9 matches found
CVE-2026-27856
Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack. An attacker can use this to determine the configured credentials. Figuring out the credential will lead into full access to the affected component. Limit access to the doveadm http service port,...
CVE-2026-27856
CVE-2026-27856 concerns the doveadm credential verification path, where direct comparison enables a timing oracle to determine configured credentials. The issue affects the doveadm HTTP service component used by Open-Xchange-related deployments, enabling an attacker to infer credentials through t...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: ASoC: qcom: Fixed potential buffer overflows in sc7280 lpass. Values introduced in commit 5f78e1fb7a3e “ASoC: qcom: Added driver support for audioreach solution” caused out-of-bounds access to array data in the sc7280 driver...
SUSE CVE-2025-37979
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix sc7280 lpass potential buffer overflow Case values introduced in commit 5f78e1fb7a3e "ASoC: qcom: Add driver support for audioreach solution" cause out of bounds access in arrays of sc7280 driver data e.g. in case...
DEBIAN-CVE-2025-37979
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix sc7280 lpass potential buffer overflow Case values introduced in commit 5f78e1fb7a3e "ASoC: qcom: Add driver support for audioreach solution" cause out of bounds access in arrays of sc7280 driver data e.g. in case...
SUSE CVE-2021-47548
In the Linux kernel, the following vulnerability has been resolved: ethernet: hisilicon: hns: hnsdsafmisc: fix a possible array overflow in hnsdsafgesrstbyport The if statement: if port = DSAFGENUM return; limits the value of port less than DSAFGENUM i.e., 8. However, if the value of port is 6 or...
CVE-2017-7376
Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects...
HP Diagnostics magentservice.exe Malformed Packet Parsing Vulnerability
Added: 10/12/2012 BID: 55159 OSVDB: 84855 Background HP Diagnostics software monitors application transaction health in traditional, virtualized and cloud environments. Problem HP Diagnostics Server has a buffer overflow vulnerability in the magentservice.exe process that could allow...
Panda AdminSecure Communications Agent Detection
The remote service is a Communications Agent, which manages communications between Panda AdminSecure and client computers for centralized management of Panda antivirus software. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if...