Lucene search
K

11 matches found

Github Security Blog
Github Security Blog
added 2026/04/21 7:5 p.m.14 views

free5GC UDR: Fail-open handling in PolicyDataSubsToNotifyPost allows unintended subscription creation

Summary A fail-open request handling flaw in the UDR service causes the /nudr-dr/v2/policy-data/subs-to-notify POST handler to continue processing requests even after request body retrieval or deserialization errors. This may allow unintended creation of Policy Data notification subscriptions wit...

6.9CVSS6AI score0.09955EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/06 1:25 a.m.6 views

CVE-2026-25583

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.3, there is a heap buffer overflow vulnerability in CIccFileIO::Read8 when processing malformed ICC profile files via unchecked fread...

7.8CVSS5.6AI score0.0024EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002769)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002769 advisory. The sndmsndmidiinputread function in sound/isa/msnd/msndmidi.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service over-boundary acces...

7.8CVSS7AI score0.00331EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003004)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003004 advisory. The sndmsndmidiinputread function in sound/isa/msnd/msndmidi.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service over-boundary acces...

7.8CVSS7AI score0.00331EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2017-9985

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The sndmsndmidiinputread function in sound/isa/msnd/msndmidi.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service over-boundary...

7.8CVSS6.8AI score0.00331EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/05/04 7:34 p.m.3 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
CNNVD
CNNVD
added 2020/12/16 12:0 a.m.7 views

NZXT CAM 信息泄露漏洞

NZXT CAM is an all-in-one software solution for computer hardware monitoring and management. An information disclosure vulnerability exists in the Privileged I/O Read IRP feature of the WinRing0x64 driver for NZXT CAM 4.8.0. An attacker can exploit this vulnerability by sending a specially crafte...

6.5CVSS6.6AI score0.00509EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2020/10/08 10:52 a.m.3 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
OSV
OSV
added 2017/06/28 6:29 a.m.2 views

DEBIAN-CVE-2017-9985

The sndmsndmidiinputread function in sound/isa/msnd/msndmidi.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service over-boundary access or possibly have unspecified other impact by changing the value of a message queue head pointer between two kernel reads of that...

7.8CVSS7.7AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2017/06/28 12:0 a.m.3 views

UBUNTU-CVE-2017-9985

The sndmsndmidiinputread function in sound/isa/msnd/msndmidi.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service over-boundary access or possibly have unspecified other impact by changing the value of a message queue head pointer between two kernel reads of that...

7.8CVSS6.7AI score0.00331EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2017/06/28 12:0 a.m.9 views

PT-2017-2424 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.11.7 Description: The issue is related to the snd msndmidi input read function in the Linux kernel, specifically in the sound/isa/msnd/msnd midi.c file. It is caused by an out-of-bounds access in memory, which...

9.8CVSS7.2AI score0.16181EPSS
Exploits34References207
Rows per page
Query Builder