17 matches found
Astra Linux - уязвимость в linux, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: phonet/pep: refusal to enable an unbound pipe The ioctl function implicitly assumed that the socket was already bound to a valid local socket name, i.e., a Phonet object. If the socket was not bound, two problems would occur: 1 W...
CVE-2025-50681
igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a denial of service application crash via a crafted IGMPv3 membership report packet with a malicious source address. Due to insufficient validation in the recvigmp function in src/igmpproxy.c, an invalid group record type can...
CVE-2025-13086
Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.6.15 and 2.7alpha1 through 2.7rc1 allows an attacker to open a session from a different IP address which did not initiate the connection resulting in a denial of service for the originating client...
EUVD-2023-25836
Malicious code in bioql PyPI...
CVE-2025-57778
Digilent DASYLab DSB file parsing vulnerability (CVE-2025-57778): out-of-bounds write due to improper bounds checking enables arbitrary code execution when a user opens a malicious DSB file. Affected software is DASYLab; parsing of DSB files is the root cause. ZDI-25-891 confirms remote code exec...
CVE-2025-57778 Out Of Bounds Write to invalid source address when parsing a DSB file with Digilent DASYLab
There is an out of bounds write vulnerability due to improper bounds checking resulting in an invalid source address when parsing a DSB file with Digilent DASYLab. This vulnerability may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a...
PT-2025-35598
Name of the Vulnerable Software and Affected Versions DASYLab affected versions not specified Description DASYLab is susceptible to an out-of-bounds write due to insufficient bounds checking when parsing DSB files. This can lead to an invalid source address and potentially result in arbitrary cod...
Linux Distros Unpatched Vulnerability : CVE-2021-47086
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - phonet/pep: refuse to enable an unbound pipe This ioctl implicitly assumed that the socket was already bound to a valid local socket name, i.e. Phonet object. I...
CVE-2023-21669
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address...
SUSE CVE-2021-47086
In the Linux kernel, the following vulnerability has been resolved: phonet/pep: refuse to enable an unbound pipe This ioctl implicitly assumed that the socket was already bound to a valid local socket name, i.e. Phonet object. If the socket was not bound, two separate problems would occur: 1 We'd...
DEBIAN-CVE-2021-47086
In the Linux kernel, the following vulnerability has been resolved: phonet/pep: refuse to enable an unbound pipe This ioctl implicitly assumed that the socket was already bound to a valid local socket name, i.e. Phonet object. If the socket was not bound, two separate problems would occur: 1 We'd...
UBUNTU-CVE-2021-47086
In the Linux kernel, the following vulnerability has been resolved: phonet/pep: refuse to enable an unbound pipe This ioctl implicitly assumed that the socket was already bound to a valid local socket name, i.e. Phonet object. If the socket was not bound, two separate problems would occur: 1 We'd...
CVE-2023-21669
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address...
CVE-2023-21669 Buffer Over-read in WLAN HOST
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address...
PT-2023-18330 · Wlan Host · Wlan Host
Name of the Vulnerable Software and Affected Versions: WLAN HOST affected versions not specified Description: The issue involves an information disclosure in WLAN HOST when sending a DPP action frame to a peer with an invalid source address. Recommendations: At the moment, there is no information...
Qualcomm Chipsets 缓冲区错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from the disclosure of information in the WLAN HOST when sending DPP operation frames to a peer with an invalid source address...
Opera Web Browser 7.0 - Remote IFRAME Denial of Service
Opera Web Browser 7.0 - Remote IFRAME Denial of Service source: https://www.securityfocus.com/bid/10081/info A denial of service vulnerability has been reported to affect Opera Web Browser. The issue is reported to present itself when Opera attempts to render IFRAME HTML tags that contain an...