Lucene search
K

7 matches found

OSV
OSV
added 2025/03/27 4:43 p.m.7 views

CVE-2023-52988 ALSA: hda/via: Avoid potential array out-of-bound in add_secret_dac_path()

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/via: Avoid potential array out-of-bound in addsecretdacpath sndhdagetconnections can return a negative error code. It may lead to accessing 'conn' array at a negative index. Found by Linux Verification Center...

7.8CVSS5.7AI score0.00261EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-58015

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: ath12k: Fix for out-of bound access error Selfgen stats are placed in a buffer using printarraytobufindex function. Array length parameter passed to the...

7.1CVSS7AI score0.00169EPSS
Exploits0References4
NVD
NVD
added 2024/10/21 8:15 p.m.17 views

CVE-2022-48979

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix array index out of bound error in DCN32 DML Why&How LinkCapacitySupport array is indexed with the number of voltage states and not the number of max DPPs. Fix the error by changing the array declaration to us...

5.5CVSS0.00206EPSS
Exploits0References2
Slackware Linux
Slackware Linux
added 2024/04/25 6:3 p.m.37 views

[slackware-security] libarchive

New libarchive packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.7.3-i586-2slack15.0.txz: Rebuilt. Patched an out-of-bound error in the rar e8 filter that could allow for the...

7.8CVSS7.6AI score0.87784EPSS
Exploits0
Veracode
Veracode
added 2022/11/22 8:14 a.m.22 views

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service DoS attacks. When a MirrorPadGrad is given outsize input paddings, the library gives a heap out of bound error, which allows an attacker to cause tensorflow to crash...

7.5CVSS7.2AI score0.0044EPSS
Exploits1References9Affected Software3
Veracode
Veracode
added 2022/04/07 12:6 p.m.109 views

Denial Of Service (DoS)

Spring Expression is vulnerable to denial of service. The vulnerability exists due to the creation of large array in a SpEL and sending meaningless error messages to the user which allows an attacker to send crafted SpEL expressions that leads to an out ouf bound error causing an application cras...

6.5CVSS3.1AI score0.35834EPSS
Exploits0References6Affected Software3
Veracode
Veracode
added 2018/05/28 7:6 a.m.13 views

Remote Code Execution (RCE) Through Buffer Overread

libfontforge.so is vulnerable to remote code execution RCE attacks. A malicious user can pass a ttf file that when parsed causes an out-of-bound error that can crash the application or cause arbitrary code to be executed...

7.8CVSS7.9AI score0.01406EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder