CVE-2025-47408

Memory corruption when another driver calls an IOCTL with invalid input/output buffer...

CVE-2025-47405

Memory corruption when processing camera sensor input/output control codes with invalid output buffers...

EUVD-2025-209633

Memory corruption when another driver calls an IOCTL with invalid input/output buffer...

CVE-2025-47408

Memory corruption when another driver calls an IOCTL with invalid input/output buffer...

CVE-2025-47405 Untrusted Pointer Dereference in Camera

Memory corruption when processing camera sensor input/output control codes with invalid output buffers...

CVE-2025-47405 Untrusted Pointer Dereference in Camera

Memory corruption when processing camera sensor input/output control codes with invalid output buffers...

PT-2026-36841

Memory corruption when processing camera sensor input/output control codes with invalid output buffers...

PT-2026-36844

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Memory corruption occurs when another driver calls an IOCTL Input/Output Control, which is a device driver communication mechanism, using an invalid input or...

CVE-2026-34480

A flaw was found in Apache Log4j Core. The XmlLayout component, responsible for formatting log messages into XML, does not properly remove or replace characters that are not allowed in XML 1.0. When log messages or diagnostic information contain these forbidden characters, the resulting XML outpu...

EUVD-2026-21490

Apache Log4cxx's XMLLayout https://logging.apache.org/log4cxx/1.7.0/classlog4cxx11xml11XMLLayout.html , in versions before 1.7.0, fails to sanitize characters forbidden by the XML 1.0 specification https://www.w3.org/TR/xml/charsets in log messages, NDC, and MDC property keys and values, producin...

CVE-2026-34480

Apache Log4j Core's XmlLayout https://logging.apache.org/log4j/2.x/manual/layouts.htmlXmlLayout , in versions up to and including 2.25.3, fails to sanitize characters forbidden by the XML 1.0 specification https://www.w3.org/TR/xml/charsets producing invalid XML output whenever a log message or M...

EUVD-2022-28114

Malicious code in bioql PyPI...

Insecure Signature Verification

blst is vulnerable to insecure signature verification. The vulnerability exists due to bindingstrim.pl, which can produce incorrect outputs for some inputs. This flaw can result in an invalid signature...

CVE-2022-23003

When computing a shared secret or point multiplication on the NIST P-256 curve that results in an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and is invalid. The resulting output may cause an error when used in other operations. This may be...

CVE-2013-0872

CVE-2013-0872 affects FFmpeg before 1.1.3 via the swr_init function in libswresample/swresample.c, allowing remote attackers to impact confidentiality, integrity, and availability by supplying an invalid/unsupported channel layout (out-of-bounds access). The vulnerability is documented across mul...

Debian DSA-1488-1 : phpbb2 - several vulnerabilities

Several remote vulnerabilities have been discovered in phpBB, a web-based bulletin board. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0471 Private messaging allowed cross site request forgery, making it possible to delete all private messages of...