4204 matches found
CVE-2023-53788 ALSA: hda/ca0132: fixup buffer overrun at tuning_ctl_set()
In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: fixup buffer overrun at tuningctlset tuningctlset might have buffer overrun at X if it didn't break from loop by matching A. static int tuningctlset... for i = 0; i TUNINGCTLSCOUNT; i++ A if nid ==...
CVE-2023-53788
In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: fixup buffer overrun at tuningctlset tuningctlset might have buffer overrun at X if it didn't break from loop by matching A. static int tuningctlset... for i = 0; i TUNINGCTLSCOUNT; i++ A if nid ==...
CVE-2023-53788 ALSA: hda/ca0132: fixup buffer overrun at tuning_ctl_set()
In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: fixup buffer overrun at tuningctlset tuningctlset might have buffer overrun at X if it didn't break from loop by matching A. static int tuningctlset... for i = 0; i TUNINGCTLSCOUNT; i++ A if nid ==...
CVE-2023-53788
Technical details about CVE-2023-53788 are not provided in the connected documents. The SUSE advisories list the vulnerability, but no specifics on affected products/versions, root cause, or fixes are disclosed here. Monitor for updates.
expat: Large number of prefixed XML attributes on a single tag can crash libexpat
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to buffer overrun. The highest threat from this vulnerability is to availability...
ROS-20251202-08
Vulnerability in the Dawn component of Google Chrome browser is related to writing beyond buffer boundaries. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to affect the accessibility of protected information...
TencentOS Server 3: mysql:8.0 (TSSA-2024:0079)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0079 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
PT-2026-2505
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the fsl-cpm driver within the Linux kernel related to handling transfer sizes during SPI communication. A commit intended to optimize large transfers by switching to...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49971)
drm/amd/display: dml2coresharedmodesupport and dmlcoremodesupport access the third element of dummyboolean, for example: hwdebug5 = &s-dummyboolean. Any assignment to hwdebug5 would cause an OVERRUN. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49995)
tipc: vulnerability due to a potential buffer overrun when copying medianame and ifname to nameparts, which may be prevented by using strscpy to avoid overwriting the destination buffer. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
Siemens SIMATIC S7-1500 Out-of-bounds Write (CVE-2023-34319)
The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the headers would come in one piece. Unfortunately the logic introduced there didn't account for the extreme case of the entire packet being split into as many piece...
Siemens SIMATIC S7-1500 Off-by-one Error (CVE-2022-3821)
An off-by-one Error issue was discovered in Systemd in formattimespan function of time-util.c. An attacker could supply specific values for time and accuracy that leads to buffer overrun in formattimespan, leading to a Denial of Service. This plugin only works with Tenable.ot. Please visit...
ROS-20251031-02
A vulnerability in the nvJPEG library of the NVIDIA CUDA Toolkit, a software tool for parallel computing on graphics processors, is related to buffer overruns. The NVIDIA CUDA Toolkit GPU parallel computing software nvJPEG library vulnerability is related to writing outside buffer boundaries...
CVE-2025-10920
GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open...
Advisory ROSA-SA-2025-3040
Software: gnutls 3.6.16 OS: ROSA Virtualization 2.1 unaffected versions = gnutls-3.6.16-8.0.1.rv3.4 affected versions gnutls-3.6.16-8.0.1.1.rv3.4 CVE-ID: CVE-2024-12243 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in GnuTLS when processing ASN.1 data via libtasn1 could result in...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26659)
xhci: isoc Babble and Buffer Overrun events are not handled properly. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503655; scriptversion"1.2";...
CLSA-2025-1760022476 opensc: Fix of CVE-2023-2977
CVE-2023-2977: correct left length calculation to fix buffer overrun bug...
EUVD-2017-6377
Malware in sbrugna...
EUVD-2017-8046
Malware in sbrugna...
EUVD-2017-17724
Malware in sbrugna...