Lucene search
K

524 matches found

Positive Technologies
Positive Technologies
added 2025/06/09 12:0 a.m.7 views

PT-2025-24542 · Unknown · React-Native-Keys

Name of the Vulnerable Software and Affected Versions: react-native-keys version 0.7.11 Description: The issue concerns sensitive information disclosure, where encryption cipher and Base64 chunks are stored as plaintext in the compiled native binary. Attackers can extract these secrets using basi...

7.5CVSS5.7AI score0.0017EPSS
Exploits1References12
RedhatCVE
RedhatCVE
added 2025/05/22 4:33 p.m.4 views

CVE-2020-25791

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, the array size is not checked when constructed with unit...

7.5CVSS6.8AI score0.01733EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:33 p.m.8 views

CVE-2020-25795

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, insertfrom can have a memory-safety issue upon a panic...

7.5CVSS6.8AI score0.01719EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:19 p.m.10 views

CVE-2020-25796

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the InlineArray implementation, an unaligned reference may be generated for a type that has a large alignment requirement...

7.5CVSS6.7AI score0.01634EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:22 p.m.8 views

CVE-2020-25792

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, the array size is not checked when constructed with pair...

7.5CVSS6.8AI score0.02841EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:22 p.m.8 views

CVE-2020-25794

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, clone can have a memory-safety issue upon a panic...

7.5CVSS6.8AI score0.01733EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:22 p.m.5 views

CVE-2020-25793

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, the array size is not checked when constructed with From...

7.5CVSS6.8AI score0.01634EPSS
Exploits1
Veracode
Veracode
added 2025/05/20 6:34 a.m.4 views

Heap Based Buffer Overflow

openexr is vulnerable to a heap-based buffer overflow. The vulnerability is due to bad pointer math during decompression of DWAA-packed scan-line EXR files with a maliciously forged chunk, which allows an attacker to trigger memory corruption and potentially execute arbitrary code...

9.1CVSS6.9AI score0.00496EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2025/05/06 10:17 a.m.4 views

SUSE-SU-2025:20217-1 Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issues: Update to version 2.42.12: + Fix a build failure, + Fix occasional build failures, + ani: Reject files with multiple INA or IART chunks, + ani: Reject files with multiple anih chunks CVE-2022-48622 bsc1219276, + ani: validate chunk size, +...

7.8CVSS5.8AI score0.00415EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2025/05/03 2:50 a.m.3 views

SUSE CVE-2023-53134

In the Linux kernel, the following vulnerability has been resolved: bnxten: Avoid order-5 memory allocation for TPA data The driver needs to keep track of all the possible concurrent TPA GRO/LRO completions on the aggregation ring. On P5 chips, the maximum number of concurrent TPA is 256 and the...

5.5CVSS6.3AI score0.00155EPSS
Exploits0References9
OSV
OSV
added 2025/05/01 2:9 p.m.8 views

CVE-2022-49838 sctp: clear out_curr if all frag chunks of current msg are pruned

In the Linux kernel, the following vulnerability has been resolved: sctp: clear outcurr if all frag chunks of current msg are pruned A crash was reported by Zhen Chen: listdel corruption, ffffa035ddf01c18-next is NULL WARNING: CPU: 1 PID: 250682 at lib/listdebug.c:49 listdelentryvalid+0x59/0xe0...

5.5CVSS4.9AI score0.00183EPSS
Exploits0References7
Huntr
Huntr
added 2025/04/04 1:4 p.m.8 views

MD5 Hash Collision in DocugamiReader Overwrites Structurally Distinct Chunks with Identical Text

Description The DocugamiReader class in llamaindex retrieves structured XML documents from the Docugami API, parses them into semantic chunks, and converts them into Document objects. To assign consistent IDs to each chunk, the following logic is used: hashedid =...

6.5CVSS7.2AI score0.00314EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2020-25793

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, the array size is not checked when constructed with From...

7.5CVSS7AI score0.01634EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2025/02/27 3:8 a.m.4 views

SUSE CVE-2022-49335

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/cs: make commands with 0 chunks illegal behaviour. Submitting a cs with 0 chunks, causes an oops later, found trying to execute the wrong userspace driver. MESALOADERDRIVEROVERRIDE=v3d glxinfo 172536.665184 BUG: kernel...

5.5CVSS7.8AI score0.00262EPSS
Exploits0References10
OSV
OSV
added 2025/02/26 7:1 a.m.6 views

DEBIAN-CVE-2022-49335

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/cs: make commands with 0 chunks illegal behaviour. Submitting a cs with 0 chunks, causes an oops later, found trying to execute the wrong userspace driver. MESALOADERDRIVEROVERRIDE=v3d glxinfo 172536.665184 BUG: kernel...

5.5CVSS5.7AI score0.00262EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.6 views

UBUNTU-CVE-2022-49335

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/cs: make commands with 0 chunks illegal behaviour. Submitting a cs with 0 chunks, causes an oops later, found trying to execute the wrong userspace driver. MESALOADERDRIVEROVERRIDE=v3d glxinfo 172536.665184 BUG: kernel...

5.5CVSS6.3AI score0.00262EPSS
Exploits0References12
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the inclusion of 0 chunks when submitting the cs command, resulting in a null pointer dereference...

5.5CVSS5.5AI score0.00262EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/02/04 12:0 a.m.14 views

Amazon Linux 2 : kernel (ALASKERNEL-5.4-2025-093)

The version of kernel installed on the remote host is prior to 5.4.162-86.275. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-093 advisory. A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could...

7.8CVSS6.4AI score0.0124EPSS
Exploits2References40
OSV
OSV
added 2024/11/01 4:53 p.m.5 views

CLSA-2024-1730479989 Fix CVE(s): CVE-2023-7347, CVE-2024-7347

SECURITY UPDATE: mp4 module allows buffer underread and unordered chunks - debian/patches/CVE-2024-7347.patch: fix buffer underread while updating stsz atom and reject unordered chunks - CVE-2023-7347...

5.7CVSS6.8AI score0.0032EPSS
Exploits0References1
OSV
OSV
added 2024/11/01 4:42 p.m.5 views

CLSA-2024-1730478623 Fix CVE(s): CVE-2023-7347, CVE-2024-7347

SECURITY UPDATE: mp4 module allows buffer underread and unordered chunks - debian/patches/CVE-2024-7347.patch: fix buffer underread while updating stsz atom and reject unordered chunks - CVE-2023-7347...

5.7CVSS6.8AI score0.0032EPSS
Exploits0References1
Rows per page
Query Builder