79 matches found
CVE-2026-21869
CVE-2026-21869 affects llama.cpp prior to commit 55d4206c9, where the server’s completion endpoints parse the non‑negative constraint for the JSON input parameter n_discard without validation. A negative n_discard can cause a reversed range/offset in llama_memory_seq_rm/add, leading to out‑of‑bou...
EUVD-2022-55780
In the Linux kernel, the following vulnerability has been resolved: amdgpu/pm: prevent array underflow in vega20odneditdpmtable In the PPODEDITVDDCCURVE case the "inputindex" variable is capped at 2 but not checked for negative values so it results in an out of bounds read. This value comes from...
CVE-2022-50781
In the Linux kernel, the following vulnerability has been resolved: amdgpu/pm: prevent array underflow in vega20odneditdpmtable In the PPODEDITVDDCCURVE case the "inputindex" variable is capped at 2 but not checked for negative values so it results in an out of bounds read. This value comes from...
CVE-2022-50781 amdgpu/pm: prevent array underflow in vega20_odn_edit_dpm_table()
In the Linux kernel, the following vulnerability has been resolved: amdgpu/pm: prevent array underflow in vega20odneditdpmtable In the PPODEDITVDDCCURVE case the "inputindex" variable is capped at 2 but not checked for negative values so it results in an out of bounds read. This value comes from...
CVE-2022-50781
CVE-2022-50781 (Linux kernel, amdgpu driver) : The issue occurs in amdgpu/pm within the Vega 20 DPM table handling (PP_OD_EDIT_VDDC_CURVE). The root cause is that input_index is capped at 2 but not checked for negative values, leading to an out-of-bounds read when the value is supplied by user sp...
TencentOS Server 4: pcre2 (TSSA-2024:0361)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0361 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46756)
hwmon: w83627ehf underflows seen when writing limit attributes DIVROUNDCLOSEST after kstrtol results in an underflow if a large negative number such as -9223372036854775808 is provided by the user. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot fo...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46758)
hwmon: lm95234 underflows seen when writing limit attributes DIVROUNDCLOSEST after kstrtol results in an underflow if a large negative number such as -9223372036854775808 is provided by the user. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...
SUSE CVE-2025-40117
In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix array underflow in pciendpointtestioctl Commit eefb83790a0d "misc: pciendpointtest: Add doorbell test case" added NOBAR -1 to the pcibarno enum which, in practical terms, changes the enum from an unsign...
EUVD-2025-124966
In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix array underflow in pciendpointtestioctl Commit eefb83790a0d "misc: pciendpointtest: Add doorbell test case" added NOBAR -1 to the pcibarno enum which, in practical terms, changes the enum from an unsign...
CVE-2025-40117
In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix array underflow in pciendpointtestioctl Commit eefb83790a0d "misc: pciendpointtest: Add doorbell test case" added NOBAR -1 to the pcibarno enum which, in practical terms, changes the enum from an unsign...
UBUNTU-CVE-2025-40117
In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix array underflow in pciendpointtestioctl Commit eefb83790a0d "misc: pciendpointtest: Add doorbell test case" added NOBAR -1 to the pcibarno enum which, in practical terms, changes the enum from an unsign...
CVE-2025-40117
CVE-2025-40117 : In the Linux kernel, the fix addresses an array underflow in pci_endpoint_test_bar() triggered by a negative value passed to pci_endpoint_test_ioctl(). The root cause was adding NO_BAR (-1) to the pci_barno enum, effectively converting it from unsigned to signed, as described in ...
CVE-2025-40117 misc: pci_endpoint_test: Fix array underflow in pci_endpoint_test_ioctl()
In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix array underflow in pciendpointtestioctl Commit eefb83790a0d "misc: pciendpointtest: Add doorbell test case" added NOBAR -1 to the pcibarno enum which, in practical terms, changes the enum from an unsign...
EUVD-2024-36204
Malicious code in bioql PyPI...
EUVD-2022-44602
Malicious code in bioql PyPI...
USN-7000-2 expat vulnerabilities
USN-7000-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for Ubuntu 22.04 LTS. Original advisory details: Shang-Hung Wan discovered that Expat did not properly handle certain function calls when a negative input length was provided. An attacker could use this issu...
USN-7001-2 libxmltok vulnerabilities
USN-7001-1 fixed vulnerabilities in xmltol library. This update provides the corresponding updates for Ubuntu 24.04 LTS. Original advisory details: Shang-Hung Wan discovered that Expat, contained within the xmltok library, did not properly handle certain function calls when a negative input lengt...
USN-7001-1 libxmltok vulnerabilities
Shang-Hung Wan discovered that Expat, contained within the xmltok library, did not properly handle certain function calls when a negative input length was provided. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code. CVE-2024-45490 Shang-Hung Wan...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a deadlock in the copen function if the ondemandid passed in is less than 0, which may cause the request t...