229 matches found
CVE-2026-6681 PKCS#7 decode ignores caller output buffer size, writing past buffer bounds
The PKCS7 decode path ignores the caller-supplied output buffer size outputSz, allowing decoded content to be written past the bounds of the provided buffer. This affects wolfSSL 5.9.0 and earlier and was fixed in the 5.9.1 release...
CVE-2026-6681
CVE-2026-6681 describes a buffer overflow in wolfSSL up to 5.9.0 caused by the PKCS#7 decode path ignoring the caller-supplied output buffer size (outputSz). Decoded data can be written past the provided buffer, potentially affecting confidentiality and integrity. The issue is fixed in wolfSSL 5....
Astra Linux – Vulnerability in Redis
Redis is an open-source, in-memory database that persists data on disk. In versions starting from 2.6 and prior to 7.4.3, an unauthenticated client can cause the output buffer to grow indefinitely, until the server runs out of memory or is terminated. By default, Redis’s configuration does not...
CVE-2025-59613
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59614
Memory Corruption when sending random number generator command with insufficient output buffer size...
EUVD-2025-210026
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59613
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59614
Memory Corruption when sending random number generator command with insufficient output buffer size...
CVE-2025-59614
Technical details for CVE-2025-59614 are not publicly available in the provided documents. Monitor for updates from NVD and Qualcomm security bulletins.
CVE-2025-59613 Stack-based Buffer Overflow in Windows Compute
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59613
CVE-2025-59613 describes a memory corruption condition that occurs when an output buffer is smaller than the input buffer during a data copy. The CVSSv3.1 base score is 6.7 (Medium), with LOCAL attack vector, LOW attack complexity, and HIGH privileges required. It also indicates HIGH impact on co...
CVE-2025-59613 Stack-based Buffer Overflow in Windows Compute
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
CVE-2025-59613
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
PT-2026-45636
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...
PT-2026-45637
Memory Corruption when sending random number generator command with insufficient output buffer size...
SUSE CVE-2026-46155
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...
Linux Distros Unpatched Vulnerability : CVE-2026-46236
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: rc: xboxremote: heed DMA restrictions The buffer for IO must not be part of the device structure because that violates the DMA coherency rules...
UBUNTU-CVE-2026-46236
In the Linux kernel, the following vulnerability has been resolved: media: rc: xboxremote: heed DMA restrictions The buffer for IO must not be part of the device structure because that violates the DMA coherency rules...
UBUNTU-CVE-2026-46155
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...
CVE-2026-46155 smb/client: fix out-of-bounds read in smb2_compound_op()
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...