Lucene search
K

515 matches found

OSV
OSV
added 2026/03/04 3:16 p.m.2 views

DEBIAN-CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

5.5CVSS5.2AI score0.00206EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/03/04 3:16 p.m.2 views

CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.3CVSS5.7AI score0.00206EPSS
Exploits0References10
OSV
OSV
added 2026/03/04 3:16 p.m.4 views

UBUNTU-CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.3CVSS5.7AI score0.00206EPSS
Exploits0References16
ATTACKERKB
ATTACKERKB
added 2026/03/04 2:36 p.m.3 views

CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

5.8AI score0.00206EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/03/04 2:36 p.m.19 views

CVE-2026-23236

Technical details about CVE-2026-23236 are not publicly provided in the supplied documents; advisories reference kernel fixes but do not specify affected components, versions, or impact. Monitor for updates.

7.3CVSS5.8AI score0.00206EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/03/04 2:36 p.m.31 views

CVE-2026-23236 fbdev: smscufx: properly copy ioctl memory to kernelspace

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.3CVSS0.00206EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/03/04 2:36 p.m.10 views

CVE-2025-71238

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsgdone causing double free Kernel panic observed on system, 5353358.825191 BUG: unable to handle page fault for address: ff5f5e897b024000 5353358.825194 PF: supervisor write access in kernel mode 5353358.82519...

5.8AI score0.00194EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.4 views

PT-2026-22922

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The UFX IOCTL REPORT DAMAGE ioctl does not correctly copy data from user space to kernel space. Instead, it directly references the memory, which can lead to issues if invalid data is...

7.3CVSS6AI score0.00206EPSS
Exploits0
OSV
OSV
added 2026/02/27 4:16 a.m.8 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.8CVSS6.6AI score
Exploits0References2
OSV
OSV
added 2026/02/26 6:23 p.m.5 views

CVE-2026-23747

Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit 48f521b, contain a stack-based buffer overflow in Payload Utils. The goliothpayloadasint and goliothpayloadasfloat helpers copy network-supplied payload data into fixed-size stack buffers using memcpy with a length derived from...

6.3CVSS6.2AI score
Exploits0References5
CVE
CVE
added 2026/02/26 5:30 p.m.23 views

CVE-2026-23747

The CVE affects Golioth Firmware SDK versions 0.10.0 up to 0.21.x (fixed in v0.22.0). A stack-based buffer overflow occurs in Payload Utils via golioth_payload_as_int() and golioth_payload_as_float(), which copy network-provided payload data into fixed-size stack buffers using memcpy() with a len...

6.3CVSS5.8AI score0.00297EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.5 views

PT-2026-22292

Name of the Vulnerable Software and Affected Versions OCaml versions prior to 4.14.3 and 5.x versions prior to 5.4.1 Description A flaw exists in OCaml's Marshal deserialization process within runtime/intern.c that could allow for remote code execution. This issue stems from a missing bounds chec...

7.9CVSS6.1AI score0.0021EPSS
Exploits0References38
RedHat Linux
RedHat Linux
added 2026/02/16 12:28 p.m.4 views

kernel: svcrdma: use rc_pageoff for memcpy byte offset

In the Linux kernel, the following vulnerability has been resolved: svcrdma: use rcpageoff for memcpy byte offset svcrdmacopyinlinerange added rccurpage page index to the page base instead of the byte offset rcpageoff. Use rcpageoff so copies land within the current page. Found by ZeroPath...

5.7AI score0.00166EPSS
Exploits0References5
AlmaLinux
AlmaLinux
added 2026/02/16 12:0 a.m.4 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ntbhwswitchtec: Fix shift-out-of-bounds in switchtecntbmwsettrans CVE-2023-53034 kernel: smc: Fix use-after-free in pnetfindbasendev CVE-2025-40064 kernel: Linux kernel: Out-of-bounds wri...

7.5CVSS7.5AI score0.0071EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2026/02/09 9:51 a.m.5 views

kernel: svcrdma: use rc_pageoff for memcpy byte offset

In the Linux kernel, the following vulnerability has been resolved: svcrdma: use rcpageoff for memcpy byte offset svcrdmacopyinlinerange added rccurpage page index to the page base instead of the byte offset rcpageoff. Use rcpageoff so copies land within the current page. Found by ZeroPath...

5.7AI score0.00166EPSS
Exploits0References5
OSV
OSV
added 2026/01/21 12:15 p.m.9 views

AZL-75020 CVE-2026-0988 affecting package glib 2.71.0-9

A flaw was found in glib. Missing validation of offset and count parameters in the gbufferedinputstreampeek function can lead to an integer overflow during length calculation. When specially crafted values are provided, this overflow results in an incorrect size being passed to memcpy, triggering...

3.7CVSS6.2AI score0.00396EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/21 11:38 a.m.3 views

CVE-2026-0988

A flaw was found in glib. Missing validation of offset and count parameters in the gbufferedinputstreampeek function can lead to an integer overflow during length calculation. When specially crafted values are provided, this overflow results in an incorrect size being passed to memcpy, triggering...

3.7CVSS5.9AI score0.00396EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : libtiff-4.0.9-29.el8 (AXSA:2023-6460:07)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6460:07 advisory. libtiff: out-of-bounds write in extractContigSamplesShifted16bits in tools/tiffcrop.c CVE-2023-0800 libtiff: out-of-bounds write in TIFFmemcpy in...

6.8CVSS7.3AI score0.00435EPSS
Exploits5References6
SUSE CVE
SUSE CVE
added 2026/01/15 12:25 a.m.5 views

SUSE CVE-2025-68811

In the Linux kernel, the following vulnerability has been resolved: svcrdma: use rcpageoff for memcpy byte offset svcrdmacopyinlinerange added rccurpage page index to the page base instead of the byte offset rcpageoff. Use rcpageoff so copies land within the current page. Found by ZeroPath...

5.5CVSS6.5AI score0.00166EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.10 views

Oracle Linux 10 : gnupg2 (ELSA-2026-0697)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0697 advisory. - Fix CVE-2025-68973 gpg.fail/memcpy Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...

7.8CVSS5.9AI score0.00129EPSS
Exploits1References2
Rows per page
Query Builder