Lucene search
K

8 matches found

Debian CVE
Debian CVE
added 2025/07/28 11:22 a.m.4 views

CVE-2025-38497

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing an empty string to either 'qwsign' or 'landingPage' sysfs attributes, the store functions attempt to access pagel - 1 before validating that the length 'l' is...

7.1CVSS5.8AI score0.00153EPSS
Exploits0
NVD
NVD
added 2024/12/12 2:3 a.m.9 views

CVE-2024-47596

GStreamer is a library for constructing graphs of media-handling components. An OOB-read has been discovered in the qtdemuxparsesvq3stsddata function within qtdemux.c. In the FOURCCSMI case, seqhsize is read from the input file without proper validation. If seqhsize is greater than the remaining...

7.5CVSS0.01134EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/12/11 7:1 p.m.20 views

CVE-2024-47546 GHSL-2024-243: GStreamer has an integer underflow in extract_cc_from_data leading to OOB-read

GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in extractccfromdata function within qtdemux.c. In the FOURCCc708 case, the subtraction atomlength - 8 may result in an underflow if atomlength is less than 8. When that subtraction...

6.9CVSS6.7AI score0.01072EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2024/12/11 7:1 p.m.14 views

CVE-2024-47546

GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in extractccfromdata function within qtdemux.c. In the FOURCCc708 case, the subtraction atomlength - 8 may result in an underflow if atomlength is less than 8. When that subtraction...

7.5CVSS6.6AI score0.01072EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/12/11 6:58 p.m.20 views

CVE-2024-47545 GHSL-2024-242: GStreamer has an integer underflow in FOURCC_strf parsing leading to OOB-read

GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in qtdemuxparsetrak function within qtdemux.c. During the strf parsing case, the subtraction size -= 40 can lead to a negative integer overflow if it is less than 40. If this happen...

6.9CVSS0.01072EPSS
Exploits0References3
CVE
CVE
added 2024/12/11 6:58 p.m.154 views

CVE-2024-47545

CVE-2024-47545 affects GStreamer components (notably qtdemux in qtdemux.c) where an integer underflow during the strf parsing case allows size to underflow, leading to an OOB-read via a large memcpy in gst_buffer_fill. The issue is documented across multiple advisories and is fixed in GStreamer 1...

7.5CVSS6.7AI score0.01072EPSS
Exploits0References4Affected Software1
Oracle linux
Oracle linux
added 2023/10/13 12:0 a.m.49 views

Unbreakable Enterprise kernel-container security update

5.4.17-2136.324.5.3.el7 - Revert 'jbd2: Fix wrongly judgement for buffer head removing while doing checkpoint' Sherry Yang Orabug: 35896102 5.4.17-2136.324.5.2.el7 - fix breakage in dormdir Al Viro Orabug: 35885837 5.4.17-2136.324.5.1.el7 - x86: KVM: SVM: always update the x2avic msr interception...

1.7CVSS7.5AI score0.12405EPSS
Exploits2
OSV
OSV
added 2020/11/19 4:20 p.m.10 views

SUSE-SU-2020:3441-1 Security update for the Linux Kernel (Live Patch 17 for SLE 15)

This update for the Linux Kernel 4.12.14-15047 fixes several issues. The following security issues were fixed: - CVE-2020-0430: Fixed an OOB read in skbheadlen of /include/linux/skbuff.h bsc1176723, bsc1178003. - CVE-2020-12351: Fixed a type confusion while processing AMP packets aka...

8.8CVSS8.2AI score0.07693EPSS
Exploits6References7
Rows per page
Query Builder