer boundary, allows a attacker to trigger a service failure.

The vulnerability of the LLVM Toolchain development tools is related to reading data beyond the allowed buffer size. Exploiting this vulnerability could allow an attacker to cause a service failure...

OESA-2025-1700 postgresql security update

PostgreSQL is an advanced Object-Relational database management system DBMS. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine a...

OESA-2025-1698 postgresql security update

PostgreSQL is an advanced Object-Relational database management system DBMS. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine a...

CVE-2025-6657

PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

CVE-2025-6649

PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 lies in the ability to read beyond the buffer memory. This allows attackers to gain unauthorized access to protected information.

The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 is related to reading data beyond the buffer memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...

The vulnerability of the ioapic_write_indirect() function in the arch/x86/kvm/ioapic.c module of the virtualization subsystem on the Linux operating system’s x86 kernel platform allows a attacker to cause a service failure.

The vulnerability of the ioapicwriteindirect function in the arch/x86/kvm/ioapic.c module of the virtualization subsystem on the Linux operating system’s x86 kernel platform is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a servic...

The vulnerability of the __poke_user() function in the arch/s390/kernel/ptrace.c module of the Linux operating system allows a hacker to gain access to protected information or cause a service failure.

The vulnerability of the pokeuser function in the arch/s390/kernel/ptrace.c module of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to access protected information or cause service interruptions...

Vulnerability of the hci_dma_irq_handler() function in the drivers/i3c/master/mipi-i3c-hci/dma.c module – This driver is part of the Linux kernel’s I3C support mechanism, which can be exploited by attackers to cause service interruptions.

Vulnerability of the hcidmairqhandler function in the drivers/i3c/master/mipi-i3c-hci/dma.c module – The I3C driver support in the Linux kernel is vulnerable due to buffer out-of-buffer reading. Exploiting this vulnerability could allow an attacker to cause a system failure...

Medium: postgresql

Issue Overview: Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5...

The vulnerability of the tb_retimer_scan() function in the drivers/thunderbolt/retimer.c module of the Linux operating system allows a hacker to gain access to protected information or cause a service failure.

The vulnerability of the tbretimerscan function in the drivers/thunderbolt/retimer.c module of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to access protected information or cause service failures...

The vulnerability of the `synproxy_parse_options()` function in the `net/netfilter/nf_synproxy_core.c` module of the `netfilter` component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the synproxyparseoptions function in the net/netfilter/nfsynproxycore.c module of the netfilter component of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the fc_rport_prli_resp() function in the drivers/scsi/libfc/fc_rport.c module – This driver is part of the Linux operating system’s SCSI device support framework. It allows attackers to compromise the confidentiality and accessibility of protected information.

Vulnerability of the fcrportprliresp function in the drivers/scsi/libfc/fcrport.c module – The Linux system’s SCSI device support driver involves reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of...

The vulnerability of the rtw89_mac_c2h_mrc_func{} function in the drivers/net/wireless/realtek/rtw89/mac.h file of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the rtw89macc2hmrcfunc function in the drivers/net/wireless/realtek/rtw89/mac.h file of the Linux kernel is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the check_max_stack_depth() function in the kernel/bpf/verifier.c module, which is part of the BPF interpreter support in the Linux operating system’s kernel, allows a hacker to access protected information or trigger a service failure.

The vulnerability of the checkmaxstackdepth function in the kernel/bpf/verifier.c module, which is part of the BPF interpreter support in the Linux operating system, involves reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to access protected informatio...

The vulnerability of the cake_get_tcphdr() function in the net/sched/sch_cake.c module of the network scheduling subsystem of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the cakegettcphdr function in the net/sched/schcake.c module of the network scheduling subsystem of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the mptcp_get_options() function in the net/mptcp/options.c module, which is part of the Linux kernel’s networking functions, allows a hacker to cause a service failure.

The vulnerability of the mptcpgetoptions function in the net/mptcp/options.c module, which implements networking functions in the Linux kernel, relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the macro definition rtw89_for_each_in_txpwr_conf in the Linux kernel’s drivers/net/wireless/realtek/rtw89/core.h module allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the macro definition rtw89foreachintxpwrconf in the drivers/net/wireless/realtek/rtw89/core.h file of the Linux kernel is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility...

The vulnerability of the `ice_sriov_set_msix_vec_count()` function in the `drivers/net/ethernet/intel/ice/ice_sriov.c` file of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the icesriovsetmsixveccount function in the drivers/net/ethernet/intel/ice/icesriov.c file of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibili...

The vulnerability of the ngene_command_config_free_buf() function in the driver drivers/media/pci/ngene/ngene-core.c file of Micronas PCI Express card adapters in Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the ngenecommandconfigfreebuf function in the drivers/media/pci/ngene/ngene-core.c file of Micronas PCI Express card adapters related to Linux operating systems involves reading beyond the buffer’s boundaries. Exploiting this vulnerability can allow an attacker to cause a...