CVE-2025-68160 Heap out-of-bounds write in BIO_f_linebuffer on short writes

Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typically results in a crash, leading ...

CVE-2025-68160

CVE-2025-68160 describes a heap-based out-of-bounds write in OpenSSL’s BIO_f_linebuffer filter when a BIO chain writes large, newline-free data with subsequent short writes. This can cause memory corruption and a Denial of Service. Affected products/versions include OpenSSL 3.6, 3.5, 3.4, 3.3, 3....

CVE-2025-68160 Heap out-of-bounds write in BIO_f_linebuffer on short writes

Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typically results in a crash, leading ...

CVE-2025-68160

Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typically results in a crash, leading ...

CVE-2025-68160

Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typically results in a crash, leading ...

UBUNTU-CVE-2024-50015

In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyond inode size when partially writing The daxiomaprw does two things in each iteration: map written blocks and copy user data to blocks. If the process is killed by userSee signal handling in...

telnet-server: no bounds checks in nextitem() function allows to remotely execute arbitrary code

A vulnerability was found where incorrect bounds checks in the telnet server’s telnetd handling of short writes and urgent data, could lead to information disclosure and corruption of heap data. An unauthenticated remote attacker could exploit these bugs by sending specially crafted telnet packet...

USN-5048-1 inetutils vulnerability

It was discovered that Inetutils telnet server allows remote attackers to execute arbitrary code via short writes or urgent data. An attacker could use this vulnerability to cause a DoS or possibly execute arbitrary code...

telnet security update

1:0.17-65 - Resolves: 1814475 - Arbitrary remote code execution in utility.c via short writes or urgent data...

telnet security update

1:0.17-49 - Resolves: 1814775 - Arbitrary remote code execution in utility.c via short writes or urgent data...

UBUNTU-CVE-2020-10188

utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions...

PT-2020-3020

Name of the Vulnerable Software and Affected Versions netkit-telnet versions 0.17 and earlier Description The issue is related to a buffer overflow in the netclear and nextitem functions in the telnetd daemon, which can be exploited by remote attackers to execute arbitrary code via short writes o...