Lucene search
+L

82 matches found

CNNVD
CNNVD
added 2025/02/26 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stmmac has a left shift overflow when the number of queues is greater than four...

7.8CVSS6.3AI score0.00267EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a bit shift overflow in the hidreportrawevent function in the HID kernel subsystem...

5.5CVSS6.8AI score0.0025EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2024/08/08 4:44 a.m.7 views

kernel: media: gspca: cpia1: shift-out-of-bounds in set_flicker

In the Linux kernel, the following vulnerability has been resolved: media: gspca: cpia1: shift-out-of-bounds in setflicker Syzkaller reported the following issue: UBSAN: shift-out-of-bounds in drivers/media/usb/gspca/cpia1.c:1031:27 shift exponent 245 is too large for 32-bit type 'int' When the...

7.8CVSS6.8AI score0.00255EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/03/02 5:48 a.m.3 views

SUSE CVE-2021-47044

In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix shift-out-of-bounds in loadbalance Syzbot reported a handful of occurrences where an sd-nrbalancefailed can grow to much higher values than one would expect. A successful loadbalance resets it to 0; a failed one...

5.5CVSS7.8AI score0.00267EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/02/05 12:0 a.m.9 views

PT-2024-21527

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a shift problem in the ufshcd clear cmd function. When task tag is greater than or equal to 32 in MCQ mode and the size of an unsigned integer is 4, the expressio...

7.8CVSS5.5AI score0.00236EPSS
Exploits0
OSV
OSV
added 2023/11/16 11:15 p.m.7 views

AZL-32011 CVE-2023-48237 affecting package vim for versions less than 9.0.2112-1

Vim is an open source command line text editor. In affected versions when shifting lines in operator pending mode and using a very large value, it may be possible to overflow the size of integer. Impact is low, user interaction is required and a crash may not even happen in all situations. This...

4.3CVSS7AI score0.00749EPSS
Exploits0References1
OSV
OSV
added 2023/08/06 11:5 a.m.7 views

OESA-2023-1465 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security Fixes: In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few...

9CVSS7AI score0.04234EPSS
Exploits2References6
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.5 views

kernel: net: stmmac: fix dma queue left shift overflow issue

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix dma queue left shift overflow issue When queue number is 4, left shift overflows due to 32 bits integer variable. Mask calculation is wrong for MTLRXQDMAMAP1. If CONFIGUBSAN is enabled, kernel dumps below warning...

7.8CVSS6.3AI score0.00267EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:45 a.m.7 views

SUSE CVE-2017-9188

libautotrace.a in AutoTrace 0.31.1 has a "left shift ... cannot be represented in type int" issue in input-bmp.c:516:63...

9.8CVSS9.4AI score0.02269EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:49 a.m.3 views

SUSE CVE-2021-3474

There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could cause a shift overflow in the FastHufDecoder, potentially leading to problems with application availability...

5.3CVSS7.1AI score0.01848EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:49 a.m.3 views

SUSE CVE-2021-3476

A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability...

5.3CVSS6.5AI score0.01848EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2022/12/19 12:0 a.m.44 views

Debian dla-3236 : libopenexr-dev - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3236 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3236-1 [email protected]...

7.5CVSS6.5AI score0.01848EPSS
Exploits5References46
OSV
OSV
added 2022/10/02 1:42 p.m.14 views

GSD-2022-1006398 swiotlb: avoid potential left shift overflow

swiotlb: avoid potential left shift overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.143 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/10/02 1:39 p.m.12 views

GSD-2022-1006368 swiotlb: avoid potential left shift overflow

swiotlb: avoid potential left shift overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.68 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/10/02 1:37 p.m.10 views

GSD-2022-1006331 swiotlb: avoid potential left shift overflow

swiotlb: avoid potential left shift overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.9 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/10/02 12:0 a.m.3 views

PT-2022-34588 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.9 Description: The issue is related to a potential left shift overflow in swiotlb. The actual impact and attack plausibility have not yet been proven. It was introduced in version v5.12 and fixed in Linux...

7.4AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/02 12:0 a.m.3 views

PT-2022-34625 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.68 Description: The issue is related to a potential left shift overflow in swiotlb. The actual impact and attack plausibility have not yet been proven. It was introduced in version v5.12 and fixed in Linux...

7.4AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/02 12:0 a.m.6 views

PT-2022-34655 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.143 Description: The issue is related to a potential left shift overflow in swiotlb. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...

7.4AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/08/26 12:0 a.m.37 views

openSUSE 15 Security Update : openexr (openSUSE-SU-2021:1198-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1198-1 advisory. - A flaw found in function dataWindowForTile of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed b...

7.5CVSS6.4AI score0.01848EPSS
Exploits1References21
Tenable Nessus
Tenable Nessus
added 2021/07/03 12:0 a.m.62 views

Debian DLA-2701-1 : openexr - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2701 advisory. - A heap-based buffer overflow vulnerability exists in Academy Software Foundation OpenEXR 2.3.0 in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp that can...

5.5CVSS6.4AI score0.01848EPSS
Exploits2References26
Rows per page
Query Builder