Lucene search
K

318 matches found

UbuntuCve
UbuntuCve
added 2026/05/20 12:0 a.m.10 views

CVE-2026-46433

Heap OOB Read in VLAN Decapsulation memmove...

5.8AI score0.00225EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/13 3:37 a.m.13 views

SUSE CVE-2026-41257

jq is a command-line JSON processor. In 1.8.1 and earlier, the jq bytecode VM's data stack tracks its allocation size in a signed int. When the stack grows beyond 1 GiB via deeply nested generator forks, the doubling arithmetic overflows. The wrapped value is passed to realloc and then used for a...

7CVSS5.8AI score0.00142EPSS
Exploits1References3
NVD
NVD
added 2026/05/11 6:16 p.m.12 views

CVE-2026-41257

jq is a command-line JSON processor. In 1.8.1 and earlier, the jq bytecode VM's data stack tracks its allocation size in a signed int. When the stack grows beyond ≈1 GiB via deeply nested generator forks, the doubling arithmetic overflows. The wrapped value is passed to realloc and then used for ...

7.3CVSS0.00142EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/05/11 6:16 p.m.13 views

CVE-2026-41257

jq is a command-line JSON processor. In 1.8.1 and earlier, the jq bytecode VM's data stack tracks its allocation size in a signed int. When the stack grows beyond ≈1 GiB via deeply nested generator forks, the doubling arithmetic overflows. The wrapped value is passed to realloc and then used for ...

7.3CVSS5.8AI score0.00142EPSS
Exploits1References2
EUVD
EUVD
added 2026/05/11 5:14 p.m.10 views

EUVD-2026-29163

jq is a command-line JSON processor. In 1.8.1 and earlier, the jq bytecode VM's data stack tracks its allocation size in a signed int. When the stack grows beyond ≈1 GiB via deeply nested generator forks, the doubling arithmetic overflows. The wrapped value is passed to realloc and then used for ...

7.3CVSS5.8AI score0.00142EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/11 5:14 p.m.8 views

CVE-2026-41257

jq is a command-line JSON processor. In 1.8.1 and earlier, the jq bytecode VM's data stack tracks its allocation size in a signed int. When the stack grows beyond ≈1 GiB via deeply nested generator forks, the doubling arithmetic overflows. The wrapped value is passed to realloc and then used for ...

7.3CVSS5.8AI score0.00142EPSS
Exploits1References2Affected Software1
GithubExploit
GithubExploit
added 2026/05/09 3:13 a.m.185 views

Exploit for Operator Precedence Logic Error in Freebsd

CVE-2026-7270 FreeBSD local privilege escalation via exec...

7.8CVSS5.8AI score0.00179EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/05/09 2:21 a.m.8 views

CVE-2026-8084

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This manipulation causes out-of-bounds read. The attack is restricted to local execution. The exploit...

5.5CVSS5.4AI score0.00264EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/07 6:30 p.m.59 views

CVE-2026-8084 OSGeo gdal HDF-EOS Grid File SWapi.c memmove out-of-bounds

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This manipulation causes out-of-bounds read. The attack is restricted to local execution. The exploit...

4.8CVSS0.00264EPSS
Exploits1References9
CVE
CVE
added 2026/05/07 6:30 p.m.30 views

CVE-2026-8084

OSGeo GDAL contains a local, out-of-bounds read vulnerability in the HDF-EOS Grid File Handler (SWapi.c memmove) affect­ing up to 3.13.0dev-4. The issue is restricted to local execution and has publicly disclosed exploit information. Resolution is available by upgrading the affected component to ...

5.5CVSS5.4AI score0.00264EPSS
Exploits1References9Affected Software1
AlpineLinux
AlpineLinux
added 2026/05/07 6:30 p.m.8 views

CVE-2026-8084

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This manipulation causes out-of-bounds read. The attack is restricted to local execution. The exploit...

5.5CVSS5.3AI score0.00264EPSS
Exploits1References9
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.15 views

OSGeo gdal 缓冲区错误漏洞

OSGeo GDAL is an open-source geospatial raster and vector data processing library developed by OSGeo. OSGeo GDAL versions 3.13.0dev-4 and earlier contain a buffer error vulnerability. This vulnerability stems from a function called memmove in the frmts/hdf4/hdf-eos/SWapi.c file, which is part of...

5.5CVSS6AI score0.00264EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/05/07 12:0 a.m.7 views

CVE-2026-8084

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This manipulation causes out-of-bounds read. The attack is restricted to local execution. The exploit...

5.5CVSS5.4AI score0.00264EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/05/01 1:56 p.m.38 views

CVE-2026-31716 fs/ntfs3: validate rec->used in journal-replay file record check

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: validate rec-used in journal-replay file record check checkfilerecord validates rec-total against the record size but never validates rec-used. The doaction journal-replay handlers read rec-used from disk and use it to...

7.8CVSS0.00128EPSS
Exploits0References7
OSV
OSV
added 2026/04/29 1:21 p.m.8 views

JLSEC-2026-354

HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump helper utility. An attacker who can supply a malicious h5 file can trigger a heap use-after-free. The freed object is referenced in a memmove call from H5Tconvstruct. The original object was...

7.8CVSS5.3AI score0.00193EPSS
Exploits1References1
OSV
OSV
added 2026/04/27 4:29 p.m.8 views

CLSA-2026-1777307383 lz4: Fix of CVE-2021-3520

CVE-2021-3520: Fix potential memory corruption with negative memmove size...

9.8CVSS7.3AI score0.03216EPSS
Exploits0References1
Amazon
Amazon
added 2026/04/13 12:0 a.m.10 views

Important: vim

Issue Overview: When switching to other buffers using the :all command and visual mode still being active, this may cause a heap-buffer overflow, because Vim does not properly end visual mode and therefore may try to access beyond the end of a line in a buffer. In Patch 9.1.1003 Vim will correctl...

9.2CVSS6.1AI score0.01162EPSS
Exploits3
EUVD
EUVD
added 2026/04/09 7:1 p.m.6 views

EUVD-2026-21020

HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump helper utility. An attacker who can supply a malicious h5 file can trigger a heap use-after-free. The freed object is referenced in a memmove call from H5Tconvstruct. The original object was...

7.8CVSS5.9AI score0.00193EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.7 views

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-35823)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35823 advisory. - In the Linux kernel, the following vulnerability has been resolved: vt: fix unicode buffer corruptio...

5.3CVSS7AI score0.00907EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.8 views

PT-2025-53061

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ntfs3 file system, specifically in the indx insert into buffer function. A reported out-of-bounds OOB read bug occurs when the INDEX BUFFER...

6.3AI score0.002EPSS
Exploits0References7
Rows per page
Query Builder