650 matches found
CVE-2026-31431
In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algifaead since the source and destination...
PT-2026-34501
Name of the Vulnerable Software and Affected Versions uutils coreutils affected versions not specified Description The mv utility improperly handles directory trees containing symbolic links when moving them across filesystem boundaries. The implementation expands symbolic links—which are pointer...
uutils coreutils 安全漏洞
uutils coreutils is a cross-platform core command-line toolset developed by Uutils. There is a security vulnerability in uutils coreutils, which stems from improper handling of characters and block device nodes during recursive copying. This vulnerability may lead to runtime denial-of-service...
ClearanceKit 安全漏洞
ClearanceKit is a macOS file system access control tool developed by Craig J. Bass. Versions of ClearanceKit prior to 5.0.4-beta-1f46165 contained security vulnerabilities. These vulnerabilities stemmed from the endpoint security event handler only checking the source path for double-path...
ROS-20260408-73-0013
A vulnerability in the addtuningcontrol function of the sound/pci/hda/patchca0132.c component of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260408-73-0024
A vulnerability in the jbd2logdocheckpoint function of the fs/jbd2/checkpoint.c component of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability allows an attacker to cause a denial of service...
CVE-2025-47400
Cryptographic issue while copying data to a destination buffer without validating its size...
PT-2026-30639
Cryptographic issue while copying data to a destination buffer without validating its size...
ROS-20260401-73-0028
Vulnerability in libpng12 related to buffer copying without checking input size. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260401-73-0031
Vulnerability in libpng12 related to buffer copying without checking input size. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260401-73-0029
Vulnerability in libpng15 related to buffer copying without checking input size. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
PT-2026-34274
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0 Linux kernel versions prior to 6.19.12 Description A flaw exists in the algif aead cryptographic algorithm interface of the Linux kernel. The issue stems from an incorrect in-place operation during...
Directory Traversal
Overview Affected versions of this package are vulnerable to Directory Traversal through the html2BlockDOM handler in kernel/api/lute.go and the asset-copying process in the desktop publish service. An attacker can exfiltrate sensitive local files readable by the desktop process by submitting HTM...
ROS-20260317-73-0020
A vulnerability in the Linux kernel COMEDIINSNLIST function is related to buffer copying without checking the size of the input data when processing the ninsns parameter. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
PX4-Autopilot 安全漏洞
PX4-Autopilot is an open-source drone autopilot system developed by PX4. Versions of PX4-Autopilot prior to 1.17.0-rc2 contained security vulnerabilities. These vulnerabilities stemmed from tattucan’s use of unbounded memory copying during its multi-frame assembly cycle, which could lead to stack...
Giflib 安全漏洞
Giflib is an open-source library and utility for processing GIFs in OpenEuler. Giflib has a security vulnerability, which stems from improper error handling and shallow copying in GifMakeSavedImage, potentially leading to double release of resources...
The vulnerability of the io_uring/kbuf component in the Linux operating system’s kernel allows a hacker to cause a service failure.
The vulnerability of the iouring/kbuf component in Linux operating systems is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260306-73-0024
A vulnerability in the memcpy function of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260306-73-0023
A vulnerability in the net component of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
Craft CMS 安全漏洞
Craft CMS is an open-source content management system developed by Craft CMS. Versions prior to Craft CMS 5.9.0-beta.1 and 4.17.0-beta.1 contained security vulnerabilities. These vulnerabilities stemmed from a lack of permission verification during repeated entry operations, which could allow...