Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Add a overflow check in sgxvalidateoffsetlength The sgxvalidateoffsetlength function verifies the "offset" and "length" arguments provided by the user space. However, there was a lack of an overflow check when these...

SUSE CVE-2026-43171

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't dump the entire memory region The current logic at cperprintfwerr doesn't check if the error record length is big enough to handle offset. On a bad firmware, if the ofset is above the actual record, length -= offs...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftpayload: sanitize offset and length before calling skbchecksum If the access to the offset + length is greater than the skbuff length, then skbchecksum triggers a BUGON. skbchecksum internally subtracts the length...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

In the Linux kernel, the following vulnerability has been resolved: be2net: Buffer overflow issue in begetmoduleeeprom has been fixed. becmdreadporttransceiverdata assumes that it is given a buffer that is at least PAGEDATALEN long, or twice that length if the module supports SFF 8472. However,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005522)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005522 advisory. In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in sanity checking A broken device may give an extreme offset like 0xFFF0...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989456)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989456 advisory. In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in sanity checking A broken device may give an extreme offset like 0xFFF0...

EUVD-2019-5264

Malware in sbrugna...

EUVD-2020-3580

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986965)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986965 advisory. In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in sanity checking A broken device may give an extreme offset like 0xFFF0...

ROS-20251006-16

A vulnerability in a library that provides basic functionality for data serialization and deserialization Jackson Core, is related to the fact that when parsing JSON from an array of bytes with offset and length, an exception message is erroneously read from the beginning of the array. exception...

ROS-20251006-14

A vulnerability in a library that provides basic functionality for data serialization and deserialization Jackson Core, is related to the fact that when parsing JSON from an array of bytes with offset and length, an exception message is erroneously read from the beginning of the array. exception...

AZL-75336 CVE-2025-39942 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: verify remainingdatalength respects maxfragmentedrecvsize This is inspired by the check for dataoffset + datalength...

EUVD-2024-30788

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-49785

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Add overflow check in sgxvalidateoffsetlength sgxvalidateoffsetlength function...

CVE-2023-23082

A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows attackers to cause a denial of service due to an improper length of the value passed to the offset argument...

CVE-2021-1961

Possible buffer overflow due to lack of offset length check while updating the buffer value in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

CVE-2020-11226

Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

CVE-2019-14006

Buffer overflow occur while playing the clip which is nonstandard due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearabl...

SUSE CVE-2022-49785

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Add overflow check in sgxvalidateoffsetlength sgxvalidateoffsetlength function verifies "offset" and "length" arguments provided by userspace, but was missing an overflow check on their addition. Add it...

DEBIAN-CVE-2022-49785

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Add overflow check in sgxvalidateoffsetlength sgxvalidateoffsetlength function verifies "offset" and "length" arguments provided by userspace, but was missing an overflow check on their addition. Add it...