EUVD-2026-33680

A flaw has been found in OpenSC up to 0.26.1. This affects the function testkpgencertwrite of the file src/tools/pkcs11-tool.c of the component pkcs11-tool Key Generation Module. This manipulation causes buffer overflow. The attack is possible to be carried out remotely. The complexity of an atta...

EUVD-2025-206707

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 2200, 1330, 1380, 1480, 1580, W920, W930, and W1000. There is unbounded memory allocation via a large buffer in a /proc/driver/unifi0/p2pcertif write operation, leading to...

CVE-2025-58347

CVE-2025-58347 affects Samsung Exynos-based devices (Mobile and Wearable Processors including Exynos 980/850/1080/1280/1330/1380/1480/1580, W920/W930/W1000). The issue is an unbounded memory allocation caused by a large buffer in a /proc/driver/unifi0/p2p_certif write operation, leading to kernel...

JLSEC-2025-231 Mbed TLS before 3.6.4 allows a use-after-free in certain situations of applications that are develop...

Mbed TLS before 3.6.4 allows a use-after-free in certain situations of applications that are developed in accordance with the documentation. The function mbedtlsx509stringtonames takes a head argument that is documented as an output argument. The documentation does not suggest that the function...

UBUNTU-CVE-2025-47917

Mbed TLS before 3.6.4 allows a use-after-free in certain situations of applications that are developed in accordance with the documentation. The function mbedtlsx509stringtonames takes a head argument that is documented as an output argument. The documentation does not suggest that the function...