76 matches found
CVE-2025-71092 RDMA/bnxt_re: Fix OOB write in bnxt_re_copy_err_stats()
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix OOB write in bnxtrecopyerrstats Commit ef56081d1864 "RDMA/bnxtre: RoCE related hardware counters update" added three new counters and placed them after BNXTREOUTOFSEQERR. BNXTREOUTOFSEQERR acts as a boundary mark...
PT-2026-2613
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt re: Fix OOB write in bnxt re copy err stats Commit ef56081d1864 "RDMA/bnxt re: RoCE related hardware counters update" added three new counters and placed them after BNXT RE OUT OF SEQ ERR. BNXT RE OUT OF SEQ ERR acts as...
Linux Distros Unpatched Vulnerability : CVE-2025-71092
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix OOB write in bnxtrecopyerrstats Commit ef56081d1864 RDMA/bnxtre: RoCE relat...
TinyOS 安全漏洞
TinyOS is an operating system in the TinyOS open source. A security vulnerability exists in TinyOS 2.1.2 and earlier versions, which stems from improper use of the strcpy and strcat functions in the mcp2200gpio utility, and could lead to stack memory corruption and application crashes...
CVE-2021-22802
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in remote code execution due to missing length check on user supplied data, when a constructed message is received on the network. Affected Product: Interactive Graphical SCADA System Data Collector dc.ex...
CVE-2023-54124 f2fs: fix to drop all dirty pages during umount() if cp_error is set
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to drop all dirty pages during umount if cperror is set xfstest generic/361 reports a bug as below: f2fsbugonsbi, sbi-fsyncnodenum; kernel BUG at fs/f2fs/super.c:1627! RIP: 0010:f2fsputsuper+0x3a8/0x3b0 Call Trace:...
CVE-2025-57108
Kitware VTK (Visualization Toolkit) up to version 9.5.0 contains a heap use-after-free vulnerability in vtkGLTFDocumentLoader. The flaw occurs during mesh object copy operations when GLTF files contain corrupted or invalid mesh reference structures, causing vector members to be accessed after the...
rplay 安全漏洞
rplay is a remote sound playback library from boyns open source. A security vulnerability exists in rplay 3.3.2 and earlier versions, which stems from a flawed memcpy operation in the RPLAYDATA case in the rplayunpack function, which could result in a denial of service or unspecified other impact...
EUVD-2013-2488
Malware in sbrugna...
UBUNTU-CVE-2022-50423
In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage There is an use-after-free reported by KASAN: BUG: KASAN: use-after-free in acpiutremovereference+0x3b/0x82 Read of size 1 at addr ffff888112afc460 by task modprobe/2111...
CVE-2025-32100
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. A programming mistake for buffer copy leads to out-of-bounds writes via...
SAMSUNG Mobile Processor 安全漏洞
SAMSUNG Mobile Processor is a family of mobile processors from Samsung South Korea. A security vulnerability exists in SAMSUNG Mobile Processor that originates from a buffer copy programming error that results in an out-of-bounds write...
PT-2025-35595
Name of the Vulnerable Software and Affected Versions: Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980 Samsung Mobile Processor, Wearable Processor, and Modem Exynos 990 Samsung Mobile Processor, Wearable Processor, and Modem Exynos 850 Samsung Mobile Processor, Wearable...
CVE-2025-51823
libcsp 2.0 is vulnerable to Buffer Overflow in the cspethinit function due to improper handling of the ifname parameter. The function uses strcpy to copy the interface name into a structure member ctx-name without validating the input length...
The vulnerability of TOTOLINK N150RT router microprogramming software, related to copying buffers without checking the size of input data, allows a hacker to execute arbitrary code.
The vulnerability of TOTOLINK N150RT router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted POST request...
The vulnerability of function SUB_0046AC38 in Tenda AC8V4 microprogrammed router software allows a attacker to influence the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of SUB0046AC38 in Tenda AC8V4 microprogrammed router software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to influence the confidentiality, integrity, and accessibility of the protected...
CVE-2022-49341
In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Clear prog-jitedlen along prog-jited syzbot reported an illegal copytouser attempt from bpfproggetinfobyfd 1 There was no repro yet on this bug, but I think that commit 0aef499f3172 "mm/usercopy: Detect vmalloc...
Zephyr 缓冲区错误漏洞
Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A buffer error vulnerability exists in Zephyr 4.0 and prior versions that stems from not checking the source buffer size, which could result in a data copy error...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: nouveau/dmem: Fixed the vulnerability in the migratetoram function when there is a copy error. The nouveaudmemcopyone function ensures that the copy push command is sent to the device’s firmware, but it does not track whether the...
nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error
...