Lucene search
+L

57 matches found

EUVD
EUVD
added 2025/10/28 11:48 a.m.8 views

EUVD-2025-36472

In the Linux kernel, the following vulnerability has been resolved: vhost: vringh: Fix copytoiter return value check The return value of copytoiter can't be negative, check whether the copied length is equal to the requested length instead of checking for negative values...

6AI score0.00197EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/28 11:48 a.m.3 views

EUVD-2025-36477

In the Linux kernel, the following vulnerability has been resolved: vhost: vringh: Modify the return value check The return value of copyfromiter and copytoiter can't be negative, check whether the copied lengths are equal...

6AI score0.00197EPSS
Exploits0References6
Snyk
Snyk
added 2025/10/20 2:15 p.m.4 views

Unsafe Dependency Resolution

Overview Affected versions of this package are vulnerable to Unsafe Dependency Resolution via the core.fsmonitor configuration option in the .git/config file. An attacker can execute arbitrary code by convincing a user or tool to scan a specially crafted repository that contains a malicious...

8.4CVSS7.4AI score0.00278EPSS
Exploits0References2
OSV
OSV
added 2025/10/19 7:8 p.m.4 views

JLSEC-2025-116 Prior to ffmpeg version 4.3, the tty demuxer did not have a 'read_probe' function assigned to it

Prior to ffmpeg version 4.3, the tty demuxer did not have a 'readprobe' function assigned to it. By crafting a legitimate "ffconcat" file that references an image, followed by a file the triggers the tty demuxer, the contents of the second file will be copied into the output file verbatim as long...

5.5CVSS6.9AI score0.0088EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-59857

Malicious code in bioql PyPI...

6.4AI score
Exploits0References9
NVD
NVD
added 2025/10/01 8:15 a.m.10 views

CVE-2025-39913

In the Linux kernel, the following vulnerability has been resolved: tcpbpf: Call skmsgfree when tcpbpfsendverdict fails to allocate psock-cork. syzbot reported the splat below. 0 The repro does the following: 1. Load a skmsg prog that calls bpfmsgcorkbytesmsg, corkbytes 2. Attach the prog to a...

7.8CVSS0.00171EPSS
Exploits2References10
Vulnrichment
Vulnrichment
added 2025/10/01 7:44 a.m.9 views

CVE-2025-39913 tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork.

In the Linux kernel, the following vulnerability has been resolved: tcpbpf: Call skmsgfree when tcpbpfsendverdict fails to allocate psock-cork. syzbot reported the splat below. 0 The repro does the following: 1. Load a skmsg prog that calls bpfmsgcorkbytesmsg, corkbytes 2. Attach the prog to a...

6.5AI score0.00171EPSS
Exploits2References8
SUSE CVE
SUSE CVE
added 2025/09/16 11:30 p.m.6 views

SUSE CVE-2023-53270

In the Linux kernel, the following vulnerability has been resolved: ext4: fix idisksize exceeding isize problem in paritally written case It is possible for idisksize can exceed isize, triggering a warning. genericperformwrite copied = iovitercopyfromuseratomiclen // copied idisksize, newsize //...

6.4CVSS6.4AI score0.00145EPSS
Exploits0References8
OSV
OSV
added 2025/09/16 8:15 a.m.5 views

UBUNTU-CVE-2023-53270

In the Linux kernel, the following vulnerability has been resolved: ext4: fix idisksize exceeding isize problem in paritally written case It is possible for idisksize can exceed isize, triggering a warning. genericperformwrite copied = iovitercopyfromuseratomiclen // copied idisksize, newsize //...

5.5CVSS6.2AI score0.00145EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/09/16 8:6 a.m.5 views

CVE-2023-53270

In the Linux kernel, the following vulnerability has been resolved: ext4: fix idisksize exceeding isize problem in paritally written case It is possible for idisksize can exceed isize, triggering a warning. genericperformwrite copied = iovitercopyfromuseratomiclen // copied idisksize, newsize //...

