Lucene search
K

59 matches found

Cvelist
Cvelist
added 6 days ago39 views

CVE-2026-14454 Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed

Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed. Imager mishandled large EXIF IFD entry count values, treating them as negative numbers. This could lead to an attempt to allocate a block nearly the size of the address space, which fails and kills the process. ...

0.00394EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: ksmbd: Fixed a signedness bug in smbdirectpreparenegotiation. The function smbdirectpreparenegotiation casts a unsigned u32 value from sp-maxrecvsize and req-preferredsendsize into a signed int before calculating mintint, .......

9.8CVSS6.2AI score0.00622EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/09 2:41 a.m.10 views

SUSE CVE-2026-43185

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smbdirectpreparenegotiation smbdirectpreparenegotiation casts an unsigned u32 value from sp-maxrecvsize and req-preferredsendsize to a signed int before computing mintint, .... A maliciously provide...

9.8CVSS5.8AI score0.00622EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/06 8:47 p.m.19 views

CVE-2026-43185

A flaw was found in ksmbd within the Linux kernel. A remote attacker can exploit a signedness bug in the smbdirectpreparenegotiation function by sending a specially crafted preferredsendsize value during SMB direct negotiation. This manipulation leads to an incorrect size calculation, allowing a...

9.8CVSS6.4AI score0.00622EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/06 12:30 p.m.7 views

EUVD-2026-27748

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smbdirectpreparenegotiation smbdirectpreparenegotiation casts an unsigned u32 value from sp-maxrecvsize and req-preferredsendsize to a signed int before computing mintint, .... A maliciously provide...

5.8AI score0.00622EPSS
Exploits0References4
NVD
NVD
added 2026/05/06 12:16 p.m.6 views

CVE-2026-43185

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smbdirectpreparenegotiation smbdirectpreparenegotiation casts an unsigned u32 value from sp-maxrecvsize and req-preferredsendsize to a signed int before computing mintint, .... A maliciously provide...

9.8CVSS0.00622EPSS
Exploits0References3
CVE
CVE
added 2026/05/06 11:27 a.m.25 views

CVE-2026-43185

In Linux kernel ksmbd, a signedness bug in smb_direct_prepare_negotiation() casts unsigned __u32 values from sp->max_recv_size and req->preferred_send_size to signed int before min_t(). A crafted preferred_send_size of 0x80000000 can be treated as smaller than max_recv_size, enabling a subs...

9.8CVSS5.8AI score0.00622EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/06 11:27 a.m.36 views

CVE-2026-43185 ksmbd: fix signededness bug in smb_direct_prepare_negotiation()

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smbdirectpreparenegotiation smbdirectpreparenegotiation casts an unsigned u32 value from sp-maxrecvsize and req-preferredsendsize to a signed int before computing mintint, .... A maliciously provide...

9.8CVSS0.00622EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/06 11:27 a.m.6 views

CVE-2026-43185

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smbdirectpreparenegotiation smbdirectpreparenegotiation casts an unsigned u32 value from sp-maxrecvsize and req-preferredsendsize to a signed int before computing mintint, .... A maliciously provide...

9.8CVSS6AI score0.00622EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.14 views

PT-2026-37525

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A signedness bug exists in the smb direct prepare negotiation function. The function casts unsigned u32 values from sp-max recv size and req-preferred send size to signed integers before...

9.8CVSS6AI score0.00622EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-43185

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix signededness bug in smbdirectpreparenegotiation smbdirectpreparenegotiation casts an unsigned u32 value from sp-maxrecvsize and req-preferredsendsize...

9.8CVSS7.3AI score0.00622EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/03/06 9:4 p.m.4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iommu/io-pgtable-arm: fix sizet signedness bug in unmap path armlpaeunmap returns sizet but was returning -ENOENT negative error code when encountering an unmapped PTE. Since sizet is unsigned, -ENOENT typically -2 becomes a huge...

5.5CVSS5.6AI score0.00107EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/02/05 12:25 a.m.7 views

SUSE CVE-2026-23067

In the Linux kernel, the following vulnerability has been resolved: iommu/io-pgtable-arm: fix sizet signedness bug in unmap path armlpaeunmap returns sizet but was returning -ENOENT negative error code when encountering an unmapped PTE. Since sizet is unsigned, -ENOENT typically -2 becomes a huge...

5.5CVSS5.3AI score0.00107EPSS
Exploits0References3
NVD
NVD
added 2026/02/04 5:16 p.m.9 views

CVE-2026-23067

In the Linux kernel, the following vulnerability has been resolved: iommu/io-pgtable-arm: fix sizet signedness bug in unmap path armlpaeunmap returns sizet but was returning -ENOENT negative error code when encountering an unmapped PTE. Since sizet is unsigned, -ENOENT typically -2 becomes a huge...

5.5CVSS0.00107EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.4 views

CVE-2026-23067

In the Linux kernel, the following vulnerability has been resolved: iommu/io-pgtable-arm: fix sizet signedness bug in unmap path armlpaeunmap returns sizet but was returning -ENOENT negative error code when encountering an unmapped PTE. Since sizet is unsigned, -ENOENT typically -2 becomes a huge...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References4
OSV
OSV
added 2026/02/04 4:7 p.m.6 views

CVE-2026-23067 iommu/io-pgtable-arm: fix size_t signedness bug in unmap path

In the Linux kernel, the following vulnerability has been resolved: iommu/io-pgtable-arm: fix sizet signedness bug in unmap path armlpaeunmap returns sizet but was returning -ENOENT negative error code when encountering an unmapped PTE. Since sizet is unsigned, -ENOENT typically -2 becomes a huge...

5.5CVSS5.3AI score0.00107EPSS
Exploits0References5
CVE
CVE
added 2026/01/14 5:56 p.m.46 views

CVE-2026-22858

CVE-2026-22858 affects FreeRDP prior to 3.20.1, where a global-buffer-overflow can occur in the Base64 decoding path due to implementation‑defined char signedness causing out‑of‑bounds access. The vulnerability is fixed in 3.20.1; multiple advisories (SUSE/SLES/OpenSUSE/Fedora) reference updating...

9.1CVSS6.5AI score0.00599EPSS
Exploits1References19Affected Software1
Cvelist
Cvelist
added 2025/11/24 12:0 a.m.8 views

CVE-2025-65495

Integer signedness error in tlsverifycallback in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted TLS certificate that causes i2dX509 to return -1 and be misused as a malloc size parameter...

0.00219EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.9 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990246)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990246 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix signedness bug in sdmav40processtrapirq The instance variable needs to be signed...

5.5CVSS6.1AI score0.00238EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.10 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989431)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989431 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix signedness bug in sdmav40processtrapirq The instance variable needs to be signed...

5.5CVSS6.1AI score0.00238EPSS
Exploits0References4
Rows per page
Query Builder