Lucene search
K

6 matches found

OSV
OSV
added 2026/05/19 7:50 p.m.7 views

GHSA-PHQJ-4MHP-Q6MQ rust-openssl: Potential out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers

CipherCtxRef::cipherupdateinplace incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers EVPaes128,192,256wrappad. For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller's buffer or Vec, producing attacker-controllable heap corruption whe...

5.1CVSS5.8AI score0.00019EPSS
Exploits0References2
OSV
OSV
added 2026/05/07 10:33 p.m.6 views

GHSA-XV59-967R-8726 rust-openssl vulnerable to heap buffer overflow when encrypting with AES key-wrap-with-padding

CipherCtxRef::cipherupdate, CipherCtxRef::cipherupdatevec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers EVPaes128,192,256wrappad. For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller's buffer or Vec,...

5.1CVSS5.9AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/04/09 2:29 a.m.4 views

SUSE CVE-2024-26692

In the Linux kernel, the following vulnerability has been resolved: smb: Fix regression in writes when non-standard maximum write size negotiated The conversion to netfs in the 6.3 kernel caused a regression when maximum write size is set by the server to an unexpected value which is not a multip...

5.5CVSS6.4AI score0.00236EPSS
Exploits0References12
OSV
OSV
added 2024/04/03 3:15 p.m.2 views

DEBIAN-CVE-2024-26692

In the Linux kernel, the following vulnerability has been resolved: smb: Fix regression in writes when non-standard maximum write size negotiated The conversion to netfs in the 6.3 kernel caused a regression when maximum write size is set by the server to an unexpected value which is not a multip...

5.5CVSS6.3AI score0.00236EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/03 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a regression caused by a conversion to netfs when the server sets the maximum write size to an unexpected...

5.5CVSS6.5AI score0.00236EPSS
Exploits0References5
OSV
OSV
added 2012/08/20 6:55 p.m.1 views

DEBIAN-CVE-2012-0947

Heap-based buffer overflow in the vqadecodechunk function in the VQA codec vqavideo.c in libavcodec in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a...

6.8CVSS8.2AI score0.04686EPSS
Exploits1References1
Rows per page
Query Builder