Samsung DSP Driver Out-of-Bounds Write Vulnerability (CNVD-2025-02733)

Samsung DSP driver is a digital signal processing driver for Samsung mobile devices. The Samsung DSP driver suffers from an out-of-bounds write vulnerability that stems from incorrect boundary checking, which can be exploited by an attacker to perform out-of-bounds memory accesses...

The vulnerability of Cisco IOS XE operating systems arises from incorrect checking of arguments passed in the loading script. This allows a malicious actor to execute arbitrary code on the vulnerable Linux-based device.

The vulnerability of Cisco IOS XE operating systems exists due to incorrect checking of arguments passed in the loading script. Exploiting this vulnerability allows a perpetrator to execute arbitrary code on the vulnerable Linux-based device...

OpenSSL Trust Management Issues Vulnerabilities

OpenSSL is an open source capable general-purpose cryptographic library from the Openssl team that implements the Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. The product supports a variety of cryptographic algorithms , including symmetric ciphers , hash algorithms ,...

Cisco IOS XE Buffer Overflow Vulnerability

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A buffer overflow vulnerability exists in the vDaemon process for SD-WAN on Cisco IOS XE. The vulnerability stems from insufficient boundary checking when the device processes...

Buffer overflow

A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when the device processes traffic. An attacker could exploit this...

CVE-2021-1433 Cisco IOS XE SD-WAN Software vDaemon Buffer Overflow Vulnerability

A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when the device processes traffic. An attacker could exploit this...

CVE-2021-1433 Cisco IOS XE SD-WAN Software vDaemon Buffer Overflow Vulnerability

A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when the device processes traffic. An attacker could exploit this...

Google Android Buffer Overflow Vulnerability (CNVD-2021-19683)

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android/Pixel suffers from a security vulnerability that could allow out-of-bounds writes due to a lack of boundary checking. No details of the vulnerability are available at this...

SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0870-1)

This update for the Linux Kernel 4.4.121-92138 fixes several issues. The following security issues were fixed : CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel bsc1181553. CVE-2020-27786: Fixed a potential user afte...

SUSE-SU-2021:0842-1 Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-249 fixes several issues. The following security issues were fixed: - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check bsc1179664. - Fixed an...

SUSE-SU-2021:0841-1 Security update for the Linux Kernel (Live Patch 8 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-2443 fixes several issues. The following security issues were fixed: - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check bsc1179664. -...

SUSE-SU-2021:0870-1 Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94116 fixes several issues. The following security issues were fixed: - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel bsc1181553. - CVE-2020-27786: Fixed a potential user...

SUSE-SU-2021:0835-1 Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94138 fixes several issues. The following security issues were fixed: - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation bsc1179616. - CVE-2020-28374: Fixed insufficient identifier checking...

CVE-2020-11227

Out of bound write while parsing RTT/TTY packet parsing due to lack of check of buffer size before copying into buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music,...

Security Bulletin: IBM Security Directory Suite is affected by a vulnerability (CVE-2020-4329)

Summary IBM Security Directory Suite SDS VA has addressed the following vulnerability due to remote, authenticated attacker to obtain sensitive information, caused by improper parameter checking. Vulnerability Details CVEID: CVE-2020-4329 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8....

USN-4787-1 jq vulnerability

It was discovered that jq did not perform sufficient bounds checking, resulting in unbounded resource consumption. An attacker could use this vulnerability to cause a denial of service...

USN-4783-1 node-minimatch vulnerability

It was discovered that minimatch did not perform necessary bounds checking on regular expressions. An attacker could use this vulnerability to cause a denial of service...

Google Android Information Disclosure Vulnerability (CNVD-2021-24958)

Google Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA. Google Android suffers from an information disclosure vulnerability. The vulnerability stems from an out-of-bounds read due to improper boundary checking in BnAudioPolicyService :: onTransa...

Google Android elevation of privilege vulnerability (CNVD-2021-24923)

Google Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA. Google Android 11 suffers from an elevation of privilege vulnerability. The vulnerability stems from an out-of-bounds read due to improper boundary checking in nciprocrfmanagementntf in...

CVE-2020-5025

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 9.7, 10.1, 10.5, 11.1, and 11.5 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges. IBM X-Force ID: 193661...