Lucene search
+L

225 matches found

RedhatCVE
RedhatCVE
added 2026/02/03 9:19 p.m.6 views

CVE-2025-47398

Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers...

7.8CVSS5.3AI score0.00092EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.6 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: net/smc: fixed a warning in smcrxsplice, when calling getpage. smcloregisterdmb allocates DMB buffers using kzalloc, which are later passed to getpage in smcrxsplice. Since kmalloc memory is not page-backed, this triggers...

6AI score0.00225EPSS
Exploits0References3
Redos
Redos
added 2025/12/17 12:0 a.m.6 views

ROS-20251217-7302

A vulnerability in the WebGPU component of the Google Chrome browser is related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code and cause a denial of service...

8.8CVSS7.8AI score0.00264EPSS
Exploits0
CNVD
CNVD
added 2025/12/15 12:0 a.m.3 views

AzeoTech DAQFactory Out-of-Bounds Read Vulnerability

AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, Inc. and commonly used in industrial automation. AzeoTech DAQFactory suffers from an out-of-bounds read vulnerability that originates from out-of-bounds reading of memory buffer data, which can be exploited b...

8.4CVSS6.8AI score0.0031EPSS
Exploits0References1
NVD
NVD
added 2025/11/17 5:15 p.m.8 views

CVE-2025-58410

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permissions to memory buffers exported as read-only. This is caused by improper handling of the memory protections for the buffer resource...

7.5CVSS0.0027EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/20 6:30 p.m.7 views

EUVD-2025-35068

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix warning in smcrxsplice when calling getpage smcloregisterdmb allocates DMB buffers with kzalloc, which are later passed to getpage in smcrxsplice. Since kmalloc memory is not page-backed, this triggers WARNONONCE in...

5.8AI score0.00225EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2007-3455

Malware in sbrugna...

7.8CVSS6.4AI score0.0332EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1185

Malware in sbrugna...

5CVSS6.4AI score0.02099EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/09/18 4:3 p.m.2 views

CVE-2022-50407 crypto: hisilicon/qm - increase the memory of local variables

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - increase the memory of local variables Increase the buffer to prevent stack overflow by fuzz test. The maximum length of the qos configuration buffer is 256 bytes. Currently, the value of the 'val buffer' i...

6.4AI score0.0016EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/09/17 2:56 p.m.8 views

CVE-2023-53353

In the Linux kernel, the following vulnerability has been resolved: accel/habanalabs: postpone memmgr IDR destruction to hprivrelease The memory manager IDR is currently destroyed when user releases the file descriptor. However, at this point the user context might be still held, and memory buffe...

5.5CVSS5.2AI score0.00156EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/09/17 12:0 a.m.6 views

PT-2025-38203

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The memory manager IDR is destroyed when a user releases the file descriptor. However, the user context might still be held at this point, and memory buffers might still be in use...

5.5CVSS5.4AI score0.00156EPSS
Exploits0References19
CNNVD
CNNVD
added 2025/09/04 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the habanalabs driver not handling file descriptors correctly when exporting dmabuf, which could lead to reuse...

7.8CVSS6.3AI score0.00142EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2025/09/03 6:0 p.m.10 views

Netty's decoders vulnerable to DoS via zip bomb style attack

Summary With specially crafted input, BrotliDecoder and some other decompressing decoders will allocate a large number of reachable byte buffers, which can lead to denial of service. Details BrotliDecoder.decompress has no limit in how often it calls pull, decompressing data 64K bytes at a time...

7.5CVSS7AI score0.00561EPSS
Exploits1References4Affected Software2
CVE
CVE
added 2025/08/22 4:3 p.m.32 views

CVE-2025-38674

CVE-2025-38674 concerns the Linux kernel where a revert of the patch “drm/prime: Use dma_buf from GEM object instance” makes the dma_buf field in struct drm_gem_object unstable over a buffer object’s lifetime. As a result, the field becomes NULL when the final GEM handle is released, causing a NU...

5.5CVSS6.7AI score0.00121EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/08/16 10:54 a.m.46 views

CVE-2025-38511

CVE-2025-38511 concerns a Linux kernel vulnerability in drm/xe/pf where LMEM (LMEM buffer objects) were not cleared by default on allocation, creating a risk that unused LMTT PTEs could point to other VF or PF pages. The patch clears all new LMTT pages on allocation to prevent a malicious VF from...

5.5CVSS6.8AI score0.00144EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.7 views

The vulnerability of embedded software developed by Qualcomm, related to the execution of operations outside the buffer in memory, allows attackers to cause system failures.

The vulnerability of embedded Qualcomm software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause system failures...

7.8CVSS5.9AI score0.00198EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/08/06 12:0 a.m.7 views

The vulnerability of the ImageIO component in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS allows attackers to gain unauthorized access to protected information.

The vulnerability of the ImageIO component in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS relates to reading data beyond the buffer limit of memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

4CVSS5.7AI score0.00236EPSS
Exploits0References8Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/08/05 12:0 a.m.8 views

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the execution of operations beyond buffer boundaries in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

4.6CVSS5.8AI score0.00139EPSS
Exploits0References2Affected Software11
BDU FSTEC
BDU FSTEC
added 2025/08/05 12:0 a.m.13 views

The vulnerability of the NVIDIA Virtual GPU Manager driver, which allows a hacker to gain unauthorized access to protected information.

The vulnerability of the NVIDIA Virtual GPU Manager driver relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

7.8CVSS5.8AI score0.00206EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.20 views

The vulnerability of PDF document viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the ability to read data beyond the buffer in memory, allowing attackers to disclose protected information.

The vulnerability of PDF document viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the reading of data beyond the buffer boundaries in memory during file processing for U3D files. Exploiting this vulnerability can allow attackers to disclose protecte...

3.3CVSS5.9AI score0.00211EPSS
Exploits0References3Affected Software3
Rows per page
Query Builder