Moderate: Red Hat Security Advisory: corosync security update

An update for corosync is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

Xorg: xwayland: Buffer overflow in XkbVModMaskText()

A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText allocates a fixed-sized buffer on the stack and copies the names of the virtual modifiers to that buffer. The code fails to check the bounds of the buffer and would copy the data regardless of the size...

Intel PROSet/Wireless WiFi 安全漏洞

Intel PROSet/Wireless WiFi is a wireless network card driver from Intel Corporation USA. A security vulnerability exists in Intel PROSet/Wireless WiFi versions prior to 23.100, which originates from a stack buffer overflow that could result in a denial of service...

Schneider Electric EcoStruxure Power Build Rapsody 安全漏洞

Schneider Electric EcoStruxure Power Build Rapsody is a power monitoring platform from Schneider Electric France. Schneider Electric EcoStruxure Power Build Rapsody suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to achieve arbitrary code execution on an...

ROS-2-643

2.643 Vulnerability in PPPD CVE-2020-8597 1. Vulnerability Description: The issue CVE-2020-8597 is a stack buffer overflow vulnerability resulting from a logic error in the EAP Extensible Authentication Protocol packet parser in PPPD eaprequest and eapresponse functions in eap.c. The vulnerabilit...

ALSA-2025:7478 Moderate: corosync security update

The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...

Siemens SCALANCE LPE9403 缓冲区错误漏洞

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to...

Moderate: corosync security update

The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...

ALSA-2025:7201 Moderate: corosync security update

The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...

CVE-2025-1533

A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash BSOD or other potentially undefined execution. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory f...

CVE-2025-1533

A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash BSOD or other potentially undefined execution. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory f...

CVE-2025-1533

A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash BSOD or other potentially undefined execution. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory f...

CVE-2025-1533

CVE-2025-1533 affects Asus Armoury Crate through the kernel driver AsIO3.sys . TALOS details a stack-based buffer overflow triggered by an overlong Win32 path that is converted to an NT namespace path via a 255-char local buffer (ntImagePath), enabling a user to trigger a kernel-level overflow li...

Tenda W18E Stack Buffer Overflow Vulnerability

The Tenda W18E is a wireless router from the Chinese company Tenda. The Tenda W18E suffers from a stack buffer overflow vulnerability that originates from a stack buffer overflow in the formSetAccountList function's handling of the parameter Password. An attacker could exploit this vulnerability ...

ASUS Armoury Crate 安全漏洞

ASUS Armoury Crate is a utility software developed by ASUS to centrally control and manage ROG Gamerland and some ASUS gaming products. ASUS Armoury Crate suffers from a stack buffer overflow vulnerability that originates from a boundary error when the application handles untrusted input, which c...

CVE-2025-4447

A flaw was found in Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8. A stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts...

D-Link DI-8100 安全漏洞

The D-Link DI-8100 is a network device designed to provide network connectivity and management capabilities. The D-Link DI-8100 suffers from a stack buffer overflow vulnerability that stems from insufficient handling of the parameters defmax/deftime/deftcpmax/deftcptime/defudpmax/defudptime/defic...

Code-Projects Simple Bus Reservation System 安全漏洞

Code-Projects Simple Bus Reservation System is a Code-Projects open source simple bus reservation system. A security vulnerability exists in Code-Projects Simple Bus Reservation System version 1.0, which originates from a stack-based buffer overflow due to the parameter bus operation of function...

ATEN LCD KVM over IP Switch CL5708IM 安全漏洞

ATEN LCD KVM over IP Switch CL5708IM is an 8-port IP KVM switch with LCD screen from China's ATEN Automation ATEN that supports remote BIOS-level device management. A security vulnerability exists in the ATEN LCD KVM over IP Switch CL5708IM, which originates from a stack buffer overflow and could...

CVE-2025-1253 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Stack-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags.

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow', Stack-based Buffer Overflow vulnerability in RTI Connext Professional Core Libraries allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.4.0 before 7.5.0, from 7.0.0 before 7.3.0.7, from 6.1.0...