CVE-2026-37538

Buffer overflow vulnerability in socketcand 0.4.2 in file socketcand.c in function main allows attackers to cause a denial of service or other unspecified impacts via crafted busname...

CVE-2026-37538

Buffer overflow vulnerability in socketcand 0.4.2 in file socketcand.c in function main allows attackers to cause a denial of service or other unspecified impacts via crafted busname...

CVE-2026-37538

Buffer overflow vulnerability in socketcand 0.4.2 in file socketcand.c in function main allows attackers to cause a denial of service or other unspecified impacts via crafted busname...

CVE-2026-37538

Buffer overflow vulnerability in socketcand 0.4.2 in file socketcand.c in function main allows attackers to cause a denial of service or other unspecified impacts via crafted busname...

socketcand 安全漏洞

socketcand is a CAN bus network service daemon from the personal developer Jan-Niklas Meier. A security vulnerability exists in socketcand version 0.4.2, which stems from a buffer overflow in the main function in the socketcand.c file, allowing an attacker to cause a denial of service or other...

PT-2026-36512

Name of the Vulnerable Software and Affected Versions socketcand version 0.4.2 Description A buffer overflow occurs in the main function within the socketcand.c file. This issue allows attackers to cause a denial of service or other unspecified impacts by using a crafted bus name variable...

CVE-2026-37538

Buffer overflow vulnerability in socketcand 0.4.2 in file socketcand.c in function main allows attackers to cause a denial of service or other unspecified impacts via crafted busname...

EUVD-2026-26691

Buffer overflow vulnerability in socketcand 0.4.2 in file socketcand.c in function main allows attackers to cause a denial of service or other unspecified impacts via crafted busname...

CVE-2026-37538

CVE-2026-37538 describes a buffer overflow in socketcand 0.4.2 , occurring in the file socketcand.c within the main function, triggered by a crafted bus_name . The CVSS data indicates a network attack vector with no privileges required and high impact on availability , i.e., denial of service and...

CVE-2024-2854

A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to launch the attack remotely. The exploit has been...

PT-2022-7495 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a use after free vulnerability in the arc emac component of the Linux kernel. This vulnerability may allow an attacker to impact the confidentiality, integrity,...

CLSA-2022-1644927378 Fix of CVE: CVE-2021-4115

CVE-2021-4115: file decriptor leak due to incorrect handling of async streams in src/polkit/polkitsystembusname.c...

polkit -- local privilege escalation using polkit_system_bus_name_get_creds_sync

Cedric Buissart reports: The function polkitsystembusnamegetcredssync is used to get the uid and pid of the process requesting the action. It does this by sending the unique bus name of the requesting process, which is typically something like ":1.96", to dbus-daemon. These unique names are...

Fedora 20 : polkit-0.112-1.fc20 (2013-17160)

This release fixes CVE-2013-4288: Race condition with process subjects that do not have securely determined uid. pkcheck1 now supports a new format for the --process argument; all applications need to use the new format to avoid a race condition or use --system-bus-name to identify the process...