53 matches found
libyang: lyb_read_string() integer overflow → heap buffer overflow
...
SUSE CVE-2026-44673
libyang is a YANG data modeling language library. Prior to SO 5.2.15, lybreadstring in src/parserlyb.c contains an integer overflow that results in a heap buffer overflow when parsing a maliciously crafted LYB binary blob. An attacker who can supply LYB data to any libyang consumer NETCONF server...
CVE-2026-44673
libyang is a YANG data modeling language library. Prior to SO 5.2.15, lybreadstring in src/parserlyb.c contains an integer overflow that results in a heap buffer overflow when parsing a maliciously crafted LYB binary blob. An attacker who can supply LYB data to any libyang consumer NETCONF server...
CVE-2026-44673
libyang is a YANG data modeling language library. Prior to SO 5.2.15, lybreadstring in src/parserlyb.c contains an integer overflow that results in a heap buffer overflow when parsing a maliciously crafted LYB binary blob. An attacker who can supply LYB data to any libyang consumer NETCONF server...
CVE-2026-44673
libyang is a YANG data modeling language library. Prior to SO 5.2.15, lybreadstring in src/parserlyb.c contains an integer overflow that results in a heap buffer overflow when parsing a maliciously crafted LYB binary blob. An attacker who can supply LYB data to any libyang consumer NETCONF server...
CVE-2026-44673
CVE-2026-44673 affects libyang. The issue is an integer overflow in lyb_read_string() in src/parser_lyb.c, leading to a heap buffer overflow when parsing malicious LYB binary blobs. Affected path includes any libyang consumer that processes LYB data (e.g., NETCONF servers, sysrepo). Impact is cra...
EUVD-2026-30484
libyang is a YANG data modeling language library. Prior to SO 5.2.15, lybreadstring in src/parserlyb.c contains an integer overflow that results in a heap buffer overflow when parsing a maliciously crafted LYB binary blob. An attacker who can supply LYB data to any libyang consumer NETCONF server...
libyang 输入验证错误漏洞
LibYang is an open-source YANG data modeling language parser and toolkit developed in C language by CESNET. Versions of LibYang prior to 5.2.15 contained a vulnerability related to input validation errors. This vulnerability stemmed from an integer overflow in the lybreadstring function, which...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: brcmfmac: Check the return value of ofpropertyreadstringindex. Between version 6.10 and 6.11, the driver began to crash on my MacBookPro14,3. The ofpropertyreadstringindex function does not exist, and the tmp variable...
CVE-2026-33666 Zserio: Integer Overflow in BitStreamReader on 32-bit platforms
Zserio is a framework for serializing structured data with a compact and efficient way with low overhead. Prior to 2.18.1, in BitStreamReader.h readBytes / readString, the setBitPosition bounds check receives the overflowed value and is completely bypassed. The code then reads len bytes 512 MB fr...
PT-2026-35056
Name of the Vulnerable Software and Affected Versions Zserio versions prior to 2.18.1 Description An issue exists in the readBytes and readString functions within BitStreamReader.h where the setBitPosition bounds check receives an overflowed value and is bypassed. This allows the system to attemp...
ROS-20260304-73-0019
A vulnerability in the readstring function of the hwmon component of the Linux operating system kernel is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
PYSEC-2026-102
An issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the fs/ggml/gguf.go, function readGGUFV1String reads a string length from untrusted GGUF metadata...
kernel: wifi: brcmfmac: Check the return value of of_property_read_string_index()
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Check the return value of ofpropertyreadstringindex Somewhen between 6.10 and 6.11 the driver started to crash on my MacBookPro14,3. The property doesn't exist and 'tmp' remains uninitialized, so we pass a random...
wifi: brcmfmac: Check the return value of of_property_read_string_index()
...
EUVD-2024-0125
Malicious code in bioql PyPI...
EUVD-2025-27741
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-29365
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spimsimulator spim v9.1.24 and before is vulnerable to Buffer Overflow in READSTRINGSYSCALL. CVE-2025-29365 Note that Nessus relies on the presence of the packa...
CVE-2025-29365
A simulator escape vulnerability has been identified in Spim Simulator, which occurs in the READSTRINGSYSCALL system call of the SPIM simulator virtual machine. When an attempt is made to set the starting write address at the boundary of the virtual machine's memory, and the write length exceeds...
CVE-2025-29365
spimsimulator spim v9.1.24 and before is vulnerable to Buffer Overflow in READSTRINGSYSCALL...