UBUNTU-CVE-2023-53226

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiexprocessmgmtpacket, mwifiexprocessstarxpacket and mwifiexprocessuaprxpacket, mwifiexuapqueuebridgedpkt and mwifiexprocessrxpacket not out-of-bounds acce...

CVE-2023-53226 wifi: mwifiex: Fix OOB and integer underflow when rx packets

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiexprocessmgmtpacket, mwifiexprocessstarxpacket and mwifiexprocessuaprxpacket, mwifiexuapqueuebridgedpkt and mwifiexprocessrxpacket not out-of-bounds acce...

CVE-2023-53226 wifi: mwifiex: Fix OOB and integer underflow when rx packets

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiexprocessmgmtpacket, mwifiexprocessstarxpacket and mwifiexprocessuaprxpacket, mwifiexuapqueuebridgedpkt and mwifiexprocessrxpacket not out-of-bounds acce...

CVE-2023-53226

CVE-2023-53226 affects the Linux kernel wireless driver mwifiex (wifi): the issue is an OOB and integer underflow when RX packets are processed, potentially allowing out-of-bounds skb->data access. Connected advisories (Unity/Linux, Red Hat SUSE, MiracleLinux) confirm remediation via kernel up...

CVE-2023-53226 wifi: mwifiex: Fix OOB and integer underflow when rx packets

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiexprocessmgmtpacket, mwifiexprocessstarxpacket and mwifiexprocessuaprxpacket, mwifiexuapqueuebridgedpkt and mwifiexprocessrxpacket not out-of-bounds acce...

CVE-2023-53179

The CVE-2023-53179 entry concerns the Linux kernel netfilter ipset component. Issue: the missing IP_SET_HASH_WITH_NET0 macro in ip_set_hash_netportnet.c caused an incorrect CIDR_POS(c) calculation, risking slab-out-of-bounds access due to integer underflow. Root cause: absence of IP_SET_HASH_WITH...

EulerOS 2.0 SP10 : libsoup (EulerOS-SA-2025-2075)

According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages...

SUSE SLES15 Security Update : ovmf (SUSE-SU-2025:03096-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03096-1 advisory. - CVE-2023-45229: Fixed integer underflow when processing IANA/IATA options in a DHCPv6 Advertise message bsc1218879 - CVE-2023-45230: Fixed...

Security update for ovmf

This update for ovmf fixes the following issues: CVE-2023-45229: Fixed integer underflow when processing IANA/IATA options in a DHCPv6 Advertise message bsc1218879 CVE-2023-45230: Fixed buffer overflow in the DHCPv6 client via a long Server ID option bsc1218880 Patch Instructions: To install this...

Security update for ovmf

This update for ovmf fixes the following issues: CVE-2023-45229: Fixed integer underflow when processing IANA/IATA options in a DHCPv6 Advertise message bsc1218879 CVE-2023-45230: Fixed buffer overflow in the DHCPv6 client via a long Server ID option bsc1218880 Patch Instructions: To install this...

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.

...

Linux Distros Unpatched Vulnerability : CVE-2018-14325

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In MP4v2 2.0.0, there is an integer underflow with resultant memory corruption when parsing MP4Atom in mp4atom.cpp. CVE-2018-14325 Note that Nessus relies on th...

Linux Distros Unpatched Vulnerability : CVE-2014-3152

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer underflow in the LCodeGen::PrepareKeyedOperand function in arm/lithium-codegen-arm.cc in Google V8 before 3.25.28.16, as used in Google Chrome before...

kernel: i40e: fix MMIO write access to an invalid page in i40e_clear_hw

In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40eclearhw When the device sends a specific input, an integer underflow can occur, leading to MMIO write access to an invalid page. Prevent the integer underflow by changing the...

CVE-2025-54487

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This...

Linux Distros Unpatched Vulnerability : CVE-2020-36221

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of...

Linux Distros Unpatched Vulnerability : CVE-2022-28733

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen...

Linux Distros Unpatched Vulnerability : CVE-2021-40589

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ZAngband zangband-data 2.7.5 is affected by an integer underflow vulnerability in src/tk/plat.c through the variable fileheader.bfOffBits. CVE-2021-40589 Note...

Linux Distros Unpatched Vulnerability : CVE-2023-48298

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ClickHouse is an open-source column-oriented database management system that allows generating analytical data reports in real-time. This vulnerability is an...

Linux Distros Unpatched Vulnerability : CVE-2024-38517

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Tencent RapidJSON is vulnerable to privilege escalation due to an integer underflow in the GenericReader::ParseNumber function of include/rapidjson/reader.h whe...