29 matches found
CLSA-2026-1776878817 squid: Fix of 13 CVEs
CVE-2018-1000027: fix NULL pointer dereference in clientFollowXForwardedForCheck for transactions without a client connection - CVE-2018-19131: fix XSS via X.509 certificate fields rendered unescaped in SSL error pages - CVE-2019-12520: prevent cache poisoning by suppressing URL userinfo from...
SUSE CVE-2026-31664
In the Linux kernel, the following vulnerability has been resolved: xfrm: clear trailing padding in buildpolexpire buildexpire clears the trailing padding bytes of struct xfrmuserexpire after setting the hard field via memsetafter, but the analogous function buildpolexpire does not do this for...
CVE-2026-31612
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate EaNameLength in smb2getea smb2getea reads eareq-EaNameLength from the client request and passes it directly to strncmp as the comparison length without verifying that the length of the name really is the size of t...
DEBIAN-CVE-2026-31614
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in checkwsleas The bounds check uses u8 ea + nlen + 1 + vlen as the end of the EA name and value, but eadata sits at offset sizeofstruct smb2filefulleainfo = 8 from ea, not at offset 0. The...
CVE-2026-31614 smb: client: fix off-by-8 bounds check in check_wsl_eas()
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in checkwsleas The bounds check uses u8 ea + nlen + 1 + vlen as the end of the EA name and value, but eadata sits at offset sizeofstruct smb2filefulleainfo = 8 from ea, not at offset 0. The...
CVE-2026-31614
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix off-by-8 bounds check in checkwsleas The bounds check uses u8 ea + nlen + 1 + vlen as the end of the EA name and value, but eadata sits at offset sizeofstruct smb2filefulleainfo = 8 from ea, not at offset 0. The...
CVE-2026-31612
The CVE-2026-31612 entry concerns ksmbd in the Linux kernel. The vulnerability arises in smb2_get_ea(): the code reads EaNameLength from the client request and passes it directly to strncmp() as the comparison length without validating that the name length matches the input buffer size. The publi...
CVE-2026-34757
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.0.9 to before 1.6.57, passing a pointer obtained from pnggetPLTE, pnggettRNS, or pnggethIST back into the corresponding setter on the same...
EUVD-2023-37238
Malicious code in bioql PyPI...
CVE-2023-33049
Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage...
Medium: php8.2
Issue Overview: The upstream advisory describes this issue as follows: A memory-related vulnerability in PHP's filter handling system, particularly when processing input with convert.quoted-printable-decode filters, leads to a segmentation fault. This vulnerability is triggered through specific...
CVE-2022-25479
Vulnerability in Realtek RtsPer driver for PCIe Card Reader RtsPer.sys before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader RtsUer.sys before 10.0.22000.31274 allows for the leakage of kernel memory from both the stack and the heap...
CVE-2023-33049
Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage...
Heap overflow
Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage...
CVE-2023-33049 Improper Release of Memory Before Removing Last Reference in Multi-Mode Call Processor
Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage...
CVE-2023-33049
CVE-2023-33049 is described across multiple connected records as a transient DoS in the Qualcomm Multi‑Mode Call Processor caused by a heap leakage/ improper memory release, leading to UE failure. The vulnerability is associated with Qualcomm closed‑source components; CVSSv3.1 flags a network att...
PT-2024-12384 · Unknown · Multi-Mode Call Processor
Name of the Vulnerable Software and Affected Versions: Multi-Mode Call Processor affected versions not specified Description: The issue is related to a Transient Denial of Service DOS in the Multi-Mode Call Processor. This occurs due to a UE failure caused by heap leakage. Recommendations: At the...
CVE-2023-0179
A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. This issue could allow the leakage of both stack and heap addresses, and potentially allow Local Privilege Escalation to the root user via arbitrary code execution...
AZL-25932 CVE-2023-0179 affecting package kernel for versions less than 5.15.107.1-2
A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. This issue could allow the leakage of both stack and heap addresses, and potentially allow Local Privilege Escalation to the root user via arbitrary code execution...
DEBIAN-CVE-2022-20008
In mmcblkreadsingle of block.c, there is a possible way to read kernel heap memory due to uninitialized data. This could lead to local information disclosure if reading from an SD card that triggers errors, with no additional execution privileges needed. User interaction is not needed for...