313163 matches found
Astra Linux - уязвимость в graphviz
A buffer overflow in the Graphviz Graph Visualization Tools, starting from the commit ID f8b9e035 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service application crash by loading a crafted file into the "lib/common/shapes.c" component...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: ath12k – Buffer overflow in debugfs If the user attempts to write more than 32 bytes, it will result in memory corruption. Fortunately, since this issue relates to debugfs, it only affects root users...
Astra Linux - уязвимость в dcmtk
A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service DoS attack through a malicious DCM file...
Astra Linux - уязвимость в mongo-c-driver
The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflows when performing operations that could result in a final BSON document exceeding the maximum allowable size INT32MAX, leading to a segmentation fault and potentially causing the application to...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: net/sun382586: A potential memory leak has been fixed in sun382586sendpacket. In sun382586sendpacket, if skb-len is too long, it returns NETDEVTXOK without freeing the skb. To address this issue, add a call to devkfreeskb to...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1, linux
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: mwifiex: Fixed a warning regarding memcpy operations that span entire fields in mwifiexcmd80211scanext. Replace a one-element array with a flexible-array member in struct hostcmdds80211scanext. This fix addresses the...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: bna: Adjust the ‘name’ buffer size of bnatcb and bnaccb structures. To ensure there is enough space to store all possible arguments for sprintf. Currently, the ‘name’ size is 16 characters, but the first '%s' specifier may...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Wifi: brwimac: pcie: handling of randbuf allocation failure The kzalloc function in brwimacpciedownloadfwnvram will return null if physical memory runs out. As a result, if we use getrandombytes to generate random bytes into the...
Astra Linux - уязвимость в hdf5
The HDF5 library from version 1.14.3 has a heap-based buffer overflow issue in the H5Olayoutencode function within H5Olayout.c, which leads to the corruption of the instruction pointer...
Astra Linux - уязвимость в hdf5
A buffer overflow in H5Olayoutencode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service through a crafted HDF5 file. This issue was triggered during the repacking of an HDF5 file, also known as “Invalid write of size 2.”...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Fixed the buffer overflow in showrcu TasksTracegpkthread. There is a possibility of buffer overflow in showrcuTasksTracegpkthread if the counters passed to sprintf are very large. The counter values used for this...
Astra Linux - уязвимость в libde265
It was discovered that Libde265 v1.0.8 contains a heap-buffer-overflow vulnerability through the use of mcchroma in the motion.cc library. This vulnerability allows attackers to cause a Denial of Service DoS attack by using a specially crafted video file...
Astra Linux - уязвимость в libde265
libde265 v1.0.4 contains a heap buffer overflow vulnerability in the mmloadlepi64 function, which can be exploited through a specially crafted file...
Astra Linux - уязвимость в libmysofa
A buffer overflow in the readDataVar function in hdf/dataobject.c within Symonics’ libmysofa 0.5 – 1.1 allows attackers to execute arbitrary code through a crafted SOFA...
Astra Linux - уязвимость в linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: phonet/pep: fixed the use of racyskbqueueempty The receive queues are protected by their respective spin-locks, not the socket lock. This could lead to skbpeek returning NULL or a pointer to a socket buffer that has already been...
Astra Linux - уязвимость в ffmpeg, ffmpeg5
A buffer overflow vulnerability exists in Ffmpeg v.n6.1-3-g466799d4f5, allowing a local attacker to execute arbitrary code through the ffbwdiffilterintrac function in the libavfilter/bwdifdsp.c:125:5 component...
Astra Linux - уязвимость в edk2
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Firmware: csdsp: Prevent buffer overflows when processing V2 algorithm headers. It is necessary to ensure that all fields of a V2 algorithm header fit within the available firmware data buffer. The wmfw V2 format introduces...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Added a 0 size check to mtkdrmgemobj. Added a check in mtkdrmgeminit if we attempt to allocate a GEM object of 0 bytes. Currently, no such check exists, and the kernel will panic if a user-space application attempts...
Astra Linux - уязвимость в texlive-bin
It was discovered that texlive-bin commit c515e contains a heap buffer overflow vulnerability through the function ttfLoadHDMX:ttfdump. This vulnerability allows attackers to cause a Denial of Service DoS by providing a malicious TTF file...