Mozilla Firefox 缓冲区错误漏洞

Mozilla Firefox is an open-source web browser developed by the Mozilla Foundation in the United States. Versions of Mozilla Firefox prior to 150.0.3 contained a buffer error vulnerability, which was caused by a boundary condition error in the JavaScript Engine’s JIT component...

CVE-2026-6775

Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 and Thunderbird 150...

CVE-2026-2779 Incorrect boundary conditions in the Networking: JAR component

Incorrect boundary conditions in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

EUVD-2026-8500

Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component. This vulnerability affects Firefox 148, Firefox ESR 115.33, and Firefox ESR 140.8...

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component...

CVE-2025-13022

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability affects Firefox 145 and Thunderbird 145...

Linux Distros Unpatched Vulnerability : CVE-2024-56552

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/xe/gucsubmit: fix race around suspendpending Currently in some testcases we can trigger: xe 0000:03:00.0: drm Assertion execqueuedestroyedq failed!...

CVE-2024-27409 dmaengine: dw-edma: HDMA: Add sync read before starting the DMA transfer in remote setup

In the Linux kernel, the following vulnerability has been resolved: dmaengine: dw-edma: HDMA: Add sync read before starting the DMA transfer in remote setup The Linked list element and pointer are not stored in the same memory as the HDMA controller register. If the doorbell register is toggled...

LlamaRelativeQuorum isActionApproved / isActionDisapproved check condition error

Lines of code Vulnerability details Impact LlamaRelativeQuorum isActionApproved / isActionDisapproved check condition error: quantity holders. The two cannot be compared. In general quantity holder, so the approver was lower than expected. Proof of Concept diff --git...

CVE-2022-2993

CVE-2022-2993 affects Zephyr RTOS (3.1 and earlier). The issue is an error in the condition of the last if-statement in the function smp_check_keys, causing rejection of current keys when all requirements are unmet. Public sources describe it as a design/logic flaw in key validation, with potenti...

CVE-2022-2993 bt: host: Wrong key validation check

There is an error in the condition of the last if-statement in the function smpcheckkeys. It was rejecting current keys if all requirements were unmet...

Google Android Information Disclosure Vulnerability (CNVD-2022-44603)

Google Android is a Linux-based open source operating system from Google, Inc. An information disclosure vulnerability exists in acropora/app/identity/libeic/EicPresentation.c. An information disclosure due to a contention condition error exists in eicPresentationRetrieveEntryValue. An attacker...

Google Android 竞争条件问题漏洞

Google Android is a Linux-based open source operating system from Google, Inc. An information disclosure vulnerability exists in acropora/app/identity/libeic/EicPresentation.c. An information disclosure due to a contention condition error exists in eicPresentationRetrieveEntryValue. An attacker...

HCC Embedded InterNiche 缓冲区错误漏洞

HCC Embedded InterNiche is a newsletter software. A security vulnerability exists in HCC Embedded InterNiche that originates from a boundary condition in the DNSv4 component. An attacker can exploit the vulnerability to trigger an out-of-bounds read error and cause a denial of service on the syst...

CVE-2018-5814

In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and 4.4.133, multiple race condition errors when handling probe, disconnect, and rebind operations can be exploited to trigger a use-after-free condition or a NULL pointer dereference by sending multiple USB over IP packets...

UltraISO 9.3.6.2750 - (.mds) (.mdf) Buffer Overflow PoC

No description provided by source. / DISCLAIMER THIS PROGRAM IS NOT INTENDED TO BE USED ON OTHER COMPUTERS AND IT IS DESTINED FOR PERSONAL RESEARCH ONLY!!!! The programs are provided as is without any guarantees or warranty. The author is not responsible for any damage or losses of any kind cause...

RobTex Viking Server 1.0.6 Build 355 Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1614/info A number of unchecked buffers exists in Robotex Viking Server. This enables a malicious user to either crash the application or execute arbitrary code, depending on the data supplied. / Robotex Viking Server...

Mandrake 7/8/9,RedHat 6.x/7 Bonobo EFSTool Commandline Argument Buffer Overflow (1)

No description provided by source. source: http://www.securityfocus.com/bid/5125/info Bonobo is a set of tools and CORBA interfaces included as part of the Gnome infrastructure. It is designed for use on the Linux and Unix operating systems. A boundry condition error has been discovered in the...

PowerZip 7.21 (Build 4010) Stack Buffer Overflow

No description provided by source. / DISCLAIMER THIS PROGRAM IS NOT INTENDED TO BE USED ON OTHER COMPUTERS AND IT IS DESTINED FOR PERSONAL RESEARCH ONLY!!!! The programs are provided as is without any guarantees or warranty. The author is not responsible for any damage or losses of any kind cause...

Intrasrv 1.0 - Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...