70 matches found
freerdp: FreeRDP global-buffer-overflow
A global buffer overflow flaw has been discovered in FreeRDP. This global-buffer-overflow was observed in FreeRDP's Base64 decoding path. The root cause appears to be implementation-defined char signedness: on Arm/AArch64 builds, plain char is treated as unsigned, so the guard c = 0 can be...
freerdp: FreeRDP global-buffer-overflow
A global buffer overflow flaw has been discovered in FreeRDP. This global-buffer-overflow was observed in FreeRDP's Base64 decoding path. The root cause appears to be implementation-defined char signedness: on Arm/AArch64 builds, plain char is treated as unsigned, so the guard c = 0 can be...
freerdp: FreeRDP global-buffer-overflow
A global buffer overflow flaw has been discovered in FreeRDP. This global-buffer-overflow was observed in FreeRDP's Base64 decoding path. The root cause appears to be implementation-defined char signedness: on Arm/AArch64 builds, plain char is treated as unsigned, so the guard c = 0 can be...
freerdp: FreeRDP global-buffer-overflow
A global buffer overflow flaw has been discovered in FreeRDP. This global-buffer-overflow was observed in FreeRDP's Base64 decoding path. The root cause appears to be implementation-defined char signedness: on Arm/AArch64 builds, plain char is treated as unsigned, so the guard c = 0 can be...
CVE-2026-22858 FreeRDP has a global-buffer-overflow in crypto_base64_decode
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-overflow was observed in FreeRDP's Base64 decoding path. The root cause appears to be implementation-defined char signedness: on Arm/AArch64 builds, plain char is treated as unsigned, so the guard c = ...
EUVD-2019-16795
Malware in sbrugna...
Exploit for CVE-2016-2384
Linux kernel exploits ===================== | Date | Link | Description | Vector | Impact | | --- | --- | --- | --- | --- | | 02.2016 | CVE-2016-2384 | Double-free in USB MIDI driver | Physical + Local | LPE | | 03.2016 | prefetch-side-channel | KASLR bypass via prefetch | Local | Info-leak | |...
CVE-2025-38463
In the Linux kernel, the following vulnerability has been resolved: tcp: Correct signedness in skb remaining space calculation Syzkaller reported a bug 1 where sk-skforwardalloc can overflow. When we send data, if an skb exists at the tail of the write queue, the kernel will attempt to append the...
CVE-2025-38463
The CVE-2025-38463 issue is a Linux kernel vulnerability in the TCP skb remaining space calculation. The bug arises from signedness handling when computing copy = size_goal - skb->len, where copy becomes an unsigned result that is then assigned to a 64-bit signed copy, causing copy to stay non...
CVE-2025-38463 tcp: Correct signedness in skb remaining space calculation
In the Linux kernel, the following vulnerability has been resolved: tcp: Correct signedness in skb remaining space calculation Syzkaller reported a bug 1 where sk-skforwardalloc can overflow. When we send data, if an skb exists at the tail of the write queue, the kernel will attempt to append the...
CVE-2019-19958
In libIEC61850 1.4.0, StringUtilscreateStringFromBuffer in common/stringutilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service...
Valve: Signedness issue in ClassInfo message handler leads to RCE on CS:GO client
Title: Signedness issue in ClassInfo message handler leads to RCE on CS:GO client Scope: csgo.exe Weakness: Array Index Underflow Severity: Critical 9.6 Link: https://hackerone.com/reports/876719 Date: 2020-05-17 20:31:35 +0000 By: @chaynik Details: Vulnerability ------------- CSVCMsgClassInfo...
Denial Of Service (DoS)
php is vulnerable to denial of service DoS. The vulnerability exists as an integer signedness issue was found in the PHP zip extension. An attacker could use a specially-crafted ZIP archive to cause the PHP interpreter to use an excessive amount of CPU time until the script execution time limit i...
CVE-2019-19958
In libIEC61850 1.4.0, StringUtilscreateStringFromBuffer in common/stringutilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service...
Integer overflow
In libIEC61850 1.4.0, StringUtilscreateStringFromBuffer in common/stringutilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service...
CVE-2019-19958
In CVE-2019-19958, the affected component is libIEC61850 1.4.0, specifically StringUtils_createStringFromBuffer in common/string_utilities.c. A signedness issue in integer handling could allow an under/over-approximation during buffer processing, potentially triggering an excessive memory allocat...
Internet Bug Bounty: Linux kernel: CVE-2017-7308: a signedness issue in AF_PACKET sockets
Hi! CVE-2017-7308 is a vulnerability I found in the Linux kernel caused by a signedness issue in AFPACKET sockets. It can be exploited to gain kernel code execution from an unprivileged process. The kernel has to be built with CONFIGPACKET for the vulnerability to be present. A lot of modern...
Remote Code Execution (RCE)
php is vulnerable to remote code execution. An integer signedness issue, leading to a heap-based buffer underflow, was found in the PHP scandir function. If a remote attacker could upload an excessively large number of files to a directory the scandir function runs on, it could cause the PHP...
Integer overflow
An Integer Signedness issue for a return code in the respjsipsdprtp module in Digium Asterisk versions 15.7.1 and earlier and 16.1.1 and earlier allows remote authenticated users to crash Asterisk via a specially crafted SDP protocol violation...
CVE-2019-7251
An Integer Signedness issue for a return code in the respjsipsdprtp module in Digium Asterisk versions 15.7.1 and earlier and 16.1.1 and earlier allows remote authenticated users to crash Asterisk via a specially crafted SDP protocol violation...