5.5CVSS5.5AI score0.00145EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 9:7 a.m.4 views

CVE-2024-56733

Password Pusher is an open source application to communicate sensitive information over the web. A vulnerability has been reported in versions 1.50.3 and prior where an attacker can copy the session cookie before a user logs out, potentially allowing session hijacking. Although the session token ...

5.7CVSS6.4AI score0.00209EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.5 views

kernel: tcp_bpf: fix return value of tcp_bpf_sendmsg()

In the Linux kernel, the following vulnerability has been resolved: tcpbpf: fix return value of tcpbpfsendmsg When we cork messages in psock-cork, the last message triggers the flushing will result in sending a skmsg larger than the current message size. In this case, in tcpbpfsendverdict, 'copie...

5.5CVSS6.8AI score0.00229EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/09/19 3:9 a.m.3 views

SUSE CVE-2024-46783

In the Linux kernel, the following vulnerability has been resolved: tcpbpf: fix return value of tcpbpfsendmsg When we cork messages in psock-cork, the last message triggers the flushing will result in sending a skmsg larger than the current message size. In this case, in tcpbpfsendverdict, 'copie...

5.5CVSS6.3AI score0.00229EPSS
Exploits0References18
OSV
OSV
added 2024/09/18 8:15 a.m.1 views

DEBIAN-CVE-2024-46783

In the Linux kernel, the following vulnerability has been resolved: tcpbpf: fix return value of tcpbpfsendmsg When we cork messages in psock-cork, the last message triggers the flushing will result in sending a skmsg larger than the current message size. In this case, in tcpbpfsendverdict, 'copie...

5.5CVSS5.6AI score0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/18 7:12 a.m.30 views

CVE-2024-46783 tcp_bpf: fix return value of tcp_bpf_sendmsg()

In the Linux kernel, the following vulnerability has been resolved: tcpbpf: fix return value of tcpbpfsendmsg When we cork messages in psock-cork, the last message triggers the flushing will result in sending a skmsg larger than the current message size. In this case, in tcpbpfsendverdict, 'copie...

0.00229EPSS
Exploits0References7
CVE
CVE
added 2024/09/18 7:12 a.m.160 views

CVE-2024-46783

CVE-2024-46783 : Linux kernel vulnerability in tcp_bpf_sendmsg() where corking in psock->cork could cause the last flushing to send a sk_msg larger than the current message, making ‘copied’ negative in tcp_bpf_send_verdict() and triggering a kernel BUG (net/socket.c:733). Connected Astra Linux...

5.5CVSS6.1AI score0.00229EPSS
Exploits0References11Affected Software1
Malwarebytes
Malwarebytes
added 2024/07/12 1:44 p.m.12 views

“Nearly all” AT&T customers had phone records stolen in new data breach disclosure

In a déjà-vu nightmare, US phone giant AT&T has notified customers that cybercriminals managed to download phone call and text message records of "nearly all of AT&T cellular customers from May 1, 2022 to October 31, 2022 as well as on January 2, 2023". In a filing with the Securities and Exchang...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.4 views

QNAP Systems QTS和QuTS hero 安全漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are both products of China's Weilian Technology QNAP Systems.QNAP Systems QTS is an operating system used by entry to mid-level QNAP NAS.QNAP Systems QuTS hero is an operating system. A security vulnerability exists in QNAP Systems QTS and QuTS hero tha...

8.8CVSS7.2AI score0.00689EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.7 views

kernel: ext4: fix i_disksize exceeding i_size problem in paritally written case

In the Linux kernel, the following vulnerability has been resolved: ext4: fix idisksize exceeding isize problem in paritally written case It is possible for idisksize can exceed isize, triggering a warning. genericperformwrite copied = iovitercopyfromuseratomiclen // copied idisksize, newsize //...

5.5CVSS6.7AI score0.00145EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/09/22 12:0 a.m.6 views

QNAP Systems QTS Security Vulnerability

QNAP Systems QTS is an operating system used by China Weilian Technology QNAP Systems for entry to mid-level QNAP NAS. A security vulnerability exists in QNAP Systems QTS that stems from not checking a copy of the buffer where the size of the input vulnerability is entered...

9.8CVSS7AI score0.00765EPSS
Exploits0References2
Rows per page
Query Builder