CVE-2026-46332

A flaw was found in the Linux kernel's Greybus subsystem, specifically in the gb-beagleplay driver. The cc1352bootloaderrx function, responsible for receiving bootloader data, does not properly check the size of incoming data chunks before copying them into a fixed-size receive buffer. This...

EUVD-2022-29246

Malicious code in bioql PyPI...

EUVD-2025-28992

Malicious code in bioql PyPI...

EUVD-2023-29660

Malicious code in bioql PyPI...

SUSE CVE-2022-50394

In the Linux kernel, the following vulnerability has been resolved: i2c: ismt: Fix an out-of-bounds bug in ismtaccess When the driver does not check the data from the user, the variable 'data-block0' may be very large to cause an out-of-bounds bug. The following log can reveal it: 33.995542 i2c...

DEBIAN-CVE-2022-50394

In the Linux kernel, the following vulnerability has been resolved: i2c: ismt: Fix an out-of-bounds bug in ismtaccess When the driver does not check the data from the user, the variable 'data-block0' may be very large to cause an out-of-bounds bug. The following log can reveal it: 33.995542 i2c...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to check the size of user data, which could lead to out-of-bounds writes...

CVE-2025-38303 Bluetooth: eir: Fix possible crashes on eir_create_adv_data

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: eir: Fix possible crashes on eircreateadvdata eircreateadvdata may attempt to add EIRFLAGS and EIRTXPOWER without checking if that would fit...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-23851)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-23851 advisory. - copyparams in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INTM...

SUSE CVE-2024-23851

copyparams in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INTMAX bytes, and crash, because of a missing paramkernel-datasize check. This is related to ctlioctl...

DEBIAN-CVE-2024-23851

copyparams in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INTMAX bytes, and crash, because of a missing paramkernel-datasize check. This is related to ctlioctl...

Design/Logic Flaw

copyparams in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INTMAX bytes, and crash, because of a missing paramkernel-datasize check. This is related to ctlioctl...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel version 6.7.1 and earlier, which stems from a crash due to a missing paramkernel-datasize check. No details of the vulnerability...

Veilid 缓冲区错误漏洞

Veilid is Veilid open source a peer-to-peer network that makes it easy to share all kinds of data. A security vulnerability exists in Veilid versions prior to 0.1.9, which stems from a memory leak vulnerability due to failure to check the size of compressed data during the decompression process. ...

CVE-2023-25755

Screen Creator Advance 2 Ver.0.1.1.4 Build01A and earlier is vulnerable to improper restriction of operations within the bounds of a memory buffer CWE-119 due to improper check of its data size when processing a project file. If a user of Screen Creator Advance 2 opens a specially crafted project...

CVE-2023-25755

Screen Creator Advance 2 Ver.0.1.1.4 Build01A and earlier is vulnerable to improper restriction of operations within the bounds of a memory buffer CWE-119 due to improper check of its data size when processing a project file. If a user of Screen Creator Advance 2 opens a specially crafted project...

The vulnerability of the web interface of D-Link router microprogramming software, including models D-Link DIR-825/R1, DIR-825/GF, D-Link DIR-825/A/D1, and D-Link DIR-825/AC/E1A, allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the web interface of D-Link router microprogramming software, such as D-Link DIR-825/R1, DIR-825/GF, D-Link DIR-825/A/D1, and D-Link DIR-825/AC/E1A, is related to the lack of a mechanism for checking the size of copied data. Exploiting this vulnerability allows an attacker to...

The vulnerability of the Brotli data compression algorithm lies in the lack of a mechanism to verify the size of the copied data. This allows attackers to compromise the integrity of the data and also cause service failures.

The vulnerability of the Brotli data compression algorithm is related to the lack of a mechanism for checking the size of the copied data. Exploiting this vulnerability can allow an attacker, operating remotely, to compromise the integrity of the data and also cause service interruptions...

DEBIAN-CVE-2015-8365

The smkadecodeframe function in libavcodec/smacker.c in FFmpeg before 2.6.5, 2.7.x before 2.7.3, and 2.8.x through 2.8.2 does not verify that the data size is consistent with the number of channels, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly...