Lucene search
K

12 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux – Vulnerability in gst-plugins-good1.0

GStreamer is a library for constructing graphs of media-handling components. A OOB-read vulnerability has been identified in the gstavisubtitleparsegab2chunk function within gstavisubtitle.c. This function reads the namelength value directly from the input file without properly checking it. As a...

9.1CVSS6.6AI score0.00823EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in NBD

In nbd-server in nbd before 3.24, there is an integer overflow that leads to a heap-based buffer overflow. A value of 0xffffffff in the name length field causes a zero-sized buffer to be allocated for the name, resulting in a write to a dangling pointer. This issue occurs for the NBDOPTINFO,...

9.8CVSS8.6AI score0.02738EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2022-26495

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff in the name length field will...

9.8CVSS8.3AI score0.02738EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2024/12/13 12:29 a.m.5 views

SUSE CVE-2024-47774

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been identified in the gstavisubtitleparsegab2chunk function within gstavisubtitle.c. The function reads the namelength value directly from the input file without checking it properly. Then,...

5.5CVSS7.1AI score0.00823EPSS
Exploits0References11
OSV
OSV
added 2024/12/12 2:3 a.m.3 views

DEBIAN-CVE-2024-47774

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been identified in the gstavisubtitleparsegab2chunk function within gstavisubtitle.c. The function reads the namelength value directly from the input file without checking it properly. Then,...

9.1CVSS6.8AI score0.00823EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 2:3 a.m.7 views

AZL-62339 CVE-2024-47774 affecting package gstreamer1 1.20.0-2

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been identified in the gstavisubtitleparsegab2chunk function within gstavisubtitle.c. The function reads the namelength value directly from the input file without checking it properly. Then,...

9.1CVSS5.9AI score0.00823EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/03 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from allowing the length of a name to exceed the space occupied by ea...

7.1CVSS6.8AI score0.00244EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:27 a.m.5 views

SUSE CVE-2022-26495

In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff in the name length field will cause a zero-sized buffer to be allocated for the name, resulting in a write to a dangling pointer. This issue exists for the NBDOPTINFO,...

8.1CVSS7.4AI score0.02738EPSS
Exploits1References4
OSV
OSV
added 2022/03/06 6:15 a.m.1 views

DEBIAN-CVE-2022-26495

In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff in the name length field will cause a zero-sized buffer to be allocated for the name, resulting in a write to a dangling pointer. This issue exists for the NBDOPTINFO,...

9.8CVSS8.8AI score0.02738EPSS
Exploits1References1
OSV
OSV
added 2022/03/06 6:15 a.m.1 views

UBUNTU-CVE-2022-26495

In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff in the name length field will cause a zero-sized buffer to be allocated for the name, resulting in a write to a dangling pointer. This issue exists for the NBDOPTINFO,...

9.8CVSS7.7AI score0.02738EPSS
Exploits1References5
OSV
OSV
added 2020/07/30 1:15 p.m.1 views

DEBIAN-CVE-2020-14309

There's an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacke...

6.7CVSS7AI score0.00482EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/01/21 3:53 p.m.2 views

kernel: buffer overflow in cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c

A vulnerability was found in the Linux kernel's generic WiFi ESSID handling implementation. The flaw allows a system to join a wireless network where the ESSID is longer than the maximum length of 32 characters, which can cause the system to crash or execute code...

9.8CVSS6.9AI score0.06652EPSS
Exploits0References4
Rows per page
Query Builder