CVE-2025-23338

The CVE-2025-23338 issue affects NVIDIA CUDA Toolkit’s nvdisasm on all platforms. A attacker-provided malicious ELF can cause an out-of-bounds write in nvdisasm, leading to denial of service as described in the advisory. The entry is tied to a local/privilege-limited attack surface (local vector)...

NVIDIA nvdisasm symbol table parsing improper array index validation vulnerability

Talos Vulnerability Report TALOS-2025-2169 NVIDIA nvdisasm symbol table parsing improper array index validation vulnerability September 24, 2025 CVE Number CVE-2025-23338 SUMMARY An improper array index validation vulnerability exists in the symbol table parsing functionality of NVIDIA nvdisasm...

pwntools

This is a CTF Capture The Flag framework and exploit development library. It is written in Python and provides a set of tools for developing and executing exploits. The library is designed to be extensible and customizable, allowing users to easily add new functionality and plugins. The library i...

Linux Distros Unpatched Vulnerability : CVE-2024-0125

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA CUDA Toolkit for Windows and Linux contains a vulnerability in the nvdisam command line tool, where a user can cause a NULL pointer dereference by runnin...

Tady: a Neural Disassembler without Structural Constraint Violations

Disassembly is a crucial yet challenging step in binary analysis. While emerging neural disassemblers show promise for efficiency and accuracy, they frequently generate outputs violating fundamental structural constraints, which significantly compromise their practical usability. To address this...

OSV-2025-447 Use-of-uninitialized-value in spvtools::EmitNumericLiteral

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=423059200 Crash type: Use-of-uninitialized-value Crash state: spvtools::EmitNumericLiteral spvtools::disassemble::InstructionDisassembler::EmitOperand spvtools::disassemble::InstructionDisassembler::EmitInstructionImpl...

[SECURITY] Fedora 40 Update: rizin-0.7.4-5.fc40

Rizin is a free and open-source Reverse Engineering framework, providing a complete binary analysis experience with features like Disassembler, Hexadecimal editor, Emulation, Binary inspection, Debugger, and more. Rizin is a fork of radare2 with a focus on usability, working features and co de...

NVIDIA CUDA toolkit 代码问题漏洞

The NVIDIA CUDA toolkit is a toolkit from NVIDIA, Inc. It provides a development environment for creating high-performance GPU-accelerated applications. A code issue vulnerability exists in the NVIDIA CUDA toolkit that stems from a null pointer exception in the nvdisasm binary, which could lead t...

gcc-toolset-14-gdb bug fix and enhancement update

An update is available for gcc-toolset-14-gdb. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GDB, the GNU debugger, allows you to debug programs written in C,...

Ewon Cosy+ Hardcoded Key

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-032 Product: Ewon Cosy+ Manufacturer: HMS Industrial Networks AB Affected Versions: Firmware Versions: 21.2s10 and 22.1s3 Tested Versions: Firmware Version: 21.2s7 Vulnerability Type: Use of Hard-coded Cryptographic Key CWE-32...

Hex Rays IDA Pro 安全漏洞

Hex Rays IDA Pro is a powerful disassembler and a versatile debugger from Hex Rays Belgium. It is commonly used for reverse engineering. A security vulnerability exists in Hex Rays IDA Pro 8.4 and earlier versions, which stems from a possible crash of ida64.dll when processing a code section with...

OSV-2024-592 UNKNOWN READ in spvtools::disassemble::InstructionDisassembler::EmitInstruction

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69804 Crash type: UNKNOWN READ Crash state: spvtools::disassemble::InstructionDisassembler::EmitInstruction spvtools::DisassembleInstruction Parser::parseInstruction...

CLSA-2024-1709203515 kernel: Fix of 7 CVEs

KVM: nSVM: avoid picking up unsupported bits from L2 in intctl CVE-2021-3653 CVE-2021-3653 - xen/netfront: fix leaking data in shared pages CVE-2022-33740 - xfs: fix up non-directory creation in SGID directories CVE-2021-4037 - netsched: clsroute: remove from list when handle is 0 CVE-2022-2588 -...

NASM: Multiple Vulnerabilities

Background NASM is a 80x86 assembler that has been created for portability and modularity. NASM supports Pentium, P6, SSE MMX, and 3DNow extensions. It also supports a wide range of objects formats ELF, a.out, COFF, etc, and has its own disassembler. Description Multiple vulnerabilities have been...

[SECURITY] Fedora 39 Update: lldb-17.0.2-1.fc39

LLDB is a next generation, high-performance debugger. It is built as a set of reusable components which highly leverage existing libraries in the larger LLVM Project, such as the Clang expression parser and LLVM disassembler...

SUSE CVE-2023-46569

An out-of-bounds read in radare2 v.5.8.9 and before exists in the printinsn32fpu function of libr/arch/p/nds32/nds32-dis.h...

GNU Binutils Memory Leak Vulnerability

GNU Binutils is a set of binary tools developed by the GNU Project, mainly used to deal with target files e.g., executables, libraries, etc., covering compilation, linking, debugging, and other phases of the function. A memory leak vulnerability exists in GNU Binutils, which originates from a...

Memory corruption

An issue was discovered in GNU Binutils 2.34. It is a memory leak when process microblaze-dis.c. This one will consume memory on each insn disassembled...

[SECURITY] Fedora 38 Update: rizin-0.5.2-1.fc38.2

Rizin is a free and open-source Reverse Engineering framework, providing a complete binary analysis experience with features like Disassembler, Hexadecimal editor, Emulation, Binary inspection, Debugger, and more. Rizin is a fork of radare2 with a focus on usability, working features and co de...

[SECURITY] Fedora 38 Update: rizin-0.5.1-1.fc38.2

Rizin is a free and open-source Reverse Engineering framework, providing a complete binary analysis experience with features like Disassembler, Hexadecimal editor, Emulation, Binary inspection, Debugger, and more. Rizin is a fork of radare2 with a focus on usability, working features and co de...