3088 matches found
EUVD-2004-1918
Malware in sbrugna...
EUVD-2020-3503
Malware in sbrugna...
EUVD-2020-19533
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986950)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986950 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: prevent integer overflow in rndissetresponse If BufOffset is very large the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987014)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987014 advisory. In the Linux kernel, the following vulnerability has been resolved: mm/slub: actually fix freelist pointer vs redzoning It turns out that SLUB redzoning slubdebug=Z...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986960)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986960 advisory. In the Linux kernel, the following vulnerability has been resolved: sfc: fix TX channel offset when using legacy interrupts In legacy interrupt mode the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986965)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986965 advisory. In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in sanity checking A broken device may give an extreme offset like 0xFFF0...
Breaking Precision Time: OS Vulnerability Exploits against IEEE 1588
The Precision Time Protocol PTP, standardized as IEEE 1588, provides sub-microsecond synchronization across distributed systems and underpins critical infrastructure in telecommunications, finance, power systems, and industrial automation. While prior work has extensively analyzed PTP's...
PT-2025-41152
Name of the Vulnerable Software and Affected Versions Python versions prior to 2.3 Description The 'zipfile' module does not validate the ZIP64 End of Central Directory EOCD Locator record offset value, leading to potential discrepancies in how ZIP archives are handled compared to other ZIP...
SUSE CVE-2025-59729
When parsing the header for a DHAV file, there's an integer underflow in offset calculation that leads to reading the duration from before the start of the allocated buffer. If we load a DHAV file that is larger than MAXDURATIONBUFFERSIZE bytes 0x100000 for example 0x101000 bytes, then at 0 we ha...
Out-of-bounds Write
Overview Affected versions of this package are vulnerable to Out-of-bounds Write in the parsing process of DHAV file headers due to an integer underflow in offset calculation, which allows reading memory before the start of the allocated buffer. An attacker can cause out-of-bounds memory reads by...
CVE-2025-59729 Heap-buffer-overflow read in FFmpeg DHAV get_duration
When parsing the header for a DHAV file, there's an integer underflow in offset calculation that leads to reading the duration from before the start of the allocated buffer. If we load a DHAV file that is larger than MAXDURATIONBUFFERSIZE bytes 0x100000 for example 0x101000 bytes, then at 0 we ha...
CVE-2025-59729
CVE-2025-59729 affects FFmpeg’s DHAV handling. The provided technical description shows an integer underflow in the offset calculation when parsing a DHAV header, causing a 32-bit offset read to reference data outside the allocated buffer. In large DHAV files (e.g., > 0x100000 bytes), the end_...
CVE-2025-59729
When parsing the header for a DHAV file, there's an integer underflow in offset calculation that leads to reading the duration from before the start of the allocated buffer. If we load a DHAV file that is larger than MAXDURATIONBUFFERSIZE bytes 0x100000 for example 0x101000 bytes, then at 0 we ha...
ROS-20251006-15
A vulnerability in a library that provides basic functionality for data serialization and deserialization Jackson Core, is related to the fact that when parsing JSON from an array of bytes with offset and length, an exception message is erroneously read from the beginning of the array. exception...
ROS-20251006-16
A vulnerability in a library that provides basic functionality for data serialization and deserialization Jackson Core, is related to the fact that when parsing JSON from an array of bytes with offset and length, an exception message is erroneously read from the beginning of the array. exception...
ROS-20251006-14
A vulnerability in a library that provides basic functionality for data serialization and deserialization Jackson Core, is related to the fact that when parsing JSON from an array of bytes with offset and length, an exception message is erroneously read from the beginning of the array. exception...
SUSE CVE-2025-39933
In the Linux kernel, the following vulnerability has been resolved: smb: client: let recvdone verify dataoffset, datalength and remainingdatalength This is inspired by the related server fixes...
SUSE CVE-2025-39943
In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: validate dataoffset and datalength field of smbdirectdatatransfer If dataoffset and datalength of smbdirectdatatransfer struct are invalid, out of bounds issue could happen. This patch validate dataoffset and...
smb: client: let recv_done verify data_offset, data_length and remaining_data_length
...