6864 matches found
ALSA-2025:7201 Moderate: corosync security update
The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...
Moderate: corosync security update
The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...
CVE-2025-1533
A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash BSOD or other potentially undefined execution. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory f...
CVE-2025-1533
A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash BSOD or other potentially undefined execution. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory f...
CVE-2025-1533
A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash BSOD or other potentially undefined execution. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory f...
CVE-2025-1533
CVE-2025-1533 affects Asus Armoury Crate through the kernel driver AsIO3.sys . TALOS details a stack-based buffer overflow triggered by an overlong Win32 path that is converted to an NT namespace path via a 255-char local buffer (ntImagePath), enabling a user to trigger a kernel-level overflow li...
Tenda W18E Stack Buffer Overflow Vulnerability
The Tenda W18E is a wireless router from the Chinese company Tenda. The Tenda W18E suffers from a stack buffer overflow vulnerability that originates from a stack buffer overflow in the formSetAccountList function's handling of the parameter Password. An attacker could exploit this vulnerability ...
ASUS Armoury Crate 安全漏洞
ASUS Armoury Crate is a utility software developed by ASUS to centrally control and manage ROG Gamerland and some ASUS gaming products. ASUS Armoury Crate suffers from a stack buffer overflow vulnerability that originates from a boundary error when the application handles untrusted input, which c...
CVE-2025-4447
A flaw was found in Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8. A stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts...
D-Link DI-8100 安全漏洞
The D-Link DI-8100 is a network device designed to provide network connectivity and management capabilities. The D-Link DI-8100 suffers from a stack buffer overflow vulnerability that stems from insufficient handling of the parameters defmax/deftime/deftcpmax/deftcptime/defudpmax/defudptime/defic...
Code-Projects Simple Bus Reservation System 安全漏洞
Code-Projects Simple Bus Reservation System is a Code-Projects open source simple bus reservation system. A security vulnerability exists in Code-Projects Simple Bus Reservation System version 1.0, which originates from a stack-based buffer overflow due to the parameter bus operation of function...
ATEN LCD KVM over IP Switch CL5708IM 安全漏洞
ATEN LCD KVM over IP Switch CL5708IM is an 8-port IP KVM switch with LCD screen from China's ATEN Automation ATEN that supports remote BIOS-level device management. A security vulnerability exists in the ATEN LCD KVM over IP Switch CL5708IM, which originates from a stack buffer overflow and could...
CVE-2025-1253 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Stack-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags.
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow', Stack-based Buffer Overflow vulnerability in RTI Connext Professional Core Libraries allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.4.0 before 7.5.0, from 7.0.0 before 7.3.0.7, from 6.1.0...
CVE-2025-1253 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Stack-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags.
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow', Stack-based Buffer Overflow vulnerability in RTI Connext Professional Core Libraries allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.4.0 before 7.5.0, from 7.0.0 before 7.3.0.7, from 6.1.0...
Exploit for Classic Buffer Overflow in Dlink Dsr-150_Firmware
CVE-2024-57376 Pre-auth remote code execution exploit for D-L...
CVE-2025-47256
Libxmp through 4.6.2 has a stack-based buffer overflow in depackpha in loaders/prowizard/pha.c via a malformed Pha format tracker module in a .mod file...
Libxmp 安全漏洞
Libxmp is a Libxmp open source library for rendering module files as PCM data. A security vulnerability exists in Libxmp 4.6.2 and earlier versions, which stems from a stack buffer overflow in depackpha in loaders/prowizard/pha.c. The vulnerability is caused by the presence of a stack buffer...
Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c.
...
The vulnerability of the xmlSnprintfElements() function in the libxml2 library allows a hacker to execute arbitrary code.
The vulnerability of the xmlSnprintfElements function in the libxml2 library is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
PT-2025-18343
Name of the Vulnerable Software and Affected Versions GStreamer versions prior to 1.22.0-4+deb12u6 GStreamer versions prior to 1.18.4-3+deb11u5 Description A stack buffer overflow vulnerability exists in the H.265 codec parser within GStreamer. This vulnerability allows for remote code execution ...