Malicious code in small-private-integer-array-deploy (npm)

The package small-private-integer-array-deploy was found to contain malicious code...

MAL-2025-33442 Malicious code in small-private-integer-array-deploy (npm)

The package small-private-integer-array-deploy was found to contain malicious code...

ASoC: Intel: avs: Verify content returned by parse_int_array()

...

The vulnerability of the parse_int_array() function in the ASoC component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the parseintarray function in the ASoC component of the Linux operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

DEBIAN-CVE-2025-38307

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Verify content returned by parseintarray The first element of the returned array stores its length. If it is 0, any manipulation beyond the element at index 0 ends with null-ptr-deref...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Verify the content returned by parseintarray. The first element of the returned array stores its length. If it is 0, any manipulation beyond the element at index 0 will result in a null-ptr-deref error...

PT-2025-29027

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel related to the ASoC Advanced Linux Sound Architecture Intel audio subsystem. Specifically, the parse int array function does not adequately validate t...

PYSEC-2022-122

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause an integer overflow in TfLiteIntArrayCreate. The TfLiteIntArrayGetSizeInBytes returns an int instead of a sizet. An attacker can control model inputs such that computedsize overflows the...

Microsoft Edge - Array.filter Information Leak

Microsoft Edge - Array.filter Information Leak var b = new Array1,2,3; var d = new Array1,2,3; class dummy constructor alert"in constructor"; return d; class MyArray extends Array // Overwrite species to the parent Array constructor static get Symbol.species alert"get"; b0 = ; return dummy; var a...

Microsoft Edge - 'Array.filter' Information Leak

var b = new Array1,2,3; var d = new Array1,2,3; class dummy constructor alert"in constructor"; return d; class MyArray extends Array // Overwrite species to the parent Array constructor static get Symbol.species alert"get"; b0 = ; return dummy; var a = new Array, , "natalie", 7, 7, 7, 7, 7;...

Asterisk Skinny (SIP) VoIP protocol DoS

CAPABILITIESRESMESSAGE integer array overflow...

Multiple bugs in TracerouteNG

Buffer overflows, integer array index overflows...