Lucene search
K

29 matches found

OSV
OSV
added 2025/12/06 10:15 p.m.5 views

DEBIAN-CVE-2025-40281

In the Linux kernel, the following vulnerability has been resolved: sctp: prevent possible shift-out-of-bounds in sctptransportupdaterto syzbot reported a possible shift-out-of-bounds 1 Blamed commit added rtoalphamax and rtobetamax set to 1000. It is unclear if some sctp users are setting very...

5.3AI score0.00189EPSS
Exploits0References1
OSV
OSV
added 2025/12/06 10:15 p.m.6 views

UBUNTU-CVE-2025-40281

In the Linux kernel, the following vulnerability has been resolved: sctp: prevent possible shift-out-of-bounds in sctptransportupdaterto syzbot reported a possible shift-out-of-bounds 1 Blamed commit added rtoalphamax and rtobetamax set to 1000. It is unclear if some sctp users are setting very...

5.7AI score0.00189EPSS
Exploits0References36
OSV
OSV
added 2025/12/06 9:51 p.m.3 views

CVE-2025-40281 sctp: prevent possible shift-out-of-bounds in sctp_transport_update_rto

In the Linux kernel, the following vulnerability has been resolved: sctp: prevent possible shift-out-of-bounds in sctptransportupdaterto syzbot reported a possible shift-out-of-bounds 1 Blamed commit added rtoalphamax and rtobetamax set to 1000. It is unclear if some sctp users are setting very...

6.3AI score0.00189EPSS
Exploits0References12
OSV
OSV
added 2025/10/13 1:33 p.m.3 views

GHSA-7R7F-9XPJ-JMR7 Ash Framework: Filter authorization misapplies impossible bypass/runtime policies

Summary When using filter authorization, two edge cases could cause the policy compiler/authorizer to generate a permissive filter: 1. Bypass policies whose condition can never pass at runtime were compiled as ORANDcondition, compiledpolicies, NOTcondition. If the condition could never be true at...

8.6CVSS6.7AI score0.00464EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/09/18 12:0 a.m.7 views

Vyper Security Vulnerability

Vyper is the Pythonic smart contract language for EVM. A security vulnerability exists in Vyper versions 0.2.9 through 0.3.10, which stems from the fact that locks of type @nonreentrant or @nonreentrant are not reentrant-checked at runtime...

5.3CVSS6.8AI score0.00423EPSS
Exploits1References5
GoogleProjectZero
GoogleProjectZero
added 2019/05/10 12:0 a.m.11 views

Trashing the Flow of Data

Posted by Stephen Röttger In this blog post I want to present crbug.com/944062, a vulnerability in Chrome’s JavaScript compiler TurboFan that was discovered independently by Samuel saelo@ via fuzzing with fuzzilli, and by myself via manual code auditing. The bug was found in beta and was fixed...

7.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/12/02 12:0 a.m.17 views

Mozilla Firefox ESR < 45.5 Multiple Vulnerabilities

Binary data 9805.prm...

9.8CVSS7.3AI score0.12416EPSS
Exploits5References11
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.30 views

Microsoft Windows win32k!xxxRealDrawMenuItem() Missing HBITMAP Bounds Checks

No description provided by source. Microsoft Windows win32k!xxxRealDrawMenuItem missing HBITMAP bounds checks ---------------------------------------------------------------------------- Microsoft produce two builds of each of thier supported operating system, a checked build and a free build. Th...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/08/17 12:0 a.m.32 views

Microsoft Windows win32k!xxxRealDrawMenuItem() Missing HBITMAP Bounds Checks

Microsoft Windows win32k!xxxRealDrawMenuItem missing HBITMAP bounds checks ---------------------------------------------------------------------------- Microsoft produce two builds of each of thier supported operating system, a checked build and a free build. The free build is intended for end...

7.4AI score
Exploits0
Rows per page
Query Builder