17 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: iommufd: Fixed the issue of unpinning pages when an access occurs. syzkaller discovered that the calculation of batchlastindex should use ‘startindex’. This is because, when this function is called, the batch may be empty or i...
CVE-2025-40180
In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop The cleanup loop was starting at the wrong array index, causing out-of-bounds access. Start the loop at the correct index for zero-indexed arrays to prevent...
SUSE CVE-2023-53630
In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix unpinning of pages when an access is present syzkaller found that the calculation of batchlastindex should use 'startindex' since at input to this function the batch is either empty or it has already been adjusted to...
CVE-2023-53630
In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix unpinning of pages when an access is present syzkaller found that the calculation of batchlastindex should use 'startindex' since at input to this function the batch is either empty or it has already been adjusted to...
UBUNTU-CVE-2023-53630
In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix unpinning of pages when an access is present syzkaller found that the calculation of batchlastindex should use 'startindex' since at input to this function the batch is either empty or it has already been adjusted to...
CVE-2023-53630 iommufd: Fix unpinning of pages when an access is present
In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix unpinning of pages when an access is present syzkaller found that the calculation of batchlastindex should use 'startindex' since at input to this function the batch is either empty or it has already been adjusted to...
EUVD-2025-32777
In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix unpinning of pages when an access is present syzkaller found that the calculation of batchlastindex should use 'startindex' since at input to this function the batch is either empty or it has already been adjusted to...
CVE-2023-53630
CVE-2023-53630 affects the Linux kernel iommufd path. The issue: batch_last_index could be computed incorrectly, causing an unmap to run past the end of pages and corrupt unmapped pages. This is mitigated by a kernel fix that uses start_index when calculating batch_last_index, preventing out-of-b...
CVE-2023-53630 iommufd: Fix unpinning of pages when an access is present
In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix unpinning of pages when an access is present syzkaller found that the calculation of batchlastindex should use 'startindex' since at input to this function the batch is either empty or it has already been adjusted to...
PT-2025-41074
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0-rc2-eeac8ede1755 Description A flaw exists in the Linux kernel's iommufd subsystem related to the unpinning of pages when an access is present. Specifically, an incorrect calculation of batch last index can...
Exploit for Integer Overflow or Wraparound in Tesla Model_3_Firmware
CVE-2025-2082 – Function Pointer Overwrite PoV VCSEC-style...
ArrayQueue's push_front is not panic-safe
The safe API arrayqueue::ArrayQueue::pushfront can lead to deallocating uninitialized memory if a panic occurs while invoking the clone method on the passed argument. Specifically, pushfront receives an argument that is intended to be cloned and pushed, whose type implements the Clone trait...
RUSTSEC-2025-0054 ArrayQueue::push_front is not panic-safe
The safe API arrayqueue::ArrayQueue::pushfront can lead to deallocating uninitialized memory if a panic occurs while invoking the clone method on the passed argument. Specifically, pushfront receives an argument that is intended to be cloned and pushed, whose type implements the Clone trait...
ArrayQueue::push_front is not panic-safe
The safe API arrayqueue::ArrayQueue::pushfront can lead to deallocating uninitialized memory if a panic occurs while invoking the clone method on the passed argument. Specifically, pushfront receives an argument that is intended to be cloned and pushed, whose type implements the Clone trait...
CVE-2025-29913
CVE-2025-29913 affects CryptoLib (versions ≤ 1.3.3). The vulnerability is in the function Crypto_TC_Prep_AAD, where an incorrect calculation of the MAC start index can underflow an unsigned integer, causing an out-of-bounds access in the ingest buffer and leading to a heap-based buffer overflow. ...
PYSEC-2024-164
Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. If an excessively large value is specified as the starting index for an array in abidecode, it can cause the read position to overflow. This results in the decoding of values outside the intended array bounds, potential...
PT-2024-20455 · Vyper · Vyper
Name of the Vulnerable Software and Affected Versions: Vyper versions prior to 0.4.0 Description: The issue arises when using the built-in extract32b, start function in Vyper, a pythonic Smart Contract Language for the Ethereum virtual machine. If the start index provided has a side effect that...