Lucene search
K

318 matches found

OSV
OSV
added 2025/09/15 2:15 p.m.6 views

UBUNTU-CVE-2023-53184

In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Set new vector length before reallocating As part of fixing the allocation of the buffer for SVE state when changing SME vector length we introduced an immediate reallocation of the SVE state, this is also done when...

7.8CVSS5.8AI score0.00151EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/15 2:4 p.m.16 views

CVE-2023-53184 arm64/sme: Set new vector length before reallocating

In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Set new vector length before reallocating As part of fixing the allocation of the buffer for SVE state when changing SME vector length we introduced an immediate reallocation of the SVE state, this is also done when...

0.00151EPSS
Exploits0References3
OSV
OSV
added 2025/09/15 2:4 p.m.4 views

CVE-2023-53184 arm64/sme: Set new vector length before reallocating

In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Set new vector length before reallocating As part of fixing the allocation of the buffer for SVE state when changing SME vector length we introduced an immediate reallocation of the SVE state, this is also done when...

7.8CVSS6.4AI score0.00151EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2025/09/13 1:3 a.m.2 views

drm/msm: Add error handling for krealloc in metadata setup

...

5.5CVSS7AI score0.00145EPSS
Exploits0
OSV
OSV
added 2025/09/10 1:15 p.m.4 views

CVE-2025-10225

Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-119 in the OpenSSL-based session module in AxxonSoft Axxon One C-Werk 2.0.6 and earlier on Windows allows a remote attacker under high load conditions to cause application crashes or unpredictable behavior via triggering...

8.7CVSS5.8AI score0.00372EPSS
Exploits0References1
CVE
CVE
added 2025/09/10 12:37 p.m.17 views

CVE-2025-10225

CVE-2025-10225 affects AxxonSoft Axxon One (C-Werk) 2.0.6 and earlier on Windows, in the OpenSSL-based session module. The issue is an improper restriction of operations within a memory buffer (CWE-119) that can trigger memory reallocation errors when handling expired session keys under high load...

8.7CVSS6.5AI score0.00372EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/10 12:37 p.m.5 views

CVE-2025-10225 Incorrect Memory Allocation in OpenSSL-Based Session Module in AxxonSoft Axxon One (C-Werk)

Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-119 in the OpenSSL-based session module in AxxonSoft Axxon One C-Werk 2.0.6 and earlier on Windows allows a remote attacker under high load conditions to cause application crashes or unpredictable behavior via triggering...

8.7CVSS6.5AI score0.00372EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-21836

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iouring/kbuf: reallocate buf lists on upgrade IORINGREGISTERPBUFRING can reuse an old struct iobufferlist if it was created for legacy selected buffer and has...

5.5CVSS6.8AI score0.0022EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-49878

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf, verifier: Fix memory leak in array reallocation for stack state If an error NULL is...

5.5CVSS6.2AI score0.00164EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability in gst-plugins-good1.0

GStreamer is a library for constructing graphs of media-handling components. The program attempts to reallocate the memory pointed to by stream-samples to accommodate stream-nsamples + samplescount elements of type QtDemuxSample. The problem is that samplescount is read from the input file. If th...

9.8CVSS7.2AI score0.00956EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/05/26 12:0 a.m.6 views

MixBridge: Heterogeneous Image-To-Image Backdoor Attack through Mixture of Schrödinger Bridges

This paper focuses on implanting multiple heterogeneous backdoor triggers in bridge-based diffusion models designed for complex and arbitrary input distributions. Existing backdoor formulations mainly address single-attack scenarios and are limited to Gaussian noise input models. To fill this gap...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 8:8 a.m.7 views

CVE-2019-13959

In Bento4 1.5.1-627, AP4DataBuffer::SetDataSize does not handle reallocation failures, leading to a memory copy into a NULL pointer. This is different from CVE-2018-20186...

6.5CVSS6.7AI score0.01199EPSS
Exploits2References1
SUSE CVE
SUSE CVE
added 2025/05/09 4:54 a.m.4 views

SUSE CVE-2022-49878

In the Linux kernel, the following vulnerability has been resolved: bpf, verifier: Fix memory leak in array reallocation for stack state If an error NULL is returned by krealloc, callers of reallocarray were setting their allocation pointers to NULL, but on error krealloc does not touch the...

5.5CVSS6.4AI score0.00164EPSS
Exploits0References3
OSV
OSV
added 2025/05/01 3:16 p.m.11 views

UBUNTU-CVE-2022-49878

In the Linux kernel, the following vulnerability has been resolved: bpf, verifier: Fix memory leak in array reallocation for stack state If an error NULL is returned by krealloc, callers of reallocarray were setting their allocation pointers to NULL, but on error krealloc does not touch the...

5.5CVSS6.3AI score0.00164EPSS
Exploits0References6
CVE
CVE
added 2025/05/01 2:10 p.m.91 views

CVE-2022-49878

Summary: CVE-2022-49878 is a Linux kernel vulnerability in the bpf verifier’s array reallocation. When realloc_array() errors (krealloc() returns NULL), callers previously set their pointers to NULL, but krealloc() leaves the original allocation untouched, causing a memory leak. The description i...

5.5CVSS6.2AI score0.00164EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2025/05/01 2:10 p.m.7 views

CVE-2022-49878

In the Linux kernel, the following vulnerability has been resolved: bpf, verifier: Fix memory leak in array reallocation for stack state If an error NULL is returned by krealloc, callers of reallocarray were setting their allocation pointers to NULL, but on error krealloc does not touch the...

5.5CVSS5.5AI score0.00164EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/05/01 2:10 p.m.1 views

CVE-2022-49878 bpf, verifier: Fix memory leak in array reallocation for stack state

In the Linux kernel, the following vulnerability has been resolved: bpf, verifier: Fix memory leak in array reallocation for stack state If an error NULL is returned by krealloc, callers of reallocarray were setting their allocation pointers to NULL, but on error krealloc does not touch the...

5.9AI score0.00164EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.5 views

The vulnerability of the ufshcd_set_dma_mask() function in the drivers/ufs/core/ufshcd.c module affects UFS-host controllers in Linux operating systems. This vulnerability allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ufshcdsetdmamask function in the drivers/ufs/core/ufshcd.c module affects UFS-host controllers. In Linux operating systems, this vulnerability is related to the reallocation of previously freed memory. Exploiting this vulnerability can allow an attacker to compromise the...

7.8CVSS6.8AI score0.00211EPSS
Exploits0References10Affected Software4
CNNVD
CNNVD
added 2025/04/07 12:0 a.m.7 views

Qualcomm Chipsets 信息泄露漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An information disclosure vulnerability exists in Qualcomm Chipsets, which stems from a possible information disclosure during memory reallocation...

5.5CVSS6.2AI score0.00105EPSS
Exploits0References2
CNVD
CNVD
added 2025/04/03 12:0 a.m.3 views

HDF5 Double Release Vulnerability

HDF5 is a library of HDF open source . HDF5 has a double release vulnerability, which originates from the double release of the parameter mem of the function H5MMrealloc in the file src/H5MM.c. There are no detailed vulnerability details provided...

5.5CVSS7AI score0.00242EPSS
Exploits1References1
Rows per page
Query Builder