231 matches found
CVE-2026-58471 GNU Wget 1.25.0 Heap Buffer Overflow via convert_fname() in url.c
GNU Wget through 1.25.0, fixed in commit c2640fe, contains a heap buffer overflow vulnerability in the convertfname function within src/url.c that allows remote attackers to trigger memory corruption through a server-supplied filename requiring character set conversion. When the output buffer is...
CVE-2026-6681 PKCS#7 decode ignores caller output buffer size, writing past buffer bounds
The PKCS7 decode path ignores the caller-supplied output buffer size outputSz, allowing decoded content to be written past the bounds of the provided buffer. This affects wolfSSL 5.9.0 and earlier and was fixed in the 5.9.1 release...
CVE-2026-6681
CVE-2026-6681 describes a buffer overflow in wolfSSL up to 5.9.0 caused by the PKCS#7 decode path ignoring the caller-supplied output buffer size (outputSz). Decoded data can be written past the provided buffer, potentially affecting confidentiality and integrity. The issue is fixed in wolfSSL 5....
CVE-2025-59613
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59614
Memory Corruption when sending random number generator command with insufficient output buffer size...
EUVD-2025-210026
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59614
Memory Corruption when sending random number generator command with insufficient output buffer size...
CVE-2025-59613
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59614
Technical details for CVE-2025-59614 are not publicly available in the provided documents. Monitor for updates from NVD and Qualcomm security bulletins.
CVE-2025-59613 Stack-based Buffer Overflow in Windows Compute
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59613
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59613
CVE-2025-59613 describes a memory corruption condition that occurs when an output buffer is smaller than the input buffer during a data copy. The CVSSv3.1 base score is 6.7 (Medium), with LOCAL attack vector, LOW attack complexity, and HIGH privileges required. It also indicates HIGH impact on co...
CVE-2025-59613 Stack-based Buffer Overflow in Windows Compute
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
PT-2026-45637
Memory Corruption when sending random number generator command with insufficient output buffer size...
PT-2026-45636
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
SUSE CVE-2026-46155
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...
Linux Distros Unpatched Vulnerability : CVE-2026-46236
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: rc: xboxremote: heed DMA restrictions The buffer for IO must not be part of the device structure because that violates the DMA coherency rules...
UBUNTU-CVE-2026-46155
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...
UBUNTU-CVE-2026-46236
In the Linux kernel, the following vulnerability has been resolved: media: rc: xboxremote: heed DMA restrictions The buffer for IO must not be part of the device structure because that violates the DMA coherency rules...
CVE-2026-46155 smb/client: fix out-of-bounds read in smb2_compound_op()
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...