Lucene search
K

12 matches found

OSV
OSV
added 2026/02/16 11:21 a.m.17 views

CLSA-2026-1771240859 kernel: Fix of 13 CVEs

vsock: Do not allow binding to VMADDRPORTANY CVE-2025-38618 - cnic: Fix use-after-free bugs in cnicdeletetask CVE-2025-39945 - scsi: bfa: Double-free fix CVE-2025-38699 - pptp: ensure minimal skb length in pptpxmit CVE-2025-38574 - ipv6: reject malicious packets in ipv6gsosegment CVE-2025-38572 -...

7.8CVSS7AI score0.00295EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-26789

Malicious code in bioql PyPI...

6.3AI score0.00164EPSS
Exploits0References9
Microsoft CVE
Microsoft CVE
added 2025/09/06 8:2 a.m.6 views

media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format()

...

7.1CVSS6.8AI score0.00164EPSS
Exploits0
OSV
OSV
added 2025/09/04 4:15 p.m.2 views

DEBIAN-CVE-2025-38680

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix 1-byte out-of-bounds read in uvcparseformat The buffer length check before calling uvcparseformat only ensured that the buffer has at least 3 bytes buflen 2, buf the function accesses buffer3, requiring at...

7.1CVSS6.3AI score0.00164EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2020-36403

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTSlib through 1.10.2 allows out-of-bounds write access in vcfparseformat called from vcfparse and vcfread. CVE-2020-36403 Note that Nessus relies on the presen...

8.8CVSS7.8AI score0.0158EPSS
Exploits1References2
OSV
OSV
added 2025/02/14 9:37 a.m.4 views

CLSA-2025-1739525872 Fix CVE(s): CVE-2024-53104

CVE-url: https://ubuntu.com/security/CVE-2024-53104 - media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat...

7.8CVSS7AI score0.03301EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/02/05 12:0 a.m.5 views

The vulnerability of the uvc_parse_format() function in the drivers/media/usb/uvc/uvc_driver.c file of the Linux operating system’s UVC driver kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the uvcparseformat function in the drivers/media/usb/uvc/uvcdriver.c file, a part of the Linux kernel’s USB Video Class UVC driver, relates to memory access beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

7.8CVSS7.1AI score0.03301EPSS
Exploits1References32Affected Software6
OSV
OSV
added 2024/12/02 8:15 a.m.6 views

DEBIAN-CVE-2024-53104

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat This can lead to out of bounds writes since frames of this type were not taken into account when calculating the size of the frames buffer in...

7.8CVSS6.5AI score0.03301EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/03/23 12:0 a.m.5 views

PT-2024-40673 · Git +1 · Htslib

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash caused by a negative-size-param, as reported by OSS-Fuzz. The crash occurs in the following functions: vcf parse format,...

6.9AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:50 a.m.3 views

SUSE CVE-2020-36403

HTSlib through 1.10.2 allows out-of-bounds write access in vcfparseformat called from vcfparse and vcfread...

8.8CVSS8.8AI score0.0158EPSS
Exploits1References4
OSV
OSV
added 2022/09/23 11:4 a.m.6 views

OESA-2022-1963 htslib security update

HTSlib is an implementation of a unified C library for accessing common file formats, such as SAM, CRAM and VCF, used for high-throughput sequencing data, and is the core library used by samtools and bcftools. HTSlib only depends on zlib. It is known to be compatible with gcc, g++ and clang. HTSl...

8.8CVSS7.1AI score0.0158EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2021/06/30 12:0 a.m.4 views

PT-2021-6593 · Htslib +1 · Htslib +1

Name of the Vulnerable Software and Affected Versions: HTSlib versions prior to 1.10.2 Description: The issue is related to the vcf parse format function in the HTSlib library, which does not properly check for excessive record size, allowing only individual fields to be checked. This can be...

9.3CVSS8.4AI score0.0158EPSS
Exploits1References17
Rows per page
Query Builder