Astra Linux - уязвимость в openssl, openssl1.0

ASN.1 strings are internally represented within OpenSSL as an ASN1STRING structure, which contains a buffer for storing the string data and a field for storing the buffer length. This is different from regular C strings, which are represented as a buffer for the string data, terminated with a NUL...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Firmware: csdsp: Use strnlen on name fields in V1 wmfw files. Use strnlen instead of strlen for the algorithm and coefficient name string arrays in V1 wmfw files. In V1 wmfw files, the name is a NUL-terminated string stored in a...

CVE-2026-43028 netfilter: x_tables: ensure names are nul-terminated

In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: ensure names are nul-terminated Reject names that lack a \0 character before feeding them to functions that expect c-strings. Fixes tag is the most recent commit that needs this change...

CLSA-2026-1777311048 Fix CVE(s): CVE-2026-32636

SECURITY UPDATE: out-of-bounds write of a single zero byte in NewXMLTree when processing UTF-16 encoded XML - debian/patches/CVE-2026-32636.patch: allocate one extra byte in ConvertUTF16ToUTF8 to accommodate the NUL terminator written after the buffer - CVE-2026-32636 - ELSCVE-88723...

PT-2025-14539 · Crates.Io · Pyo3

PyString::from object took &str arguments and forwarded them directly to the Python C API without checking for terminating nul bytes. This could lead the Python interpreter to read beyond the end of the &str data and potentially leak contents of the out-of-bounds read by raising a Python exceptio...

UBUNTU-CVE-2024-38541

In the Linux kernel, the following vulnerability has been resolved: of: module: add buffer overflow check in ofmodalias In ofmodalias, if the buffer happens to be too small even for the 1st snprintf call, the len parameter will become negative and str parameter if not NULL initially will point...

UBUNTU-CVE-2024-38559

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Ensure the copied buf is NUL terminated Currently, we allocate a count-sized kernel buffer and copy count from userspace to that buffer. Later, we use kstrtouint on this buffer but we don't ensure that the string is...

SUSE CVE-2011-1080

The doreplace function in net/bridge/netfilter/ebtables.c in the Linux kernel before 2.6.39 does not ensure that a certain name field ends with a '\0' character, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAPNETADMIN capability ...

DEBIAN-CVE-2014-3508

The OBJobj2txt function in crypto/objects/objdat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of '\0' characters, which allows context-dependent attackers to obtain sensitive information from process...