ROS-20260521-73-0002

A vulnerability in the .NET software platform involves reading outside of the allowed range in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

thunderbird: Out of bounds read in IMAP parsing

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were...

SUSE CVE-2026-28386

Issue summary: Applications using AES-CFB128 encryption or decryption on systems with AVX-512 and VAES support can trigger an out-of-bounds read of up to 15 bytes when processing partial cipher blocks. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service fo...

CVE-2026-4647

A flaw was found in the GNU Binutils BFD library, a widely used component for handling binary files such as object files and executables. The issue occurs when processing specially crafted XCOFF object files, where a relocation type value is not properly validated before being used. This can caus...

MiracleLinux 7 : httpd24-nghttp2-1.7.1-7.el7, httpd24-curl-7.61.1-1.el7, httpd24-httpd-2.4.34-7.el7 (AXSA:2019-3739:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3739:01 advisory. httpd: Improper handling of headers in modsession can allow a remote user to modify session data for CGI applications CVE-2018-1283 httpd: Out of...

ROS-20260112-7341

A vulnerability in the xfsdir3datacheck function fs/xfs/libxfs/xfsdir2data.c of the Linux operating system kernel is related to reading data beyond buffer boundaries in memory. Exploitation of the vulnerability allows an attacker to cause a denial of service...

The vulnerability of the Windows RRAS operating system’s routing and remote access services allows attackers to disclose sensitive information and execute arbitrary code.

The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to reading data outside of the allowed range in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information and execute arbitrary code by sending a special...

The vulnerability of the BFS file system of the Grub2 operating system, which allows a hacker to disclose protected information

The vulnerability of the BFS file system of the Grub2 operating system is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the SPNEGO security mechanism for Windows operating systems allows a perpetrator to disclose protected information.

The vulnerability of the SPNEGO security mechanism for Windows operating systems is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the af_unix component in the Linux operating system kernel allows a hacker to trigger a service failure.

The vulnerability of the afunix component in the Linux operating system kernel is related to reading data beyond the allowed range in memory within the manageoob function. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of the H5O__layout_decode() function in the H5Olayout.c file of the HDF5 library, which allows a hacker to cause a service failure.

The vulnerability of the H5Olayoutdecode function in the H5Olayout.c file, a HDF5 library, involves reading data beyond the memory bounds. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the H5VM_memcpyvv() function in the H5VM.c file of the HDF5 library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5VMmemcpyvv function in the H5VM.c file of the HDF5 library is related to reading beyond the bounds of memory. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of Siemens Solid Edge’s design and simulation tools relates to reading beyond the memory boundary, allowing a malicious actor to execute arbitrary code.

The vulnerability of Siemens Solid Edge’s design and simulation tools is related to reading beyond the memory limit. Exploiting this vulnerability can allow an attacker to execute arbitrary code using specially created PAR files...

kernel: nf_tables: stack-out-of-bounds-read in nft_byteorder_eval()

An out-of-bounds OOB memory access flaw was found in the Netfilter module in the Linux kernel's nftbyteordereval in net/netfilter/nftbyteorder.c. A bound check failure allows a local attacker with CAPNETADMIN access to cause a local privilege escalation issue due to incorrect data alignment...

DEBIAN-CVE-2021-3504

A flaw was found in the hivex library in versions before 1.3.20. It is caused due to a lack of bounds check within the hivexopen function. An attacker could input a specially crafted Windows Registry hive file which would cause hivex to read memory beyond its normal bounds or cause the program to...

UBUNTU-CVE-2016-1867

The jpcpinextcprl function in JasPer 1.900.1 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted JPEG 2000 image...