Memory corruption

Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer...

CVE-2023-33031 Buffer Copy Without Checking Size of Input in Automotive Audio

Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer...

CVE-2023-33031

CVE-2023-33031 describes a memory corruption vulnerability in Automotive Audio when copying data from the ADSP shared buffer to the VOC packet data buffer. The root cause is a missing or unsafe size check during a buffer copy, leading to memory corruption. Affected component is Automotive Audio (...

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from memory corruption in car audio when copying data from the ADSP shared buffer to the VOC packet data buffer...

Ubuntu: Security Advisory (USN-6460-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ROS-20231013-02

Vulnerability of the convertstrings function of the tinfo/readentry.c component of the Ncurses I/O control library is related to reading beyond the allowed data buffer boundaries. terminal Ncurses is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability...

USN-6173-1: Linux kernel (OEM) vulnerabilities

Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-31436 It was discovered that the...

Ubuntu: Security Advisory (USN-6162-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6162-1: Linux kernel (Intel IoTG) vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

PT-2023-35518 · Oracle · Java

Name of the Vulnerable Software and Affected Versions: Java affected versions not specified Description: A security exception occurs due to an issue in the java.awt.image package, specifically in the DataBufferInt constructor, which is called by Raster.createPackedRaster and...

EulerOS 2.0 SP10 : open-iscsi (EulerOS-SA-2023-1958)

According to the versions of the open-iscsi package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is...

kernel: crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak For some sev ioctl interfaces, input may be passed that is less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmware return...

SUSE-SU-2023:1563-1 Security update for hdf5

This update for hdf5 fixes the following issues: - CVE-2021-37501: Fixed overflow in calculation of data buffer due to bogus input file bsc1207973...

SUSE-SU-2023:0777-1 Security update for hdf5

This update for hdf5 fixes the following issues: - CVE-2021-37501: Fixed overflow in calculation of data buffer due to bogus input file bsc1207973...

CVE-2022-42383

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

PT-2022-36787 · Apache · Apache Commons Imaging

Name of the Vulnerable Software and Affected Versions: Apache Commons Imaging affected versions not specified Description: A security exception occurs in the java.desktop/java.awt.image.DataBufferInt and java.desktop/java.awt.image.Raster.createPackedRaster functions, which are called by the...

CVE-2022-39320

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP may attempt integer addition on too narrow types leads to allocation of a buffer too small holding the data written. A malicious server can trick a FreeRDP based client to read out of bound data and send i...

CVE-2022-39320

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP may attempt integer addition on too narrow types leads to allocation of a buffer too small holding the data written. A malicious server can trick a FreeRDP based client to read out of bound data and send i...

UBUNTU-CVE-2022-3785

A vulnerability, which was classified as critical, has been found in Axiomatic Bento4. Affected by this issue is the function AP4DataBuffer::SetDataSize of the component Avcinfo. The manipulation leads to heap-based buffer overflow. The attack may be launched remotely. The exploit has been...

PT-2022-6803 · Unknown +2 · Openimageio +2

Name of the Vulnerable Software and Affected Versions: OpenImageIO version 2.3.19.0 Description: An information disclosure issue exists in the OpenImageIO::decode iptc iim functionality. This is related to reading beyond the valid boundaries of a data buffer. A specially-crafted TIFF file can lea...