4161 matches found
Adobe Photoshop 数字错误漏洞
Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. The software is mainly used for processing pictures. Adobe Photoshop suffers from a numeric error vulnerability that originates from an integer underflow, which can be exploited by an attacker to execut...
Adobe Photoshop 25.x < 25.12.3 / 26.x < 26.6 Multiple Vulnerabilities (macOS APSB25-40)
The version of Adobe Photoshop installed on the remote macOS or Mac OS X host is prior to 25.12.3/26.6. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb25-40 advisory. - Photoshop Desktop versions 26.5, 25.12.2 and earlier are affected by an Access of Uninitialized...
Adobe Animate 23.x < 23.0.12 / 24.x < 24.0.9 Multiple Vulnerabilities (APSB25-42)
The version of Adobe Animate installed on the remote Windows host is prior to 23.0.12 or 24.0.9. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb25-42 advisory. - Animate versions 24.0.8, 23.0.11 and earlier are affected by an Access of Uninitialized Pointer...
PT-2025-20976 · Microsoft · Windows Kernel +1
Name of the Vulnerable Software and Affected Versions: Windows Kernel affected versions not specified Description: The issue is related to an integer underflow wrap or wraparound in the Windows Kernel, allowing an unauthorized attacker to disclose information over an adjacent network. This...
PT-2025-21024 · Bridge · Bridge
Name of the Vulnerable Software and Affected Versions: Bridge versions 15.0.3, 14.1.6 and earlier Description: The issue is an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires...
Adobe Bridge 14.x < 14.1.7 / 15.x < 15.0.4 Multiple Vulnerabilities (APSB25-44)
The version of Adobe Bridge installed on the remote Windows host is prior to 14.1.7 or 15.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb25-44 advisory. - Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Overflow or Wraparound vulnerabili...
K000151255: GStreamer vulnerability CVE-2024-47606
Security Advisory Description GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemuxparsetheoraextension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size...
CVE-2023-53068
In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Limit packet length to skb-len Packet length retrieved from descriptor may be larger than the actual socket buffer length. In such case the cloned skb passed up the network stack will leak kernel memory content...
SUSE CVE-2023-53068
In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Limit packet length to skb-len Packet length retrieved from descriptor may be larger than the actual socket buffer length. In such case the cloned skb passed up the network stack will leak kernel memory content...
CVE-2023-53068
In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Limit packet length to skb-len Packet length retrieved from descriptor may be larger than the actual socket buffer length. In such case the cloned skb passed up the network stack will leak kernel memory content...
CVE-2023-53068
In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Limit packet length to skb-len Packet length retrieved from descriptor may be larger than the actual socket buffer length. In such case the cloned skb passed up the network stack will leak kernel memory content...
AZL-70126 CVE-2023-53068 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Limit packet length to skb-len Packet length retrieved from descriptor may be larger than the actual socket buffer length. In such case the cloned skb passed up the network stack will leak kernel memory content...
CVE-2023-53068
CVE-2023-53068 is reported in the Linux kernel under net: usb: lan78xx: Limit packet length to skb->len. The vulnerability arises when the packet length read from the descriptor may exceed skb->len, causing a cloned skb passed up the network stack to leak kernel memory contents. A fix was a...
CVE-2023-53068 net: usb: lan78xx: Limit packet length to skb->len
In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Limit packet length to skb-len Packet length retrieved from descriptor may be larger than the actual socket buffer length. In such case the cloned skb passed up the network stack will leak kernel memory content...
OESA-2025-1453 raptor2 security update
Raptor is Redland's RDF parser toolkit, which provides a set of independent RDF parsers to generate triples from RDF / XML or N-Triples. Security Fixes: In Raptor RDF Syntax Library through 2.0.16, there is an integer underflow when normalizing a URI with the turtle parser in...
Azul Zulu Java Multiple Vulnerabilities (2025-04-15)
The version of Azul Zulu installed on the remote host is 6 prior to 6.71.0.16 / 7 prior to 7.77.0.14 / 8 prior to 8.85.0.22 / 11 prior to 11.79.20 / 11 prior to 11.79.18 / 17 prior to 17.57.20 / 17 prior to 17.57.18 / 21 prior to 21.41.18 / 24 prior to 24.30.13 / 24 prior to 24.30.12. It is,...
Eclipse ThreadX NetX Duo HTTP server single PUT request integer underflow vulnerability
Talos Vulnerability Report TALOS-2024-2105 Eclipse ThreadX NetX Duo HTTP server single PUT request integer underflow vulnerability April 14, 2025 CVE Number None,CVE-2025-2258 SUMMARY An integer underflow vulnerability exists in the HTTP server PUT request functionality of Eclipse ThreadX NetX Du...
Eclipse ThreadX NetX Duo HTTP server chunked PUT request integer underflow vulnerability
Talos Vulnerability Report TALOS-2024-2104 Eclipse ThreadX NetX Duo HTTP server chunked PUT request integer underflow vulnerability April 14, 2025 CVE Number None,CVE-2025-2259 SUMMARY An integer underflow vulnerability exists in the HTTP server PUT request functionality of Eclipse ThreadX NetX D...
Vulnerabilities fixed in Adobe Framemaker
Adobe has fixed vulnerabilities in Adobe Framemaker Specifically for versions 2020.7, 2022.5 and earlier. The vulnerabilities include a Heap-based Buffer Overflow, Stack-based Buffer Overflow, Integer Underflow, NULL Pointer Dereference and an out-of-bounds read. These vulnerabilities can lead to...
CVE-2025-2259
In NetX HTTP server functionality of Eclipse ThreadX NetX Duo before version 6.4.3, an attacker can cause an integer underflow and a subsequent denial of service by writing a very large file, by specially crafted packets with Content-Length in one packet smaller than the data request size of the...