19 matches found
EUVD-2024-39642
Malicious code in bioql PyPI...
CVE-2021-47633
In the Linux kernel, the following vulnerability has been resolved: ath5k: fix OOB in ath5keepromreadpcalinfo5111 The bug was found during fuzzing. Stacktrace locates it in ath5keepromconvertpcalinfo5111. When none of the curve is selected in the loop, idx can go up to AR5KEEPROMNPDCURVES. The li...
CVE-2024-46764
In the Linux kernel, the following vulnerability has been resolved: bpf: add check for invalid name in btfnamevalidsection If the length of the name string is 1 and the value of name0 is NULL byte, an OOB vulnerability occurs in btfnamevalidsection and the return value is true, so the invalid nam...
CVE-2024-46764 bpf: add check for invalid name in btf_name_valid_section()
In the Linux kernel, the following vulnerability has been resolved: bpf: add check for invalid name in btfnamevalidsection If the length of the name string is 1 and the value of name0 is NULL byte, an OOB vulnerability occurs in btfnamevalidsection and the return value is true, so the invalid nam...
CVE-2024-46764 bpf: add check for invalid name in btf_name_valid_section()
In the Linux kernel, the following vulnerability has been resolved: bpf: add check for invalid name in btfnamevalidsection If the length of the name string is 1 and the value of name0 is NULL byte, an OOB vulnerability occurs in btfnamevalidsection and the return value is true, so the invalid nam...
CVE-2024-46764
CVE-2024-46764 affects Linux kernel’s BPF/BTF handling: btf_name_valid_section() can pass an invalid 1-byte name if name[0] is a NULL byte, enabling an out-of-bounds condition. The fix adds a check for a NULL first byte and that the first character is printable. The initial entry indicates the vu...
CVE-2024-46764 bpf: add check for invalid name in btf_name_valid_section()
In the Linux kernel, the following vulnerability has been resolved: bpf: add check for invalid name in btfnamevalidsection If the length of the name string is 1 and the value of name0 is NULL byte, an OOB vulnerability occurs in btfnamevalidsection and the return value is true, so the invalid nam...
CVE-2024-42484
ESP-NOW Component provides a connectionless Wi-Fi communication protocol. An Out-of-Bound OOB vulnerability was discovered in the implementation of the ESP-NOW group type message because there is no check for the addrsnum field of the group type message. This can result in memory corruption relat...
CVE-2024-42484 ESP-NOW OOB Vulnerability In Group Type Message
ESP-NOW Component provides a connectionless Wi-Fi communication protocol. An Out-of-Bound OOB vulnerability was discovered in the implementation of the ESP-NOW group type message because there is no check for the addrsnum field of the group type message. This can result in memory corruption relat...
CVE-2024-42484
CVE-2024-42484 affects the ESP-NOW component, where the group-type message handling fails to validate the addrs_num field. This omission allows a crafted group message to be larger than the allocated buffer, causing memory corruption. The vulnerability is rooted in the mismatch between addrs_num ...
CVE-2024-42484 ESP-NOW OOB Vulnerability In Group Type Message
ESP-NOW Component provides a connectionless Wi-Fi communication protocol. An Out-of-Bound OOB vulnerability was discovered in the implementation of the ESP-NOW group type message because there is no check for the addrsnum field of the group type message. This can result in memory corruption relat...
CVE-2024-42484 ESP-NOW OOB Vulnerability In Group Type Message
ESP-NOW Component provides a connectionless Wi-Fi communication protocol. An Out-of-Bound OOB vulnerability was discovered in the implementation of the ESP-NOW group type message because there is no check for the addrsnum field of the group type message. This can result in memory corruption relat...
CVE-2024-26981 nilfs2: fix OOB in nilfs_set_de_type
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix OOB in nilfssetdetype The size of the nilfstypebymode array in the fs/nilfs2/dir.c file is defined as "SIFMT SSHIFT", but the nilfssetdetype function, which uses this array, specifies the index to read from the array ...
CVE-2024-26981
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix OOB in nilfssetdetype The size of the nilfstypebymode array in the fs/nilfs2/dir.c file is defined as "SIFMT SSHIFT", but the nilfssetdetype function, which uses this array, specifies the index to read from the array ...
CVE-2020-36776
In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/cpufreqcooling: Fix slab OOB issue Slab OOB issue is scanned by KASAN in cpupowertofreq. If power is limited below the power of OPP0 in EM table, it will cause slab out-of-bound issue with negative array index...
Out-of-bounds
A vulnerability has been found in Yunyou CMS up to 2.2.6 and classified as critical. This vulnerability affects unknown code of the file /app/index/controller/Common.php. The manipulation of the argument templateFile leads to unrestricted upload. The attack can be initiated remotely. The exploit...
Design/Logic Flaw
An Out Of Bounds OOB access vulnerability in the handling of responses by a Juniper Agile License JAL Client in Juniper Networks Junos OS and Junos OS Evolved, configured in Network Mode to use Juniper Agile License Manager may allow an attacker to cause a partial Denial of Service DoS, or lead t...
Linux netfilter OOB root mention the right vulnerability analysis-vulnerability warning-the black bar safety net
Famous ExploitDatabase website www.exploit-db.com recently posted a netfilter module. the right to the POC, the author is Vitaly Nikolenko on. OOB it! Netfilter is! Meal a sense of curiosity, decision analysis, analysis of process and outcomes to share as follows. 0×0 extraordinaire mention the...
Linux Kernel 4.4.0-21 (Ubuntu 16.04 x64) - Netfilter 'target_offset' Out-of-Bounds Privilege Escalation
/ Exploit-DB Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/40053.zip / --------------------------------------------------- decr.c --------------------------------------------------- / Ubuntu 16.04 local root exploit - netfilter targetoffset OOB...