4765 matches found
CVE-2026-21489 iccDEV has Out-of-bounds Read and Integer Underflow (Wrap or Wraparound)
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below have Out-of-bounds Read and Integer Underflow Wrap or Wraparound vulnerabilities in its CIccCalculatorFunc::SequenceNeedTempReset function. This issue is fixed in version 2.3.1....
CVE-2026-21489 iccDEV has Out-of-bounds Read and Integer Underflow (Wrap or Wraparound)
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below have Out-of-bounds Read and Integer Underflow Wrap or Wraparound vulnerabilities in its CIccCalculatorFunc::SequenceNeedTempReset function. This issue is fixed in version 2.3.1....
EUVD-2026-1158
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below have Out-of-bounds Read and Integer Underflow Wrap or Wraparound vulnerabilities in its CIccCalculatorFunc::SequenceNeedTempReset function. This issue is fixed in version 2.3.1....
CVE-2026-21489
CVE-2026-21489 (iccDEV) affects iccDEV libraries, versions 2.3.1.1 and earlier. The vulnerability is an Out-of-bounds Read and an Integer Underflow (Wrap or Wraparound) in the CIccCalculatorFunc::SequenceNeedTempReset function. Public descriptions across NVD, Red Hat, NVD, CVE lists and other fee...
CVE-2026-21489 iccDEV has Out-of-bounds Read and Integer Underflow (Wrap or Wraparound)
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below have Out-of-bounds Read and Integer Underflow Wrap or Wraparound vulnerabilities in its CIccCalculatorFunc::SequenceNeedTempReset function. This issue is fixed in version 2.3.1....
CVE-2026-21673 iccDEV has Integer Overflow/Underflow in CIccXmlArrayType::ParseTextCountNum()
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have overflows and underflows in CIccXmlArrayType::ParseTextCountNum. This vulnerability affects users of the iccDEV library who process ICC color profiles. This issue is fixed in...
CVE-2026-21673
CVE-2026-21673 affects iccDEV: versions 2.3.1 and below contain overflows/underflows in CIccXmlArrayType::ParseTextCountNum(). The issue impacts users who process ICC color profiles. The vulnerability is fixed in version 2.3.1.1. Provided references indicate this is a binary/integer handling flaw...
iccDEV 数字错误漏洞
iccDEV is an open source color configuration code library from the International Color Consortium ICC. A numeric error vulnerability exists in iccDEV version 2.3.1.1 and earlier, which stems from an out-of-bounds read and integer underflow in the CIccCalculatorFunc::SequenceNeedTempReset function...
PT-2026-1433
Name of the Vulnerable Software and Affected Versions iccDEV versions 2.3.1.1 and below Description iccDEV is a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below contain Out-of-bounds Read and Integer Underflow vulnerabilities within the...
CVE-2025-10933
An integer underflow vulnerability in the Silicon Labs Z-Wave Protocol Controller can lead to out of bounds memory reads...
CVE-2025-10933
CVE-2025-10933 affects Silicon Labs Z‑Wave Protocol Controller with an integer underflow that can lead to out-of-bounds memory reads. The connected documents confirm the root cause and the impact as described, but provide no specific affected versions, exploit details, or remediation. Some source...
CVE-2025-10933 Silicon Labs Z-Wave Protocol Controller Integer underflow vulnerability leads to out of bounds read
An integer underflow vulnerability in the Silicon Labs Z-Wave Protocol Controller can lead to out of bounds memory reads...
CVE-2025-10933 Silicon Labs Z-Wave Protocol Controller Integer underflow vulnerability leads to out of bounds read
An integer underflow vulnerability in the Silicon Labs Z-Wave Protocol Controller can lead to out of bounds memory reads...
PT-2026-1300
Name of the Vulnerable Software and Affected Versions Silicon Labs Z-Wave Protocol Controller affected versions not specified Description An integer underflow condition exists in the Silicon Labs Z-Wave Protocol Controller, potentially leading to out-of-bounds memory reads. This occurs due to an...
Silicon Labs Z-Wave Protocol Controller 安全漏洞
Silicon Labs Z-Wave Protocol Controller is an IoT gateway middleware from Silicon Labs, USA. A security vulnerability exists in Silicon Labs Z-Wave Protocol Controller that originates from an integer underflow that could result in an out-of-bounds memory read...
CVE-2025-67269
An integer underflow vulnerability exists in the nextstate function in gpsd/packet.c of gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4 without checking if the input byte c is le...
CVE-2025-67269
An integer underflow vulnerability exists in the nextstate function in gpsd/packet.c of gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4 without checking if the input byte c is le...
gpsd 安全漏洞
gpsd is a daemon program for receiving GPS data. A security vulnerability exists in gpsd that stems from an integer underflow in the nextstate function, which could lead to 100% CPU utilization and a denial of service...
CVE-2025-67269
An integer underflow vulnerability exists in the nextstate function in gpsd/packet.c of gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4 without checking if the input byte c is le...
PT-2026-23770
Name of the Vulnerable Software and Affected Versions GStreamer affected versions not specified Description This issue allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with the library is required for exploitation, and attack vectors may vary...