9 matches found
PT-2026-43199
The affected products perform improper length checking when parsing incoming HTTP requests, resulting in a size-limited out-of-bounds write. An unauthenticated remote attacker can exploit this flaw to cause a denial of service via a system crash on the affected device...
Unity Linux 20.1060e / 20.1070e Security Update: linuxptp (UTSA-2026-017433)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017433 advisory. A flaw was found in the ptp4l program of the linuxptp package. A missing length check when forwarding a PTP message between ports allows a remote attacker to cause a...
kernel: e1000e: fix heap overflow in e1000_set_eeprom
A heap‑overflow vulnerability was discovered in the linux kernel e1000e driver’s e1000seteeprom function, insufficient validation of the requested length for an EEPROM change could allow a local, low‑privilege user to trigger memory corruption heap overflow. A local unprivileged user with access ...
CVE-2024-4081
A memory corruption issue due to an improper length check in NI LabVIEW may disclose information or result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects NI LabVIEW 2024 Q1 and prior versions...
CVE-2021-25461
An improper length check in APAService prior to SMR Sep-2021 Release 1 results in stack based Buffer Overflow...
lrzsz 输入验证错误漏洞
lrzsz is a command line tool for ZModem file transfer between Linux/Unix and Windows. A security vulnerability exists in LRZSZ version 0.12.21, which stems from an incorrect length check in the number zsdata, resulting in a size t wraparound...
ALPINE-CVE-2017-12178
xorg-x11-server before 1.19.5 had wrong extra length check in ProcXIChangeHierarchy function allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
Memory out-of-bounds access vulnerability in WPS Text docreader module
WPS-Text is an office software. A memory out-of-bounds access vulnerability exists in the WPS-Text docreader module. The vulnerability arises due to a failure to effectively check for length out-of-bounds, resulting from a direct call to memcpy. An attacker exploiting this vulnerability could cau...
DEBIAN-CVE-2012-2136
The sockallocsendpskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cause a denial of service heap-based buffer overflow and system crash or possibly gain privileges by leveraging access to a TUN/TAP...