CVE-2024-39480 kdb: Fix buffer overflow during tab-complete

In the Linux kernel, the following vulnerability has been resolved: kdb: Fix buffer overflow during tab-complete Currently, when the user attempts symbol completion with the Tab key, kdb will use strncpy to insert the completed symbol into the command buffer. Unfortunately it passes the size of t...

CVE-2024-39480 kdb: Fix buffer overflow during tab-complete

In the Linux kernel, the following vulnerability has been resolved: kdb: Fix buffer overflow during tab-complete Currently, when the user attempts symbol completion with the Tab key, kdb will use strncpy to insert the completed symbol into the command buffer. Unfortunately it passes the size of t...

CVE-2024-38950

Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to interceptormemcpy function...

DEBIAN-CVE-2024-38950

Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to interceptormemcpy function...

UBUNTU-CVE-2024-38950

Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to interceptormemcpy function...

Libde265 Security Vulnerability

Structure AG Libde265 is an h.265 video codec from Structure AG, Germany. A security vulnerability exists in Libde265 version v1.0.15, which stems from a buffer overflow issue in the interceptormemcpy function, which could lead to a crash...

CVE-2024-38950

CVE-2024-38950 describes a Heap Buffer Overflow in Libde265 v1.0.15 triggered by a crafted payload to the __interceptor_memcpy function. Affected software/component: Libde265 (Structure AG) library. Impact per available metrics: Availability impact High; otherwise no confidentiality/integrity imp...

CVE-2022-48772 media: lgdt3306a: Add a check against null-pointer-def

In the Linux kernel, the following vulnerability has been resolved: media: lgdt3306a: Add a check against null-pointer-def The driver should check whether the client provides the platformdata. The following log reveals it: 29.610324 BUG: KASAN: null-ptr-deref in kmemdup+0x30/0x40 29.610730 Read o...

SUSE CVE-2024-38623

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Use variable length array instead of fixed size Should fix smatch warning: ntfssetlabel error: builtinmemcpy 'uni-name' too small 20 vs 256...

SUSE CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

UBUNTU-CVE-2024-38623

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Use variable length array instead of fixed size Should fix smatch warning: ntfssetlabel error: builtinmemcpy 'uni-name' too small 20 vs 256...

CVE-2024-38659 enic: Validate length of nl attributes in enic_set_vf_port

In the Linux kernel, the following vulnerability has been resolved: enic: Validate length of nl attributes in enicsetvfport enicsetvfport assumes that the nl attribute IFLAPORTPROFILE is of length PORTPROFILEMAX and that the nl attributes IFLAPORTINSTANCEUUID, IFLAPORTHOSTUUID are of length...

CVE-2024-38585

In the Linux kernel, the following vulnerability has been resolved: tools/nolibc/stdlib: fix memory error in realloc Pass userplen to memcpy instead of heap-len to prevent realloc from copying an extra sizeofheap bytes from beyond the allocated region...

CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

DEBIAN-CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

AZL-67887 CVE-2022-48744 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...

DEBIAN-CVE-2022-48739

In the Linux kernel, the following vulnerability has been resolved: ASoC: hdmi-codec: Fix OOB memory accesses Correct size of iecstatus array by changing it to the size of status array of the struct sndaesiec958. This fixes out-of-bounds slab read accesses made by memcpy of the hdmi-codec driver...

UBUNTU-CVE-2022-48744

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid field-overflowing memcpy In preparation for FORTIFYSOURCE performing compile-time and run-time field bounds checking for memcpy, memmove, and memset, avoid intentionally writing across neighboring fields. Use...