29 matches found
EUVD-2026-41929
Memory Corruption when allocating memory with sizes that exceed the maximum allowed value...
PT-2026-55991
Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Memory corruption occurs when the system attempts to allocate memory with sizes that exceed the maximum allowed value. Recommendations At the moment, there is no...
UBUNTU-CVE-2026-52934
In the Linux kernel, the following vulnerability has been resolved: batman-adv: tvlv: reject oversized TVLV packets batadvtvlvcontainerogmappend builds a TVLV packet section from the tvlv.containerlist. The total size of this section is computed by batadvtvlvcontainerlistsize, which sums the size...
CVE-2026-56228
Capgo before 12.128.2 is vulnerable to improper password policy length validation. An authenticated organization administrator can set an extremely large minimum password length value, causing all users to fail password changes and effectively lock out the organization, resulting in an applicatio...
SUSE CVE-2026-33602
A rogue backend can send a crafted UDP response with a query ID off by one related to the maximum configured value, triggering an out-of-bounds write leading to a denial of service...
EUVD-2026-24943
A rogue backend can send a crafted UDP response with a query ID off by one related to the maximum configured value, triggering an out-of-bounds write leading to a denial of service...
📄 Wireshark USB HID Protocol Dissector Memory Exhaustion
CVE-2026-3201 is a denial of service vulnerability affecting the USB HID protocol dissector in Wireshark versions 4.6.0 through 4.6.3 and 4.4.0 through 4.4.13. The vulnerability is triggered when Wireshark parses a specially crafted USB HID Report Descriptor containing an excessively large...
CVE-2025-47384
Transient DOS when MAC configures config id greater than supported maximum value...
CVE-2025-47384
Transient DOS when MAC configures config id greater than supported maximum value...
EUVD-2025-208191
Transient DOS when MAC configures config id greater than supported maximum value...
CVE-2025-47384
CVE-2025-47384 describes a transient denial-of-service in the MAC layer when a configuration identifier exceeds the maximum supported value. The root cause, as stated across linked records, is an out-of-range config id; this leads to a temporary DOS condition without broader impact to confidentia...
CVE-2025-47384 Reachable Assertion in FW
Transient DOS when MAC configures config id greater than supported maximum value...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporation. There is a security vulnerability in Qualcomm Chipsets, which may lead to a sudden denial-of-service attack when the configuration ID of the MAC exceeds the supported maximum value...
PT-2026-22647
Transient DOS when MAC configures config id greater than supported maximum value...
CVE-2022-50749
In the Linux kernel, the following vulnerability has been resolved: acct: fix potential integer overflow in encodecompt The integer overflow is descripted with following codes: 317 static compt encodecomptu64 value 318 319 int exp, rnd; ...... 341 exp 342 exp += value; 343 return exp; 344 Current...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a lack of boundary checking for map-maxosd, which could lead to out-of-bounds access...
ROS-20251203-16
A vulnerability in the Consul and Consul Enterprise service configuration tool is related to incorrect validation of the Content Length of the Content Length header. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service Vulnerability in the Consul an...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: netfs: Fix for unbuffered write error handling If all the subrequests in an unbuffered write stream fail, the subrequest collector does not update the stream-transferred value, and it retains its initial LONGMAX value...
jq: jq has signed integer overflow in jv.c:jvp_array_write
A flaw was found in jq, a command line JSON processor. An integer overflow can occur when attempting to assign a value using an array index of 2147483647 or when creating an array with 2147483647 elements, the maximum value for a 32-bit signed integer. This issue causes out-of-bounds memory acces...
CVE-2024-30212
If a SCSI READ10 command is initiated via USB using the largest LBA 0xFFFFFFFF with it's default block size of 512 and a count of 1, the first 512 byte of the 0x80000000 memory area is returned to the user. If the block count is increased, the full RAM can be exposed. The same method works to wri...